ff89307fe9dd157cfb179148e2029d13ffd0c41722b74bc03c7bf357273fed8c

General

Target

ff89307fe9dd157cfb179148e2029d13ffd0c41722b74bc03c7bf357273fed8c
Size

24.9MB
MD5

a4313215faea7c2c0b6363cbb2b4cad5
SHA1

3bb0caf7aa180066b1a5fbed5dacb9312c0ca71d
SHA256

ff89307fe9dd157cfb179148e2029d13ffd0c41722b74bc03c7bf357273fed8c
SHA512

547684e075cee362f945e56a69a4fd6deca1f5d0012d46ab9eab07d062dbaf148e490ad265467a093bde0db6a84dc4b49aa1666589295b155a474432b6963c96
SSDEEP

393216:Zvsb/41WUtfCPViMtkJMat25YFG+3kMwT9+c6XkR3dOnxahRDhJWF/6vxvIm:Zsb/KfC4MtkWg356V6UpcxcDhJWUvFIm

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

ff89307fe9dd157cfb179148e2029d13ffd0c41722b74bc03c7bf357273fed8c
.apk android arch:arm

com.commsource.beautyplusrd

com.qihoo.util.StartActivity

Activities

com.commsource.beautyplus.HomeActivity

android.intent.action.MAIN

com.qihoo.util.StartActivity

android.intent.action.MAIN

com.commsource.album.AlbumActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.commsource.camera.CameraActivity

android.media.action.IMAGE_CAPTURE
android.media.action.STILL_IMAGE_CAMERA
android.intent.action.VIEW
android.intent.action.VIEW

com.commsource.beautyplus.PushSchemeActivity

android.intent.action.VIEW

com.commsource.beautymain.activity.BeautyMainActivity

android.intent.action.EDIT
android.intent.action.SEND
com.commsource.beautyplus.intent.action.EDIT

com.commsource.bdv.gm.v

android.intent.action.CREATE_SHORTCUT
android.intent.action.DELETE

Permissions

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.CAMERA
android.permission.WAKE_LOCK
android.permission.VIBRATE
com.google.android.providers.gsf.permission.READ_GSERVICES
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_TASKS
com.commsource.beautyplus.permission.C2D_MESSAGE
com.google.android.c2dm.permission.RECEIVE
android.permission.RECORD_AUDIO
android.permission.SYSTEM_ALERT_WINDOW
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.RESTART_PACKAGES
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS

Receivers

com.qihoo.util.CommonReceiver

com.qihoo.commonreceiver.ARRIVED
com.qihoo.commonreceiver.CLEARED

com.appsflyer.MultipleInstallBroadcastReceiver

com.android.vending.INSTALL_REFERRER

com.commsource.beautyplus.ReferrerBroadcastReceiver

com.android.vending.INSTALL_REFERRER

com.commsource.beautyplus.PowerBootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

com.commsource.push.NotificationBroadcastReceiver

com.commsource.beautyplus.ClickNotification
com.commsource.beautyplus.PushNotification
com.commsource.beautyplus.TenDaysPushNotification

com.commsource.beautyplus.ChangeLanguageBroadcastReceiver

android.intent.action.LOCALE_CHANGED

com.google.android.gms.gcm.GcmReceiver

com.google.android.c2dm.intent.RECEIVE

com.google.android.gms.measurement.AppMeasurementReceiver

com.google.android.gms.measurement.UPLOAD

Services

com.qihoo.util.CommonService

com.qihoo.commonservice.SERVICE

com.commsource.beautyplus.gcm.MyGcmListenerService

com.google.android.c2dm.intent.RECEIVE

com.commsource.beautyplus.gcm.MyInstanceIDListenerService

com.google.android.gms.iid.InstanceID

Android Permissions

ff89307fe9dd157cfb179148e2029d13ffd0c41722b74bc03c7bf357273fed8c

Permissions

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.CAMERA

android.permission.WAKE_LOCK

android.permission.VIBRATE

com.google.android.providers.gsf.permission.READ_GSERVICES

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.GET_TASKS

com.commsource.beautyplus.permission.C2D_MESSAGE

com.google.android.c2dm.permission.RECEIVE

android.permission.RECORD_AUDIO

android.permission.SYSTEM_ALERT_WINDOW

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.RESTART_PACKAGES

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.commsource.beautyplusrd

com.qihoo.util.StartActivity

Activities

com.commsource.beautyplus.HomeActivity

com.qihoo.util.StartActivity

com.commsource.album.AlbumActivity

com.commsource.camera.CameraActivity

com.commsource.beautyplus.PushSchemeActivity

com.commsource.beautymain.activity.BeautyMainActivity

com.commsource.bdv.gm.v

Permissions

Receivers

com.qihoo.util.CommonReceiver

com.appsflyer.MultipleInstallBroadcastReceiver

com.commsource.beautyplus.ReferrerBroadcastReceiver

com.commsource.beautyplus.PowerBootBroadcastReceiver

com.commsource.push.NotificationBroadcastReceiver

com.commsource.beautyplus.ChangeLanguageBroadcastReceiver

com.google.android.gms.gcm.GcmReceiver

com.google.android.gms.measurement.AppMeasurementReceiver

Services

com.qihoo.util.CommonService

com.commsource.beautyplus.gcm.MyGcmListenerService

com.commsource.beautyplus.gcm.MyInstanceIDListenerService

Android Permissions

ff89307fe9dd157cfb179148e2029d13ffd0c41722b74bc03c7bf357273fed8c