b89a30ae4c07e61c89f9034b9e4c90f230d1800f1576e376100c156a0e26c22e

Sharing

Copy URL Twitter E-mail

General

Target

b89a30ae4c07e61c89f9034b9e4c90f230d1800f1576e376100c156a0e26c22e
Size

6.7MB
MD5

966ca69d4a88df91b9c7f7a1d460977d
SHA1

2295517f8b456e42348007fde2fef970602d8347
SHA256

b89a30ae4c07e61c89f9034b9e4c90f230d1800f1576e376100c156a0e26c22e
SHA512

c0c85366c5ad809966d9ef44aec43c3dab9d69507e4c63b77036b67905cff2d6cce4b17c3ae614421d64da5b201361465f0984152dc56f950fb058e9389a0965
SSDEEP

98304:h6qadgvptvI2QIJ6TUJWRMJ0/M/2VmVH82KJI08UWuIaREAlR1Eh:hEdgvppvQIJ6TmeWMmVH8LJ/kdAv1Eh

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 29 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to write and read the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to receive WAP push messages.	android.permission.RECEIVE_WAP_PUSH
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to add voicemails into the system.	com.android.voicemail.permission.ADD_VOICEMAIL
Allows an application to access data from sensors that the user uses to measure what is happening inside their body, such as heart rate.	android.permission.BODY_SENSORS
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to use SIP service.	android.permission.USE_SIP
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS

Files

b89a30ae4c07e61c89f9034b9e4c90f230d1800f1576e376100c156a0e26c22e
.apk android arch:arm arch:x86

cn.com.vapp.nxfs

cn.com.nxfs.activity.SAStartActivity

Activities

cn.com.nxfs.activity.SAStartActivity

android.intent.action.MAIN

cn.com.nxfs.activity.SAMainActivity

com.nxfs.action.MAIN_ACTIVITY

cn.com.nxfs.VABackHomeActivity

com.dk.sapp.action.VABACKHOME

kl.dk.com.cn.minemod.activity.ToAppMarketActivity

com.va.action.APPMARKET_AACTIVITY

cn.com.va.mod.vip.activity.VAVipActivity

com.va.action.VAVIPAACTIVITY

cn.com.va.mod.vip.activity.VipBuyOrderActivity

com.va.action.VAVIP_ORDER_AACTIVITY

cn.com.dk.module.login.view.DKLoginActivity

cn.com.dk.action.login.activity

cn.com.dk.activity.DKUploadActivity

com.dk.sapp.action.UPLOAD_ACTIVITY

cn.com.dk.activity.DKCommonTipActivity

com.dk.action.COMMONTIP_ACTIVITY

cn.com.dk.sapp.rootads.DKRootAdsActivity

com.dk.action.ROOTADS

cn.com.dk.web.InnerWebActivity

android.intent.action.VIEW
cn.com.dk.webview

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.lody.virtual.client.stub.ShortcutHandleActivity

