xed_Andriod[.]apk

Sharing

Copy URL Twitter E-mail

General

Target

xed_Andriod.apk
Size

87.8MB
MD5

bbfadfff886f7c472d181be9b03608d2
SHA1

7329762253ba5c348810fd6285da51b49edc078a
SHA256

05fd882ab6b04d45487ed00549344927755481a8d10837341664d88ef85f4476
SHA512

a1a9b37a5c0291a1fb1465ad0caf4f63f7efd973050d2f57d1b1969b86dcb8f83526252f53328da4c80e67b82476862d850c8fd506db1fefd96c7341163b3b22
SSDEEP

1572864:aVT1Bxzxygj+4xDEe6KHNupxdvvYQ3CdJh3ik3jMSBHN6LajYGktWu+rHmq+S9Sp:aVRB5UYj1E7KALYQyzh3ik3jMYHN6CY/

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 16 IoCs

description	ioc
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read image files from external storage.	android.permission.READ_MEDIA_IMAGES
Allows an application to read video files from external storage.	android.permission.READ_MEDIA_VIDEO

Files

xed_Andriod.apk
.apk android arch:arm64

com.zztzt.huaxin

com.newtzt.activity.tztZZHeadPageActivity

Activities

com.newtzt.activity.tztZZThirdLaunchActivity

android.intent.action.VIEW

com.newtzt.activity.tztZZHeadPageActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.newtzt.activity.tztZZRootActivity

android.intent.action.MAIN

com.newtzt.activity.tztZZCommonActivity

android.intent.action.MAIN

com.newtzt.qs_activity.HXZQHqLoginActivity

android.intent.action.MAIN

cn.sharesdk.tencent.qq.ReceiveActivity

android.intent.action.VIEW

com.cnpush.tztZZMsgActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.hq.activity.tztZZSearchStockActivity

