b5bf9dc3a464fdcaf36518da5671f64ac1184c7492c9e4ed03d9e6a8775de044

General

Target

b5bf9dc3a464fdcaf36518da5671f64ac1184c7492c9e4ed03d9e6a8775de044
Size

4.6MB
MD5

75fb3c69c0e902f0646cd2b279d6d7ad
SHA1

362f88fcdd6f2480c6e2b7fdc4a64d68c00d82c5
SHA256

b5bf9dc3a464fdcaf36518da5671f64ac1184c7492c9e4ed03d9e6a8775de044
SHA512

ec1078e5e490649eca16bab60cfd51fa0adeee3e6de5d44b6b1be0d38bb2a9416b0063b113febaca8037625b0818930cff753b2385179d85c026942003d0751a
SSDEEP

98304:2G5pyf4IuH83cJW7VJ//aqkir29gU73OO3x6Dr40BmaiFvQPysRi5RADuRYwBgTT:2GOG8Q4/8CBemPGInTT

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

b5bf9dc3a464fdcaf36518da5671f64ac1184c7492c9e4ed03d9e6a8775de044
.apk android arch:arm arch:x86

com.downjoy.ng

com.downjoy.ng.ui.fragact.FActGuide

Activities

com.downjoy.ng.ui.fragact.FActGuide

android.intent.action.MAIN

com.downjoy.ng.ui.fragact.FActHome

com.downjoy.msgbox.FAcHome

com.alipay.android.mini.window.sdk.MiniPayActivity

android.intent.action.MAIN

com.alipay.android.mini.window.sdk.MiniWebActivity

android.intent.action.MAIN

Permissions

android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.WRITE_SETTINGS
android.permission.ACCESS_NETWORK_STATE
android.permission.BATTERY_STATS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.GET_TASKS
android.permission.USE_CREDENTIALS
cn.d.oauth.picker.permission.USE_CREDENTIALS
cn.d.oauth.picker.permission.AUTHENTICATE_ACCOUNTS
cn.d.oauth.picker.permission.MANAGE_ACCOUNTS
android.permission.RESTART_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.WRITE_SETTINGS
android.permission.READ_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.GET_TASKS
android.permission.READ_LOGS

Receivers

com.downjoy.ng.common.AppReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.downjoy.ng.common.DLReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
com.downjoy.ng.API_ACTION_GET_MSG

Services
AlipayMSP162_downjoy_V3.5.4.0619.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED
com.alipay.android.app.gphone.SHARE

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService

Android Permissions

b5bf9dc3a464fdcaf36518da5671f64ac1184c7492c9e4ed03d9e6a8775de044

Permissions

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.WRITE_SETTINGS

android.permission.ACCESS_NETWORK_STATE

android.permission.BATTERY_STATS

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.GET_TASKS

android.permission.USE_CREDENTIALS

cn.d.oauth.picker.permission.USE_CREDENTIALS

cn.d.oauth.picker.permission.AUTHENTICATE_ACCOUNTS

cn.d.oauth.picker.permission.MANAGE_ACCOUNTS

android.permission.RESTART_PACKAGES

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.WRITE_SETTINGS

android.permission.READ_SETTINGS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.GET_TASKS

android.permission.READ_LOGS

Sharing

General

Malware Config

Signatures

Files

com.downjoy.ng

com.downjoy.ng.ui.fragact.FActGuide

Activities

com.downjoy.ng.ui.fragact.FActGuide

com.downjoy.ng.ui.fragact.FActHome

com.alipay.android.mini.window.sdk.MiniPayActivity

com.alipay.android.mini.window.sdk.MiniWebActivity

Permissions

Receivers

com.downjoy.ng.common.AppReceiver

com.downjoy.ng.common.DLReceiver

Services

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

.AlixService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

b5bf9dc3a464fdcaf36518da5671f64ac1184c7492c9e4ed03d9e6a8775de044