4b9038a06a5e7ebadd920d3ec8d1cd1f

Sharing

Copy URL Twitter E-mail

General

Target

4b9038a06a5e7ebadd920d3ec8d1cd1f
Size

8.0MB
MD5

4b9038a06a5e7ebadd920d3ec8d1cd1f
SHA1

e32b5d52339643237c87c395876ea0d346d8a39f
SHA256

a0d00a55c02670ad3dbd996649ccda84263e502f5bdd00e72acd15b296d45332
SHA512

f59995f192db1d69f20da3dadacd8831460d627b8c6d158fbcdce76da16859ca17b0545ff15d18e894fe8f9935aa969f5946a2d6455d632ef54e5b78bf3c107c
SSDEEP

196608:Xhc3UO+HmuixRVWvdYtU3+W4HOZGRYoxNTr7BbLI5M7D:jO+HmuifVWlYhtRYonTp

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

4b9038a06a5e7ebadd920d3ec8d1cd1f
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.roian.www.cf

com.roian.www.cf.Activity.MainActivity

Activities

com.roian.www.cf.Activity.MainActivity

android.intent.action.MAIN

com.roian.www.cf.Activity.Register

android.rioan.cf.toregister

com.roian.www.cf.Activity.Login

android.rioan.cf.tologin

com.roian.www.cf.Activity.Set

android.rioan.cf.toset

com.roian.www.cf.Activity.EditPwd

android.rioan.cf.toeditpwd

com.roian.www.cf.Activity.EditProfile

android.rioan.cf.toeditprofile

com.roian.www.cf.Activity.AddProject

android.rioan.cf.toaddproject

com.roian.www.cf.Activity.Recruit

android.rioan.cf.torecruit

com.roian.www.cf.Activity.Dynamic

android.rioan.cf.todynamic

com.roian.www.cf.Activity.LookBp

android.rioan.cf.tolookbp

com.roian.www.cf.Activity.EditBp

android.rioan.cf.toeditbp

com.roian.www.cf.Activity.Chat

android.rioan.cf.tochat

com.roian.www.cf.Activity.Bp1

android.rioan.cf.tobp1

com.roian.www.cf.Activity.Bp2

android.rioan.cf.tobp2

com.roian.www.cf.Activity.Bp3

android.rioan.cf.tobp3

com.roian.www.cf.Activity.Bp4

android.rioan.cf.tobp4

com.roian.www.cf.Activity.Bp5

android.rioan.cf.tobp5

com.roian.www.cf.Activity.Bp6

android.rioan.cf.tobp6

com.roian.www.cf.Activity.Bp7

android.rioan.cf.tobp7

com.roian.www.cf.Activity.Bp8

android.rioan.cf.tobp8

com.roian.www.cf.Activity.Bp9

android.rioan.cf.tobp9

com.roian.www.cf.Activity.Register2

android.rioan.cf.toregister2

com.roian.www.cf.Activity.TestContactActivity

android.rioan.cf.tocontact

com.roian.www.cf.Activity.PhoneContactActivity

android.rioan.cf.tophonecontact

com.roian.www.cf.Activity.TrendComt

android.rioan.cf.totrendcomt

com.roian.www.cf.Activity.Prj_details

android.rioan.cf.toprjdetails

com.roian.www.cf.Activity.Entrepreneur

android.rioan.cf.toentrepreneur

com.roian.www.cf.Activity.FoundSearch

android.rioan.cf.tofoundsearch

com.roian.www.cf.Activity.MyTweetOrAll

android.rioan.cf.tomytweetorall

com.roian.www.cf.Activity.NoticeSearchActivity

android.rioan.cf.noticeSearch

com.roian.www.cf.Activity.NoticeCommentActivity

android.rioan.cf.noticeComment

com.roian.www.cf.Activity.NoticeBpActivity

android.rioan.cf.noticeBp

com.roian.www.cf.Activity.NoticeActiveActivity

android.rioan.cf.noticeActive

com.roian.www.cf.Activity.NoticeZanActivity

android.rioan.cf.noticeZan

com.roian.www.cf.Activity.NoticeChatActivity

android.rioan.cf.noticeChat

com.roian.www.cf.Activity.Action_details

android.rioan.cf.actionDetails

com.roian.www.cf.Activity.ForgetPwd

android.rioan.cf.toforgetpwd

com.roian.www.cf.Activity.FansOrAttention

android.rioan.cf.tofansorattention

com.roian.www.cf.Activity.NoticeContactActivity

android.rioan.cf.noticeContact

com.roian.www.cf.Activity.NoticePhoneContactActivity

android.rioan.cf.noticePhoneContact

com.roian.www.cf.Activity.MyBp

android.rioan.cf.tomybp

com.roian.www.cf.Activity.Privacy

android.rioan.cf.toprivacy

com.roian.www.cf.Activity.Choose

