0541ce5df39eb5fd9cabf58139fd8b71

General

Target

0541ce5df39eb5fd9cabf58139fd8b71
Size

4.7MB
MD5

0541ce5df39eb5fd9cabf58139fd8b71
SHA1

2a558e1e5a2120b09d674b6b69b33451cbc6ce24
SHA256

7f530bba489ced934d3bd8e55ff3c392cdcc124f75f10c174b78b815a883b310
SHA512

d631530e60e9e25ea0e7538d244177aaf61d08b74eafadbda9b6e2fcc4af61ca7bf6618bf7aa9558e663162d7c030e928cbc90127d0bb5a723d77340776c17db
SSDEEP

98304:sTBGDl2ZU8NEYZr4fI3UOPMOLBs8qhzoG+b3obvQvX+7Zssk1PBSNFG2edDbbPbz:sQDE7ojTbsX+l2IFGbdr

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

0541ce5df39eb5fd9cabf58139fd8b71
.apk android arch:arm

com.shanbay.reader

com.shanbay.common.activity.SplashActivity

Activities

com.shanbay.common.activity.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE

Services
alipay_msp.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED
com.alipay.android.app.gphone.SHARE

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService

Android Permissions

0541ce5df39eb5fd9cabf58139fd8b71

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

Sharing

General

Malware Config

Signatures

Files

com.shanbay.reader

com.shanbay.common.activity.SplashActivity

Activities

com.shanbay.common.activity.SplashActivity

Permissions

Services

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

.AlixService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

0541ce5df39eb5fd9cabf58139fd8b71