dd992818c2223908d642f63825ee187681a33105dad912b6669051b389633b32

General

Target

dd992818c2223908d642f63825ee187681a33105dad912b6669051b389633b32
Size

27.6MB
MD5

3a4761b4fb143532eb68ebd67c618d59
SHA1

fe9ac760e4a00c76150c9bd2a4d0684ce7efbe58
SHA256

dd992818c2223908d642f63825ee187681a33105dad912b6669051b389633b32
SHA512

9a80d4d1653bb5b895d918d17165c5b239aad73a4cd1c95b289a6799688f5209744fb593ffaadbb57cb8cc80251281c2b51fe7b9019e7b4b450ae9f52f7592c4
SSDEEP

786432:KwX7OlGe+wuX1bjBsknZd4iajzfS3vVOpMPY/DMC2XeMT7HZ+f:XLOlGe+w21hsKZdpvy/oLTDZA

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

dd992818c2223908d642f63825ee187681a33105dad912b6669051b389633b32
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.tototomato.tajwiddanhafazan

com.seattleclouds.AppStarterActivity

Activities

com.seattleclouds.AppStarterActivity

android.intent.action.MAIN

com.seattleclouds.location.LocationDetectorActivity

android.intent.action.SEARCH

com.seattleclouds.modules.search.SearchActivity

android.intent.action.SEARCH

com.seattleclouds.paypal.PayPalMessage

android.intent.action.VIEW

me.dm7.barcodescanner.zxing.ZXingScanner

com.google.zxing.client.android.SCAN.DISABLED

com.facebook.CustomTabActivity

android.intent.action.VIEW
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.USE_FINGERPRINT
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.c2dm.permission.RECEIVE

Receivers

com.seattleclouds.location.LocationProvidersChangedBroadcastReceiver

android.location.PROVIDERS_CHANGED

com.seattleclouds.location.geofencing.ReceiveTransitionBroadcastReceiver

com.tototomato.tajwiddanhafazan.location.action.PROCESS_UPDATES

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

Services

com.seattleclouds.modules.podcast.player.PodcastPlayerService

com.tototomato.tajwiddanhafazan.modules.podcast.player.ACTION_TOGGLE_PLAY
com.tototomato.tajwiddanhafazan.modules.podcast.player.ACTION_PLAY
com.tototomato.tajwiddanhafazan.modules.podcast.player.ACTION_PAUSE
com.tototomato.tajwiddanhafazan.modules.podcast.player.ACTION_STOP
com.tototomato.tajwiddanhafazan.modules.podcast.player.ACTION_SET_URL
com.tototomato.tajwiddanhafazan.modules.podcast.player.ACTION_REWIND
com.tototomato.tajwiddanhafazan.modules.podcast.player.ACTION_FAST_FORWARD

com.seattleclouds.modules.podcast.download.PodcastDownloadService

com.tototomato.tajwiddanhafazan.modules.podcast.download.ACTION_STOP_DOWNLOADS

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

dd992818c2223908d642f63825ee187681a33105dad912b6669051b389633b32

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.USE_FINGERPRINT

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.c2dm.permission.RECEIVE

Sharing

General

Malware Config

Signatures

Files

com.tototomato.tajwiddanhafazan

com.seattleclouds.AppStarterActivity

Activities

com.seattleclouds.AppStarterActivity

com.seattleclouds.location.LocationDetectorActivity

com.seattleclouds.modules.search.SearchActivity

com.seattleclouds.paypal.PayPalMessage

me.dm7.barcodescanner.zxing.ZXingScanner

com.facebook.CustomTabActivity

Permissions

Receivers

com.seattleclouds.location.LocationProvidersChangedBroadcastReceiver

com.seattleclouds.location.geofencing.ReceiveTransitionBroadcastReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

Services

com.seattleclouds.modules.podcast.player.PodcastPlayerService

com.seattleclouds.modules.podcast.download.PodcastDownloadService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.iid.FirebaseInstanceIdService

Android Permissions

dd992818c2223908d642f63825ee187681a33105dad912b6669051b389633b32