c25029d82f8a2cd07e43f457d15e6d66

General

Target

c25029d82f8a2cd07e43f457d15e6d66
Size

4.2MB
MD5

c25029d82f8a2cd07e43f457d15e6d66
SHA1

66fd43796ef15cd5ba2d1a70d496e977107bb117
SHA256

e37976c371a67ee9660ee2541b8caef39ef4c3b5a0b32e715d249d24d8f47000
SHA512

0288687a836ebc063d7f36986f5a6410d0d45a54cb48ede646d154c953e268e658d0a18a833947c67e86873c2bab5f2a5b9f1158417f1df6c22e20306cfc67ef
SSDEEP

98304:XZMiFwXBNLXLZX8cp2plOdOHTGg69Dku9F9f6X0tCn4p+/jcd/8sVY:XZlF8BFLZ9pYl6UUDku9F9SXSir4Y

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

c25029d82f8a2cd07e43f457d15e6d66
.apk android arch:arm arch:mips arch:x86

com.duoku.coolreader

.SplashActivity

Activities

.SplashActivity

android.intent.action.MAIN

.ui.UserCenterActivity

com.duoku.coolreader.main.launch.activity.account

.ui.BookStandActivity

com.duoku.coolreader.main.launch.activity.bookshelf

.ui.SettingActivity

com.duoku.coolreader.main.launch.activity.settings

.ui.BookStoreActivity

com.duoku.coolreader.main.launch.activity.bookstore

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_LOGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.CALL_PHONE
android.permission.SEND_SMS
android.permission.DISABLE_KEYGUARD
android.permission.VIBRATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW

Receivers

.push.PushMessageReceiver

com.baidu.android.pushservice.action.MESSAGE
com.baidu.android.pushservice.action.RECEIVE
com.baidu.android.pushservice.action.notification.SHOW
com.baidu.android.pushservice.action.notification.CLICK
android.net.conn.CONNECTIVITY_CHANGE
com.duoku.push.appointbookupdate

com.baidu.android.pushservice.PushServiceReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.baidu.android.pushservice.action.notification.SHOW
com.baidu.android.pushservice.action.media.CLICK

com.baidu.android.pushservice.RegistrationReceiver

com.baidu.android.pushservice.action.METHOD
com.baidu.android.pushservice.action.BIND_SYNC
android.intent.action.PACKAGE_REMOVED

Services
alipay-newmsp-5.0.9-pro-1-201312031204.apk
.apk android arch:arm arch:x86

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

android.intent.action.MAIN

com.alipay.android.app.pay.TransContainer

android.intent.action.MAIN

com.alipay.android.app.pay.HyperlinkActivity

android.intent.action.MAIN

com.alipay.android.app.pay.PageForBrowser

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED
com.alipay.android.app.gphone.SHARE

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT

Services

com.alipay.android.app.MspService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService

Android Permissions

c25029d82f8a2cd07e43f457d15e6d66

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

android.permission.READ_LOGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.CALL_PHONE

android.permission.SEND_SMS

android.permission.DISABLE_KEYGUARD

android.permission.VIBRATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

Sharing

General

Malware Config

Signatures

Files

com.duoku.coolreader

.SplashActivity

Activities

.SplashActivity

.ui.UserCenterActivity

.ui.BookStandActivity

.ui.SettingActivity

.ui.BookStoreActivity

Permissions

Receivers

.push.PushMessageReceiver

com.baidu.android.pushservice.PushServiceReceiver

com.baidu.android.pushservice.RegistrationReceiver

Services

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

com.alipay.android.app.pay.TransContainer

com.alipay.android.app.pay.HyperlinkActivity

com.alipay.android.app.pay.PageForBrowser

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

com.alipay.android.app.MspService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

c25029d82f8a2cd07e43f457d15e6d66