android.rioan.cf.tochoose

com.roian.www.cf.Activity.Authentication

android.rioan.cf.toauthentocation

com.roian.www.cf.Activity.DeleteImageDetailActivity

android.rioan.cf.todelete

com.roian.www.cf.Activity.NoticeSetActivity

android.rioan.cf.tonoticeset

com.roian.www.cf.Activity.Ystk

android.rioan.cf.toystk

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.READ_LOGS
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_EXTERNAL_STORAGE
getui.permission.GetuiService.com.roian.www.cf
android.permission.GET_TASKS
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Receivers

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.igexin.sdk.PushManagerReceiver

com.igexin.sdk.action.pushmanager

com.igexin.getuiext.service.PayloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.exwhbih7gS6v8QQBJJNEA3

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.roian.www.cf.Receiver.PushReceiver

com.igexin.sdk.action.exwhbih7gS6v8QQBJJNEA3

Services

Android Permissions

4b9038a06a5e7ebadd920d3ec8d1cd1f

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.READ_LOGS

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_EXTERNAL_STORAGE

getui.permission.GetuiService.com.roian.www.cf

android.permission.GET_TASKS

android.permission.RECORD_AUDIO

android.permission.READ_CONTACTS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Sharing

General

Malware Config

Signatures

Files

com.roian.www.cf

com.roian.www.cf.Activity.MainActivity

Activities

com.roian.www.cf.Activity.MainActivity

com.roian.www.cf.Activity.Register

com.roian.www.cf.Activity.Login

com.roian.www.cf.Activity.Set

com.roian.www.cf.Activity.EditPwd

com.roian.www.cf.Activity.EditProfile

com.roian.www.cf.Activity.AddProject

com.roian.www.cf.Activity.Recruit

com.roian.www.cf.Activity.Dynamic

com.roian.www.cf.Activity.LookBp

com.roian.www.cf.Activity.EditBp

com.roian.www.cf.Activity.Chat

com.roian.www.cf.Activity.Bp1

com.roian.www.cf.Activity.Bp2

com.roian.www.cf.Activity.Bp3

com.roian.www.cf.Activity.Bp4

com.roian.www.cf.Activity.Bp5

com.roian.www.cf.Activity.Bp6

com.roian.www.cf.Activity.Bp7

com.roian.www.cf.Activity.Bp8

com.roian.www.cf.Activity.Bp9

com.roian.www.cf.Activity.Register2

com.roian.www.cf.Activity.TestContactActivity

com.roian.www.cf.Activity.PhoneContactActivity

com.roian.www.cf.Activity.TrendComt

com.roian.www.cf.Activity.Prj_details

com.roian.www.cf.Activity.Entrepreneur

com.roian.www.cf.Activity.FoundSearch

com.roian.www.cf.Activity.MyTweetOrAll

com.roian.www.cf.Activity.NoticeSearchActivity

com.roian.www.cf.Activity.NoticeCommentActivity

com.roian.www.cf.Activity.NoticeBpActivity

com.roian.www.cf.Activity.NoticeActiveActivity

com.roian.www.cf.Activity.NoticeZanActivity

com.roian.www.cf.Activity.NoticeChatActivity

com.roian.www.cf.Activity.Action_details

com.roian.www.cf.Activity.ForgetPwd

com.roian.www.cf.Activity.FansOrAttention

com.roian.www.cf.Activity.NoticeContactActivity

com.roian.www.cf.Activity.NoticePhoneContactActivity

com.roian.www.cf.Activity.MyBp

com.roian.www.cf.Activity.Privacy

com.roian.www.cf.Activity.Choose

com.roian.www.cf.Activity.Authentication

com.roian.www.cf.Activity.DeleteImageDetailActivity

com.roian.www.cf.Activity.NoticeSetActivity

com.roian.www.cf.Activity.Ystk

Permissions

Receivers

com.igexin.sdk.PushReceiver

com.igexin.sdk.PushManagerReceiver

com.igexin.getuiext.service.PayloadReceiver

com.igexin.download.DownloadReceiver

com.roian.www.cf.Receiver.PushReceiver

Services

Android Permissions

4b9038a06a5e7ebadd920d3ec8d1cd1f