5ddfa5e68b1492f71402db33aedc365d

General

Target

5ddfa5e68b1492f71402db33aedc365d
Size

2.8MB
MD5

5ddfa5e68b1492f71402db33aedc365d
SHA1

a155fa1dd43206c68c594470062fe48ed1968668
SHA256

87ef5573459995660ec8a022cf7cbbe85187420c5e953d5c6a673f4b088f6afa
SHA512

f06598677c719fd1e9fca16f7d73a157f7fd2c3402269441368aa2d24fad57b3830e90a9300cc231ac7913f38a426ef1dbec4a7fb50493c60781796c780120e3
SSDEEP

49152:zPC6icueRTUM/3LUprkIbitaIngwjNFQIbrclUxkQLkotSe2U0LVbxNu:TCoueRVA1biMIDjNFQIbAlUae2UQbxY

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

5ddfa5e68b1492f71402db33aedc365d
.apk android

com.android.vending.billing.InAppBillingService.LUCK

com.android.vending.billing.InAppBillingService.LUCK.patchActivity

Activities

com.android.vending.billing.InAppBillingService.LUCK.patchActivity

android.intent.action.MAIN

com.android.vending.billing.InAppBillingService.LUCK.SetPrefs

android.intent.action.MAIN

com.google.android.finsky.billing.iab.BuyActivity

org.billinghack.BUY

com.android.vending.billing.InAppBillingService.LUCK.widgets.BinderWidgetConfigureActivity

android.appwidget.action.APPWIDGET_CONFIGURE

com.android.vending.billing.InAppBillingService.LUCK.widgets.AppDisablerWidgetConfigureActivity

android.appwidget.action.APPWIDGET_CONFIGURE

Permissions

com.android.vending.BILLING
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_LOGS
android.permission.ACCESS_SUPERUSER
android.permission.INTERNET
android.permission.VIBRATE
com.android.vending.CHECK_LICENSE
android.permission.android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_PHONE_STATE

Receivers

com.android.vending.billing.InAppBillingService.LUCK.PackageChangeReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_CHANGED

com.android.vending.billing.InAppBillingService.LUCK.OnAlarmReceiver

com.android.vending.billing.InAppBillingService.LUCK.OnAlarmReceiver.ACTION_WIDGET_RECEIVER

com.android.vending.billing.InAppBillingService.LUCK.BinderLuckyPatcher

android.intent.action.BOOT_COMPLETED
android.intent.action.MEDIA_SCANNER_FINISHED
android.intent.action.MEDIA_SCANNER_STARTED
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_EJECT
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_REMOVED

com.android.vending.billing.InAppBillingService.LUCK.OnBootLuckyPatcher

android.intent.action.BOOT_COMPLETED
android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE
android.intent.action.EXTERNAL_APPLICATIONS_UNAVAILABLE
android.intent.action.UMS_DISCONNECTED
android.intent.action.POWER_DISCONNECTED

com.android.vending.billing.InAppBillingService.LUCK.widgets.lvl_widget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.LUCK.widgets.lvl_widget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.LUCK.widgets.lvl_widget.ACTION_WIDGET_RECEIVER_Updater

com.android.vending.billing.InAppBillingService.LUCK.widgets.inapp_widget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.LUCK.widgets.inapp_widget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.LUCK.widgets.inapp_widget.ACTION_WIDGET_RECEIVER_Updater

com.android.vending.billing.InAppBillingService.LUCK.widgets.AndroidPatchWidget

android.appwidget.action.APPWIDGET_UPDATE

com.android.vending.billing.InAppBillingService.LUCK.widgets.BinderWidget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.LUCK.widgets.BinderWidget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.LUCK.widgets.BinderWidget.ACTION_WIDGET_RECEIVER_Updater

com.android.vending.billing.InAppBillingService.LUCK.widgets.AppDisablerWidget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.LUCK.widgets.AppDisablerWidget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.LUCK.widgets.AppDisablerWidget.ACTION_WIDGET_RECEIVER_Updater

Services

com.google.android.finsky.billing.iab.InAppBillingService

com.android.vending.billing.InAppBillingService.LUCK
com.android.vending.billing.InAppBillingService.LUCL
com.android.vending.billing.InAppBillingService.LUCM
com.android.vending.billing.InAppBillingService.BIND
ir.cafebazaar.pardakht.InAppBillingService.BIND
com.nokia.payment.iapenabler.InAppBillingService.BIND
com.android.vending.billing.InAppBillingService.BINL

com.google.android.finsky.billing.iab.MarketBillingService

com.android.vending.billing.MarketBillingService.BIND

com.google.android.finsky.services.LicensingService

com.android.vending.licensing.ILicensingService

com.android.vending.billing.InAppBillingService.LUCK.TestService

com.android.vending.billing.InAppBillingService.LUCK.ITestServiceInterface.BIND

Android Permissions

5ddfa5e68b1492f71402db33aedc365d

Permissions

com.android.vending.BILLING

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_LOGS

android.permission.ACCESS_SUPERUSER

android.permission.INTERNET

android.permission.VIBRATE

com.android.vending.CHECK_LICENSE

android.permission.android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.ACCESS_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.READ_PHONE_STATE

Sharing

General

Malware Config

Signatures

Files

com.android.vending.billing.InAppBillingService.LUCK

com.android.vending.billing.InAppBillingService.LUCK.patchActivity

Activities

com.android.vending.billing.InAppBillingService.LUCK.patchActivity

com.android.vending.billing.InAppBillingService.LUCK.SetPrefs

com.google.android.finsky.billing.iab.BuyActivity

com.android.vending.billing.InAppBillingService.LUCK.widgets.BinderWidgetConfigureActivity

com.android.vending.billing.InAppBillingService.LUCK.widgets.AppDisablerWidgetConfigureActivity

Permissions

Receivers

com.android.vending.billing.InAppBillingService.LUCK.PackageChangeReceiver

com.android.vending.billing.InAppBillingService.LUCK.OnAlarmReceiver

com.android.vending.billing.InAppBillingService.LUCK.BinderLuckyPatcher

com.android.vending.billing.InAppBillingService.LUCK.OnBootLuckyPatcher

com.android.vending.billing.InAppBillingService.LUCK.widgets.lvl_widget

com.android.vending.billing.InAppBillingService.LUCK.widgets.inapp_widget

com.android.vending.billing.InAppBillingService.LUCK.widgets.AndroidPatchWidget

com.android.vending.billing.InAppBillingService.LUCK.widgets.BinderWidget

com.android.vending.billing.InAppBillingService.LUCK.widgets.AppDisablerWidget

Services

com.google.android.finsky.billing.iab.InAppBillingService

com.google.android.finsky.billing.iab.MarketBillingService

com.google.android.finsky.services.LicensingService

com.android.vending.billing.InAppBillingService.LUCK.TestService

Android Permissions

5ddfa5e68b1492f71402db33aedc365d