cn.com.vapp.nxfs.virtual.action.shortcut

Permissions

android.permission.CAMERA
android.permission.READ_PHONE_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
cn.com.dk.presssm
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REORDER_TASKS
cn.com.vapp.nxfs.permission.SAFE_ACCESS
android.permission.PROCESS_OUTGOING_CALLS
android.permission.CALL_PHONE
android.permission.READ_CALL_LOG
android.permission.WRITE_CALL_LOG
android.permission.RECEIVE_MMS
android.permission.RECEIVE_SMS
android.permission.RECEIVE_WAP_PUSH
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
com.google.android.googleapps.permission.GOOGLE_AUTH
com.google.android.googleapps.permission.GOOGLE_AUTH.OTHER_SERVICES
com.google.android.googleapps.permission.GOOGLE_AUTH.YouTubeUser
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.READ_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.BIND_ACCESSIBILITY_SERVICE
android.permission.WRITE_SOCIAL_STREAM
android.permission.READ_SOCIAL_STREAM
android.permission.READ_PROFILE
android.permission.WRITE_PROFILE
android.permission.READ_USER_DICTIONARY
android.permission.WRITE_USER_DICTIONARY
android.permission.USE_CREDENTIALS
android.permission.AUTHENTICATE_ACCOUNTS
com.samsung.svoice.sync.READ_DATABASE
com.samsung.svoice.sync.ACCESS_SERVICE
com.samsung.svoice.sync.WRITE_DATABASE
com.sec.android.app.voicenote.Controller
com.sec.android.permission.VOIP_INTERFACE
com.sec.android.permission.LAUNCH_PERSONAL_PAGE_SERVICE
com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY
com.samsung.android.providers.context.permission.READ_RECORD_AUDIO
com.samsung.android.providers.context.permission.WRITE_RECORD_AUDIO
com.sec.android.settings.permission.SOFT_RESET
sec.android.permission.READ_MSG_PREF
com.samsung.android.scloud.backup.lib.read
com.samsung.android.scloud.backup.lib.write
com.android.alarm.permission.SET_ALARM
com.android.voicemail.permission.ADD_VOICEMAIL
com.android.voicemail.permission.READ_WRITE_ALL_VOICEMAIL
com.huawei.authentication.HW_ACCESS_AUTH_SERVICE
com.android.vending.BILLING
com.android.vending.CHECK_LICENSE
com.google.android.providers.talk.permission.READ_ONLY
com.google.android.providers.talk.permission.WRITE_ONLY
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.ACTIVITY_RECOGNITION
com.google.android.gms.permission.AD_ID_NOTIFICATION
com.google.android.providers.gsf.permission.READ_GSERVICES
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.READ_APP_BADGE
com.google.android.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
com.android.launcher.permission.READ_SETTINGS
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.teslacoilsw.launcher.permission.READ_SETTINGS
com.actionlauncher.playstore.permission.READ_SETTINGS
com.mx.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.READ_SETTINGS
com.apusapps.launcher.permission.READ_SETTINGS
com.tsf.shell.permission.READ_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.lenovo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.bbk.launcher2.permission.READ_SETTINGS
com.s.launcher.permission.READ_SETTINGS
cn.nubia.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.CHANGE_BADGE
android.permission.FLASHLIGHT
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.BATTERY_STATS
android.permission.BODY_SENSORS
android.permission.BROADCAST_STICKY
android.permission.DISABLE_KEYGUARD
android.permission.EXPAND_STATUS_BAR
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.CHANGE_CONFIGURATION
android.permission.WRITE_SETTINGS
android.permission.PERSISTENT_ACTIVITY
android.permission.RECORD_AUDIO
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.NFC
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.VIBRATE
android.permission.USE_FINGERPRINT
com.android.browser.permission.READ_HISTORY_BOOKMARKS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS
android.permission.CLEAR_APP_CACHE
android.permission.GET_PACKAGE_SIZE
android.permission.WRITE_SYNC_SETTINGS
android.permission.READ_SYNC_SETTINGS
android.permission.READ_SYNC_STATS
android.permission.SUBSCRIBED_FEEDS_READ
android.permission.SUBSCRIBED_FEEDS_WRITE
android.permission.WRITE_CALENDAR
android.permission.READ_CALENDAR
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_LOGS
android.permission.RESTART_PACKAGES
android.permission.SET_TIME
android.permission.SET_TIME_ZONE
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_HINTS
android.permission.TRANSMIT_IR
android.permission.USE_SIP
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_INTENT_SENDER_INTENT
android.permission.BIND_DIRECTORY_SEARCH
android.permission.UPDATE_APP_OPS_STATS
android.permission.INSTALL_PACKAGES
android.permission.DELETE_PACKAGES
android.permission.CLEAR_APP_USER_DATA
android.permission.WRITE_MEDIA_STORAGE
android.permission.ACCESS_CACHE_FILESYSTEM
android.permission.DEVICE_POWER
android.permission.WRITE_APN_SETTINGS
android.permission.BIND_APPWIDGET
android.permission.ACCOUNT_MANAGER
android.permission.PACKAGE_USAGE_STATS
android.permission.READ_INSTALL_SESSIONS
android.permission.READ_OWNER_DATA
android.permission.READ_CELL_BROADCASTS
android.permission.WRITE_CLIPS
android.permission.READ_CLIPS
android.permission.GET_CLIPS
android.permission.WRITE_OWNER_DATA
android.permission.ACCESS_GPS
android.permission.ACCESS_WIMAX_STATE
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.CHANGE_WIMAX_STATE
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