android.intent.action.MAIN

com.hq.activity.tztZZStockPaiMingActivity

android.intent.action.MAIN

com.hq.activity.tztZZUserStockActivity

android.intent.action.MAIN

com.hq.activity.tztZZSetLocalStockActivity

android.intent.action.MAIN

com.hq.activity.tztZZUserStockGroupManagerActivity

android.intent.action.MAIN

com.hq.activity.tztZZTrendActivity

android.intent.action.MAIN

com.hq.activity.tztZZTrendHistoryActivity

android.intent.action.MAIN

com.hq.activity.tztZZTrendLandScapeActivity

android.intent.action.MAIN

com.hq.activity.tztZZTrendHistoryLandScapeActivity

android.intent.action.MAIN

com.hq.activity.tztZZMultiTrendActivity

android.intent.action.MAIN

com.hq.activity.tztZZGgqqTBlockActivity

android.intent.action.MAIN

com.hq.activity.tztZZGgqqTBlockNewActivity

android.intent.action.MAIN

com.hq.activity.tztZZShortTermRadarActivity

android.intent.action.MAIN

com.hq.activity.tztZZKLineSettingListActivity

android.intent.action.MAIN

com.hq.activity.tztZZKLineSettingDetailActivity

android.intent.action.MAIN

com.hq.activity.tztZZHqMenuActivity

android.intent.action.MAIN

com.hq.activity.tztZZStockNoteActivity

android.intent.action.MAIN

com.hq.activity.tztZZStockNoteModifyActivity

android.intent.action.MAIN

com.hq.activity.tztZZImageRecognitionActivity

android.intent.action.MAIN

com.hq.activity.tztZZSketchActivity

android.intent.action.MAIN

com.hq.activity.tztZZTrendDetail2BigActivity

android.intent.action.MAIN

com.hq.activity.tztZZDDEEntryActivity

android.intent.action.MAIN

com.hq.activity.tztZZDDEListActivity

android.intent.action.MAIN

com.hq.activity.tztZZZiXuanZhiNengActivity

android.intent.action.MAIN

com.hq.activity.tztZZZiXuandapanyidongActivity

android.intent.action.MAIN

com.system.activity.tztZZIntroActivity

android.intent.action.MAIN

com.system.activity.tztZZHqLoginActivity

android.intent.action.MAIN

com.system.activity.tztZZSetRootActivity

android.intent.action.MAIN

com.system.activity.tztZZTestActivity

android.intent.action.MAIN

com.system.activity.tztZZInputUrlAjaxActivity

android.intent.action.MAIN

com.system.activity.tztZZServerSettingActivity

android.intent.action.MAIN

com.system.activity.tztZZServerUpdateActivity

android.intent.action.MAIN

com.system.activity.tztZZFunctionListActivity

android.intent.action.MAIN

com.system.activity.tztZZSpeedTestActivity

android.intent.action.MAIN

com.system.activity.tztZZFontSettingActivity

android.intent.action.MAIN

com.system.personalcenter.activity.tztZZComplexLoginActivity

android.intent.action.MAIN

com.system.personalcenter.activity.tztZZPersonnalCenterPhoneVerifyActivity

android.intent.action.MAIN

com.system.personalcenter.activity.tztZZInvestmentAdviserLoginActivity

android.intent.action.MAIN

com.trade.activity.tztZZJyLoginSimulateActivity

android.intent.action.MAIN

com.trade.activity.tztZZJYLoginActivity

android.intent.action.MAIN

com.qs_trade.activity.HXZQJYLoginActivity

android.intent.action.MAIN

com.qs_trade.activity.HXZQLoginManageActivity

android.intent.action.MAIN

com.trade.activity.tztZZSafeAccountLoginActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeBuySellActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeHKBuySellActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeGGQQBuySellFastActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeGGQQBuySellSquareActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeGGQQBuySellOpenActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeGGQQBuySellXingQuanActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeSanBanBuySellActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeSanBanQueRenBuySellActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeRZRQBuySellActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeRZRQMaiQuanHuanQuanActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeRZRQMaiQuanHuanKuanActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeRZRQSpecialMaiQuanHuanQuanActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeRZRQSpecialMaiQuanHuanKuanActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeSplitBuySellActivity

android.intent.action.MAIN

com.trade.activity.tztZZTradeBlockActivity

android.intent.action.MAIN

com.trade.activity.TztZZTradeRZRQSpecialBuySellActivity

android.intent.action.MAIN

com.trade.activity.tztZZPasswordLockActivity

android.intent.action.MAIN

com.trade.activity.tztZZPasswordUnLockedActivity

android.intent.action.MAIN

com.trade.activity.tztZZPasswordLockSetActivity

android.intent.action.MAIN

com.trade.activity.tztZZPasswordLockTimeSetActivity

android.intent.action.MAIN

com.web.activity.tztZZSelectDateActivity

android.intent.action.MAIN

com.web.activity.tztZZWebview10061Activity

android.intent.action.MAIN

com.web.activity.tztZZGgqqHomeActivity

android.intent.action.MAIN

com.web.activity.tztZZStareActivity

android.intent.action.MAIN

com.web.activity.tztZZWarningActivity

android.intent.action.MAIN

com.web.activity.tztZZHSHKSpecialNewsActivity

android.intent.action.MAIN

com.web.activity.tztZZWebView10097Activity

android.intent.action.MAIN

com.web.activity.tztZZSelfPhotoActivity

android.intent.action.MAIN

com.web.nui.tztZZAutoVoiceReadActivity

android.intent.action.MAIN

com.touchlogin.activity.tztZZFingerPrintSettingActivity

android.intent.action.MAIN

com.touchlogin.activity.tztZZAccountLoginActivity

android.intent.action.MAIN

com.touchlogin.activity.tztZZFingerPrintSettingSuccessActivity

android.intent.action.MAIN

com.mob.tools.MobUIShell

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.github.barteksc.pdfviewer.tztZZPdfViewActivity

android.intent.action.VIEW

com.mob.id.MobIDActivity

com.mob.id.app_30000

com.mob.id.MobIDSYActivity

com.mob.id.app_lk

com.mob.guard.MobTranPullUpActivity

com.mob.open.app_20000

com.mob.guard.MobTranPullLockActivity

com.mob.open.app_lk

com.sina.weibo.sdk.share.ShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

cn.sharesdk.loopshare.LoopShareActivity

android.intent.action.VIEW

Permissions

android.permission.RECORD_AUDIO
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.POST_NOTIFICATIONS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.CHANGE_CONFIGURATION
android.permission.ACCESS_COARSE_LOCATION
com.zztzt.huaxin.permission.MIPUSH_RECEIVE
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.USE_FINGERPRINT
android.permission.VIBRATE
android.hardware.sensor.accelerometer
android.permission.FOREGROUND_SERVICE
android.permission.READ_CALENDAR
android.permission.WRITE_CALENDAR
android.permission.USE_BIOMETRIC
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RESTART_PACKAGES
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_LOGS
android.permission.WRITE_SETTINGS
android.permission.READ_MEDIA_IMAGES
android.permission.READ_MEDIA_VIDEO
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE
android.permission.QUERY_ALL_PACKAGES

Receivers

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.cnpush.mipush.tztZZMiMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR
com.xiaomi.mipush.MESSAGE_ARRIVED

com.cnpush.hwpush.tztZZHuaweiPushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

com.cnpush.vivopush.tztZZVivoMessageReceiver

com.vivo.pushclient.action.RECEIVE

Services

com.cnpush.oppopush.tztZZOppoPushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.cnpush.oppopush.AppPushMessageService

com.heytap.mcs.action.RECEIVE_MCS_MESSAGE

com.mob.MobACService

com.mob.service.action.MOB_AC_SERVICE

com.mob.id.MobIDService

com.mob.intent.MOB_ID_SERVICE

com.mob.guard.MobGuardPullUpService

com.mob.intent.MOB_GUARD_SERVICE

Android Permissions

xed_Andriod.apk

Permissions

android.permission.RECORD_AUDIO

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.CALL_PHONE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.POST_NOTIFICATIONS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.CHANGE_CONFIGURATION

