d12d1ffb1702bce0d23d324243c255efb36e24118f83cef0c59a0564fe764d4a

General

Target

d12d1ffb1702bce0d23d324243c255efb36e24118f83cef0c59a0564fe764d4a
Size

11.8MB
MD5

95f979c663438ca484f036045505b65a
SHA1

15ae848651c2ee7e31b28597f09b490714cc8c5d
SHA256

d12d1ffb1702bce0d23d324243c255efb36e24118f83cef0c59a0564fe764d4a
SHA512

08a2841b2812faeca342ed25b9b452e0bad4478c24cbb34f0add71f174cdc805d8e340af1780f79e6e72dfb9dbbc004dc9161c973765aa09791f80f3f368ab50
SSDEEP

196608:gllfKQ0+bsL8ZnSIjRRy7HIfaDRgR1be72XVWV4T0dhh2HyeJhJrlT0TA4GhK/G:gb3AIlSINckfa9g7a72G4T0gH/jlT0TY

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA

Files

d12d1ffb1702bce0d23d324243c255efb36e24118f83cef0c59a0564fe764d4a
.apk android

com.xoxlab.womensdayphotoframeshd

com.seattleclouds.AppStarterActivity

Activities

com.seattleclouds.AppStarterActivity

android.intent.action.MAIN

com.seattleclouds.location.LocationDetectorActivity

android.intent.action.SEARCH

com.seattleclouds.modules.search.SearchActivity

android.intent.action.SEARCH

com.seattleclouds.paypal.PayPalMessage

android.intent.action.VIEW

me.dm7.barcodescanner.zxing.ZXingScanner

com.google.zxing.client.android.SCAN.DISABLED

com.facebook.CustomTabActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.CAMERA
android.permission.ACCESS_WIFI_STATE
android.permission.USE_FINGERPRINT
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.seattleclouds.location.LocationProvidersChangedBroadcastReceiver

android.location.PROVIDERS_CHANGED

com.seattleclouds.location.geofencing.ReceiveTransitionBroadcastReceiver

com.xoxlab.womensdayphotoframeshd.location.action.PROCESS_UPDATES

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.seattleclouds.modules.podcast.player.PodcastPlayerService

com.xoxlab.womensdayphotoframeshd.modules.podcast.player.ACTION_TOGGLE_PLAY
com.xoxlab.womensdayphotoframeshd.modules.podcast.player.ACTION_PLAY
com.xoxlab.womensdayphotoframeshd.modules.podcast.player.ACTION_PAUSE
com.xoxlab.womensdayphotoframeshd.modules.podcast.player.ACTION_STOP
com.xoxlab.womensdayphotoframeshd.modules.podcast.player.ACTION_SET_URL
com.xoxlab.womensdayphotoframeshd.modules.podcast.player.ACTION_REWIND
com.xoxlab.womensdayphotoframeshd.modules.podcast.player.ACTION_FAST_FORWARD

com.seattleclouds.modules.podcast.download.PodcastDownloadService

com.xoxlab.womensdayphotoframeshd.modules.podcast.download.ACTION_STOP_DOWNLOADS

com.seattleclouds.fcm.FCMMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

d12d1ffb1702bce0d23d324243c255efb36e24118f83cef0c59a0564fe764d4a

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.CAMERA

android.permission.ACCESS_WIFI_STATE

android.permission.USE_FINGERPRINT

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Sharing

General

Malware Config

Signatures

Files

com.xoxlab.womensdayphotoframeshd

com.seattleclouds.AppStarterActivity

Activities

com.seattleclouds.AppStarterActivity

com.seattleclouds.location.LocationDetectorActivity

com.seattleclouds.modules.search.SearchActivity

com.seattleclouds.paypal.PayPalMessage

me.dm7.barcodescanner.zxing.ZXingScanner

com.facebook.CustomTabActivity

Permissions

Receivers

com.seattleclouds.location.LocationProvidersChangedBroadcastReceiver

com.seattleclouds.location.geofencing.ReceiveTransitionBroadcastReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.seattleclouds.modules.podcast.player.PodcastPlayerService

com.seattleclouds.modules.podcast.download.PodcastDownloadService

com.seattleclouds.fcm.FCMMessagingService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.iid.FirebaseInstanceIdService

Android Permissions

d12d1ffb1702bce0d23d324243c255efb36e24118f83cef0c59a0564fe764d4a