f2ddcd56ff485c00f7e2e1b9706ca0c60857295cc5b53331658dcddcd01e9c11

General

Target

f2ddcd56ff485c00f7e2e1b9706ca0c60857295cc5b53331658dcddcd01e9c11
Size

16.6MB
MD5

31b20f360aba010063b8cef7217030c9
SHA1

b893139a16c190fe42b2e03268a209d4968bea92
SHA256

f2ddcd56ff485c00f7e2e1b9706ca0c60857295cc5b53331658dcddcd01e9c11
SHA512

37d0caef71b26b3ac0caded4aabab07dcc9890918d315ec4c136b2a7d3e840e14bd80a8b208b6646aa3dcd842dff280e6220137e0421fad526c81394965ec357
SSDEEP

196608:xTasS+XlDZPy2C2Y1DkkRrDtGvGUU4zxnvU4v6NioQwc51qBr8siKv6dtOLQiNd:has7DZXR0RiGnuMS6tetnDiNd

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 16 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

f2ddcd56ff485c00f7e2e1b9706ca0c60857295cc5b53331658dcddcd01e9c11
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

com.jianzhiku.jianzhi

com.bumiu.jianzhi.StartActivity

Activities

com.bumiu.jianzhi.StartActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.bumiu.jianzhi.SearchResultActivity

android.intent.action.SEARCH

com.baidu.frontia.activity.share.FrontiaQQFriendShareReceiverActivity

android.intent.action.VIEW

com.mob.tools.MobUIShell

android.intent.action.VIEW

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.INTERNET
android.permission.INSTALL_PACKAGES
android.permission.CLEAR_APP_CACHE
android.permission.CHANGE_NETWORK_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.WRITE_GSERVICES
android.permission.WRITE_CALENDAR
android.permission.GET_TASKS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
com.android.email.permission.ACCESS_PROVIDER
android.permission.BROADCAST_STICKY
android.permission.VIBRATE
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.RECEIVE_SMS
android.permission.GET_TASKS
android.permission.ACCESS_FINE_LOCATION
baidu.push.permission.WRITE_PUSHINFOPROVIDER.com.jianzhiku.jianzhi

Receivers

bumiu.service.MessageReceiver

com.jianzhiku.jianzhi.action.Notification_Click_Receiver

com.baidu.android.pushservice.RegistrationReceiver

com.baidu.android.pushservice.action.METHOD
com.baidu.android.pushservice.action.BIND_SYNC
android.intent.action.PACKAGE_REMOVED

bumiu.push.MyPushMessageReceiver

com.baidu.android.pushservice.action.MESSAGE
com.baidu.android.pushservice.action.RECEIVE
com.baidu.android.pushservice.action.notification.CLICK

com.baidu.android.pushservice.PushServiceReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.baidu.android.pushservice.action.notification.SHOW
com.baidu.android.pushservice.action.media.CLICK
android.intent.action.MEDIA_MOUNTED
android.intent.action.USER_PRESENT
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

bumiu.service.broadCastReceiveforpush

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_TICK

Services

com.baidu.android.pushservice.PushService

com.baidu.android.pushservice.action.PUSH_SERVICE

Android Permissions

f2ddcd56ff485c00f7e2e1b9706ca0c60857295cc5b53331658dcddcd01e9c11

Permissions

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.INTERNET

android.permission.INSTALL_PACKAGES

android.permission.CLEAR_APP_CACHE

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CALL_PHONE

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_SETTINGS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.WRITE_GSERVICES

android.permission.WRITE_CALENDAR

android.permission.GET_TASKS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

com.android.email.permission.ACCESS_PROVIDER

android.permission.BROADCAST_STICKY

android.permission.VIBRATE

android.permission.DISABLE_KEYGUARD

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.RECEIVE_SMS

android.permission.GET_TASKS

android.permission.ACCESS_FINE_LOCATION

baidu.push.permission.WRITE_PUSHINFOPROVIDER.com.jianzhiku.jianzhi

Sharing

General

Malware Config

Signatures

Files

com.jianzhiku.jianzhi

com.bumiu.jianzhi.StartActivity

Activities

com.bumiu.jianzhi.StartActivity

com.bumiu.jianzhi.SearchResultActivity

com.baidu.frontia.activity.share.FrontiaQQFriendShareReceiverActivity

com.mob.tools.MobUIShell

Permissions

Receivers

bumiu.service.MessageReceiver

com.baidu.android.pushservice.RegistrationReceiver

bumiu.push.MyPushMessageReceiver

com.baidu.android.pushservice.PushServiceReceiver

bumiu.service.broadCastReceiveforpush

Services

com.baidu.android.pushservice.PushService

Android Permissions

f2ddcd56ff485c00f7e2e1b9706ca0c60857295cc5b53331658dcddcd01e9c11