aaf3f3e3cfd600109b103edab6f38d4d03a10a026a59b59fc9c6aa93218a923a

General

Target

aaf3f3e3cfd600109b103edab6f38d4d03a10a026a59b59fc9c6aa93218a923a
Size

26.4MB
MD5

4a6c16634b0883465587f4106afbc489
SHA1

9770a9e56e1adf4e265f779ede3e70bf178a3568
SHA256

aaf3f3e3cfd600109b103edab6f38d4d03a10a026a59b59fc9c6aa93218a923a
SHA512

abd0aac4823f74d230b167d40ed0f325ff4a17bd36518589d8a389f049c5b34f857c75d39e9d3a802adb7f685af30a35cafd76b7b5a0a01dbc85ce949d5fc37b
SSDEEP

786432:QQCzT4VXkbzOStu3Ddeb5Xk936Q/hhRz757:zCn46uStumaVh757

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

aaf3f3e3cfd600109b103edab6f38d4d03a10a026a59b59fc9c6aa93218a923a
.apk android arch:arm

com.ninetozero.varaq

org.cocos2dx.cpp.AppActivity

Activities

org.cocos2dx.cpp.AppActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW

com.facebook.CustomTabActivity

android.intent.action.VIEW

com.google.android.gms.appinvite.PreviewActivity

com.google.android.gms.appinvite.ACTION_PREVIEW

io.presage.mraid.browser.ShortcutActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
com.android.vending.BILLING
android.permission.VIBRATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.ninetozero.varaq.permission.C2D_MESSAGE
com.android.alarm.permission.SET_ALARM

Receivers

io.branch.referral.InstallListener

com.android.vending.INSTALL_REFERRER

com.appodeal.ads.AppodealPackageAddedReceiver

android.intent.action.PACKAGE_ADDED

com.startapp.android.publish.common.metaData.BootCompleteListener

android.intent.action.BOOT_COMPLETED

com.yandex.metrica.MetricaEventHandler

com.android.vending.INSTALL_REFERRER

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

Services

com.yandex.metrica.MetricaService

com.yandex.metrica.IMetricaService

com.yandex.metrica.ConfigurationService

com.yandex.metrica.configuration.ACTION_START

com.mobvista.msdk.shell.MVService

com.mobvista.msdk.download.action

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.cpp.ListenerService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.messaging.cpp.FcmInstanceIDListenerService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

aaf3f3e3cfd600109b103edab6f38d4d03a10a026a59b59fc9c6aa93218a923a

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.ACCESS_COARSE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

com.android.vending.BILLING

android.permission.VIBRATE

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.ninetozero.varaq.permission.C2D_MESSAGE

com.android.alarm.permission.SET_ALARM

Sharing

General

Malware Config

Signatures

Files

com.ninetozero.varaq

org.cocos2dx.cpp.AppActivity

Activities

org.cocos2dx.cpp.AppActivity

com.facebook.CustomTabActivity

com.google.android.gms.appinvite.PreviewActivity

io.presage.mraid.browser.ShortcutActivity

Permissions

Receivers

io.branch.referral.InstallListener

com.appodeal.ads.AppodealPackageAddedReceiver

com.startapp.android.publish.common.metaData.BootCompleteListener

com.yandex.metrica.MetricaEventHandler

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

Services

com.yandex.metrica.MetricaService

com.yandex.metrica.ConfigurationService

com.mobvista.msdk.shell.MVService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.messaging.cpp.ListenerService

com.google.firebase.messaging.cpp.FcmInstanceIDListenerService

Android Permissions

aaf3f3e3cfd600109b103edab6f38d4d03a10a026a59b59fc9c6aa93218a923a