20f81eac3e3d4492d61699d6eada9abd

General

Target

20f81eac3e3d4492d61699d6eada9abd
Size

9.1MB
MD5

20f81eac3e3d4492d61699d6eada9abd
SHA1

d7b2bfce9ee31720c9be029b2625623eef964f7d
SHA256

e709c0e7d16119b92d0d6f4bc8d30e6713ef29bb5afff5c6b25a56fba9e4f170
SHA512

6882b7e32c155d2255dd82fc6bc26e8adcea3566503f49093d937aab6a6324abd8ffca1a44b59d4dfa834a05287302367c4fa9773bceae8cd3f3482532649a90
SSDEEP

196608:7SjQOM+q77jVaMy8jOcXUbMjUWu/E+YFiItXiEc84SdcmFnQLVJ6NpY6:7SjJvq7HVaAjOckGU+FrtSF84S7ZQhA/

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by input method services to bind with the system. Allows apps to provide custom input methods (keyboards).	android.permission.BIND_INPUT_METHOD

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

20f81eac3e3d4492d61699d6eada9abd
.apk android arch:arm

com.iflytek.inputmethod

.LauncherActivity

Activities

.LauncherActivity

android.intent.action.MAIN

.EntryActivity

com.iflytek.inputmethod.action_ime

.setting.NewSettingTabActivity

com.iflytek.inputmethod.ACTION_FLYTRANS_SKIN
com.iflytek.inputmethod.loaclskin

.download.DownloadActivity

com.iflytek.inputmethod.ACTION_DOWNLOAD_VIEW

.setting.FriendShareActivity

com.iflytek.inputmethod.ACTION_SHARE_VIEW

.setting.plugin.PluginSpeechActivity

com.iflytek.inputmethod.ACTION_FLYTRANS_AITALK

.setting.skin.theme.ThemeRequestActivity

android.intent.action.VIEW

.install.FlyDeliverActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.MAIN

.wxapi.WXEntryActivity

android.intent.action.VIEW

Permissions

android.permission.WRITE_SETTINGS
android.permission.READ_SETTINGS
android.permission.READ_CONTACTS
android.permission.RECORD_AUDIO
android.permission.INTERNET
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.ACCESS_NETWORK_STATE
android.permission.GET_TASKS
android.permission.ACCESS_WIFI_STATE
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN

Receivers

com.iflytek.inputmethod.multiprocess.AssistReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.iflytek.inputmethod.codescan.QrCodeShareBoradcastReceiver

com.iflytek.inputmethod.ACTION_RECEIVE_QRCODE

Services

.FlyIME

android.view.InputMethod

.download.DownloadHandlerService

com.iflytek.inputmethod.download.handler_service

Android Permissions

20f81eac3e3d4492d61699d6eada9abd

Permissions

android.permission.WRITE_SETTINGS

android.permission.READ_SETTINGS

android.permission.READ_CONTACTS

android.permission.RECORD_AUDIO

android.permission.INTERNET

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE

android.permission.GET_TASKS

android.permission.ACCESS_WIFI_STATE

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

Sharing

General

Malware Config

Signatures

Files

com.iflytek.inputmethod

.LauncherActivity

Activities

.LauncherActivity

.EntryActivity

.setting.NewSettingTabActivity

.download.DownloadActivity

.setting.FriendShareActivity

.setting.plugin.PluginSpeechActivity

.setting.skin.theme.ThemeRequestActivity

.install.FlyDeliverActivity

.wxapi.WXEntryActivity

Permissions

Receivers

com.iflytek.inputmethod.multiprocess.AssistReceiver

com.iflytek.inputmethod.codescan.QrCodeShareBoradcastReceiver

Services

.FlyIME

.download.DownloadHandlerService

Android Permissions

20f81eac3e3d4492d61699d6eada9abd