android.permission.ACCESS_COARSE_LOCATION

com.zztzt.huaxin.permission.MIPUSH_RECEIVE

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.USE_FINGERPRINT

android.permission.VIBRATE

android.hardware.sensor.accelerometer

android.permission.FOREGROUND_SERVICE

android.permission.READ_CALENDAR

android.permission.WRITE_CALENDAR

android.permission.USE_BIOMETRIC

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RESTART_PACKAGES

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_LOGS

android.permission.WRITE_SETTINGS

android.permission.READ_MEDIA_IMAGES

android.permission.READ_MEDIA_VIDEO

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE

android.permission.QUERY_ALL_PACKAGES

Sharing

General

Malware Config

Signatures

Files

com.zztzt.huaxin

com.newtzt.activity.tztZZHeadPageActivity

Activities

com.newtzt.activity.tztZZThirdLaunchActivity

com.newtzt.activity.tztZZHeadPageActivity

com.newtzt.activity.tztZZRootActivity

com.newtzt.activity.tztZZCommonActivity

com.newtzt.qs_activity.HXZQHqLoginActivity

cn.sharesdk.tencent.qq.ReceiveActivity

com.cnpush.tztZZMsgActivity

com.hq.activity.tztZZSearchStockActivity

com.hq.activity.tztZZStockPaiMingActivity

com.hq.activity.tztZZUserStockActivity

com.hq.activity.tztZZSetLocalStockActivity

com.hq.activity.tztZZUserStockGroupManagerActivity

com.hq.activity.tztZZTrendActivity

com.hq.activity.tztZZTrendHistoryActivity

com.hq.activity.tztZZTrendLandScapeActivity

com.hq.activity.tztZZTrendHistoryLandScapeActivity

com.hq.activity.tztZZMultiTrendActivity

com.hq.activity.tztZZGgqqTBlockActivity

com.hq.activity.tztZZGgqqTBlockNewActivity

com.hq.activity.tztZZShortTermRadarActivity

com.hq.activity.tztZZKLineSettingListActivity

com.hq.activity.tztZZKLineSettingDetailActivity

com.hq.activity.tztZZHqMenuActivity

com.hq.activity.tztZZStockNoteActivity

com.hq.activity.tztZZStockNoteModifyActivity

com.hq.activity.tztZZImageRecognitionActivity

com.hq.activity.tztZZSketchActivity

com.hq.activity.tztZZTrendDetail2BigActivity

com.hq.activity.tztZZDDEEntryActivity

com.hq.activity.tztZZDDEListActivity

com.hq.activity.tztZZZiXuanZhiNengActivity

com.hq.activity.tztZZZiXuandapanyidongActivity

com.system.activity.tztZZIntroActivity

com.system.activity.tztZZHqLoginActivity

com.system.activity.tztZZSetRootActivity

com.system.activity.tztZZTestActivity

com.system.activity.tztZZInputUrlAjaxActivity

com.system.activity.tztZZServerSettingActivity

com.system.activity.tztZZServerUpdateActivity

com.system.activity.tztZZFunctionListActivity

com.system.activity.tztZZSpeedTestActivity

com.system.activity.tztZZFontSettingActivity

com.system.personalcenter.activity.tztZZComplexLoginActivity

com.system.personalcenter.activity.tztZZPersonnalCenterPhoneVerifyActivity

com.system.personalcenter.activity.tztZZInvestmentAdviserLoginActivity

com.trade.activity.tztZZJyLoginSimulateActivity

com.trade.activity.tztZZJYLoginActivity

com.qs_trade.activity.HXZQJYLoginActivity

com.qs_trade.activity.HXZQLoginManageActivity

com.trade.activity.tztZZSafeAccountLoginActivity

com.trade.activity.tztZZTradeBuySellActivity

com.trade.activity.tztZZTradeHKBuySellActivity

com.trade.activity.tztZZTradeGGQQBuySellFastActivity

com.trade.activity.tztZZTradeGGQQBuySellSquareActivity

com.trade.activity.tztZZTradeGGQQBuySellOpenActivity

com.trade.activity.tztZZTradeGGQQBuySellXingQuanActivity

com.trade.activity.tztZZTradeSanBanBuySellActivity

com.trade.activity.tztZZTradeSanBanQueRenBuySellActivity

com.trade.activity.tztZZTradeRZRQBuySellActivity

com.trade.activity.tztZZTradeRZRQMaiQuanHuanQuanActivity

com.trade.activity.tztZZTradeRZRQMaiQuanHuanKuanActivity

com.trade.activity.tztZZTradeRZRQSpecialMaiQuanHuanQuanActivity

com.trade.activity.tztZZTradeRZRQSpecialMaiQuanHuanKuanActivity

com.trade.activity.tztZZTradeSplitBuySellActivity

com.trade.activity.tztZZTradeBlockActivity

com.trade.activity.TztZZTradeRZRQSpecialBuySellActivity

com.trade.activity.tztZZPasswordLockActivity

com.trade.activity.tztZZPasswordUnLockedActivity

com.trade.activity.tztZZPasswordLockSetActivity

com.trade.activity.tztZZPasswordLockTimeSetActivity

com.web.activity.tztZZSelectDateActivity

com.web.activity.tztZZWebview10061Activity