Receivers

io.virtualapp.PackageReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED

com.dk.module.apkdownloader.accessibility.PackageBroadcastReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED

Services

kl.dk.com.cn.skaimodule.virtual.MsgNtfService

cn.com.dk.broadcast.msgcnt.action

com.dk.module.apkdownloader.accessibility.service.AccessibilityServices

android.accessibilityservice.AccessibilityService
bdxadsdk.jar
.apk android

Android Permissions

b89a30ae4c07e61c89f9034b9e4c90f230d1800f1576e376100c156a0e26c22e

Permissions

android.permission.CAMERA

android.permission.READ_PHONE_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

cn.com.dk.presssm

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REORDER_TASKS

cn.com.vapp.nxfs.permission.SAFE_ACCESS

android.permission.PROCESS_OUTGOING_CALLS

android.permission.CALL_PHONE

android.permission.READ_CALL_LOG

android.permission.WRITE_CALL_LOG

android.permission.RECEIVE_MMS

android.permission.RECEIVE_SMS

android.permission.RECEIVE_WAP_PUSH

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

com.google.android.googleapps.permission.GOOGLE_AUTH

com.google.android.googleapps.permission.GOOGLE_AUTH.OTHER_SERVICES

com.google.android.googleapps.permission.GOOGLE_AUTH.YouTubeUser

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.READ_EXTERNAL_STORAGE

android.permission.GET_TASKS

android.permission.BIND_ACCESSIBILITY_SERVICE

android.permission.WRITE_SOCIAL_STREAM

android.permission.READ_SOCIAL_STREAM

android.permission.READ_PROFILE

android.permission.WRITE_PROFILE

android.permission.READ_USER_DICTIONARY

android.permission.WRITE_USER_DICTIONARY

android.permission.USE_CREDENTIALS

android.permission.AUTHENTICATE_ACCOUNTS

com.samsung.svoice.sync.READ_DATABASE

com.samsung.svoice.sync.ACCESS_SERVICE

com.samsung.svoice.sync.WRITE_DATABASE

com.sec.android.app.voicenote.Controller

com.sec.android.permission.VOIP_INTERFACE

com.sec.android.permission.LAUNCH_PERSONAL_PAGE_SERVICE

com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY

com.samsung.android.providers.context.permission.READ_RECORD_AUDIO

com.samsung.android.providers.context.permission.WRITE_RECORD_AUDIO

com.sec.android.settings.permission.SOFT_RESET

Sharing

General

Malware Config

Signatures

Files

cn.com.vapp.nxfs

cn.com.nxfs.activity.SAStartActivity

Activities

cn.com.nxfs.activity.SAStartActivity

cn.com.nxfs.activity.SAMainActivity

cn.com.nxfs.VABackHomeActivity

kl.dk.com.cn.minemod.activity.ToAppMarketActivity

cn.com.va.mod.vip.activity.VAVipActivity

cn.com.va.mod.vip.activity.VipBuyOrderActivity

cn.com.dk.module.login.view.DKLoginActivity

cn.com.dk.activity.DKUploadActivity

cn.com.dk.activity.DKCommonTipActivity

cn.com.dk.sapp.rootads.DKRootAdsActivity

cn.com.dk.web.InnerWebActivity

com.tencent.tauth.AuthActivity

com.lody.virtual.client.stub.ShortcutHandleActivity

Permissions

Receivers

io.virtualapp.PackageReceiver

com.dk.module.apkdownloader.accessibility.PackageBroadcastReceiver

Services

kl.dk.com.cn.skaimodule.virtual.MsgNtfService

com.dk.module.apkdownloader.accessibility.service.AccessibilityServices

Android Permissions

b89a30ae4c07e61c89f9034b9e4c90f230d1800f1576e376100c156a0e26c22e