cab18a22814b49c167e40761f2faa2a733946a2644cf2f089a42924e600207cb

General

Target

cab18a22814b49c167e40761f2faa2a733946a2644cf2f089a42924e600207cb
Size

17.1MB
MD5

e2ff769ad7094a27c6a9c127dd13c204
SHA1

f0aa554b6c2aa42ed3b5d6b90f681a6dda0368d8
SHA256

cab18a22814b49c167e40761f2faa2a733946a2644cf2f089a42924e600207cb
SHA512

87378f681ed9468647d337d582425740a4c67b0377d0cff5005d85e18be37bca138e7e896a2b9c10deab5fe1c022bf1797b4b56340f619fd5408160d80b5bebb
SSDEEP

393216:tU3xlZhDnOsRfCwEZtfvU3wbBcikh3s+lQyslz:tUhlasRfi88n8JOy+

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS

Files

cab18a22814b49c167e40761f2faa2a733946a2644cf2f089a42924e600207cb
.apk android arch:arm64 arch:x86 arch:x64 arch:mips arch:arm arch:mips64

com.zhifou.ncac8530b

yiqicai.example.webdgo.DownloadActivity

Activities

yiqicai.example.webdgo.DownloadActivity

android.intent.action.MAIN

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.CAMERA
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.PACKAGE_USAGE_STATS

Receivers

com.ticlock.BootUpReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_POWER_CONNECTED

com.ticlock.PackageInstallReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED

com.ticlock.AddJobCreatorReceiver

com.ticlock.com.evernote.android.job.ADD_JOB_CREATOR

com.ticlock.com.evernote.android.job.v14.PlatformAlarmReceiver

com.ticlock.com.evernote.android.job.v14.RUN_JOB
net.vrallev.android.job.v14.RUN_JOB

com.ticlock.com.evernote.android.job.JobBootReceiver

android.intent.action.BOOT_COMPLETED

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

net.yyasp.clothing.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

Services

com.ticlock.com.evernote.android.job.gcm.PlatformGcmService

com.google.android.gms.gcm.ACTION_TASK_READY

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action

Android Permissions

cab18a22814b49c167e40761f2faa2a733946a2644cf2f089a42924e600207cb

Permissions

android.permission.CAMERA

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.PACKAGE_USAGE_STATS

Sharing

General

Malware Config

Signatures

Files

com.zhifou.ncac8530b

yiqicai.example.webdgo.DownloadActivity

Activities

yiqicai.example.webdgo.DownloadActivity

com.sina.weibo.sdk.share.WbShareTransActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.ticlock.BootUpReceiver

com.ticlock.PackageInstallReceiver

com.ticlock.AddJobCreatorReceiver

com.ticlock.com.evernote.android.job.v14.PlatformAlarmReceiver

com.ticlock.com.evernote.android.job.JobBootReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

Services

com.ticlock.com.evernote.android.job.gcm.PlatformGcmService

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

cab18a22814b49c167e40761f2faa2a733946a2644cf2f089a42924e600207cb