4017b648ea69d9307a89b193bebafa61

General

Target

4017b648ea69d9307a89b193bebafa61
Size

12.3MB
MD5

4017b648ea69d9307a89b193bebafa61
SHA1

acc2aca1d7b10f33cc6463444ee3c184433dba24
SHA256

b228544460f94dcc18c86b1f75008f385a622f03e91e93b587c7945c8dd8f555
SHA512

ec59b4c8967f0b822294286cc6192ba935b09fa217a4b9a2cd79cef062abaf3b0858d2c40aa3f44363e350d4aeeaafcdf3afed6123abacd1f99048efc83db31c
SSDEEP

196608:H2cpbbaAHOzOh/rSsNQfRzIvlMRgIlGRV0L65lFf+DNkjZaQNHPjP70QW9HzRHyV:H2cOzjsWfqvWRgIo0LUHqQVPMd72CuF

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Required to be able to access the camera device.	android.permission.CAMERA

Files

4017b648ea69d9307a89b193bebafa61
.apk android arch:arm

com.lhyy.mg.childrenseaedpaint

com.lhyy.mg.childrenseaedpaint.AppActivity

Activities

com.lhyy.mg.childrenseaedpaint.AppActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.RECORD_AUDIO
android.permission.VIBRATE
android.permission.CAMERA
android.permission.GET_TASKS

Receivers

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.lhyy.mg.childrenseaedpaint.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

Services

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService
bdxadsdk.jar
.apk android
gdtadv2.jar
.apk android

Android Permissions

4017b648ea69d9307a89b193bebafa61

Permissions

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.RECORD_AUDIO

android.permission.VIBRATE

android.permission.CAMERA

android.permission.GET_TASKS

Sharing

General

Malware Config

Signatures

Files

com.lhyy.mg.childrenseaedpaint

com.lhyy.mg.childrenseaedpaint.AppActivity

Activities

com.lhyy.mg.childrenseaedpaint.AppActivity

Permissions

Receivers

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

Services

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.message.UmengMessageIntentReceiverService

Android Permissions

4017b648ea69d9307a89b193bebafa61