d6c3e40b87ae7784e1f0945816429f99

General

Target

d6c3e40b87ae7784e1f0945816429f99
Size

20.1MB
MD5

d6c3e40b87ae7784e1f0945816429f99
SHA1

66c5b06e9876c91b5c68450dce76cdaa8bf4b273
SHA256

34dae89e5499db61502cd768a9f7303dc72c95c1d6158f8f08a1d8f411787003
SHA512

b39c03bc1b4364c2abc4442c9d5e8ceeabeb9df1803b803ab676e7678eaf6ad3b89f1b957756a157bf6238e72ff16bd52eb348922690c70ebdbe71dd467e779c
SSDEEP

393216:dkhturatB8t4yvQuZ9g7tMfsey+jvWmsxtOe1De7ZZq3RXbLw2tZvKerSSujm:6nSt4Tyg7tMrjvRsxtOedeF03RXbsEZF

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

d6c3e40b87ae7784e1f0945816429f99
.apk android arch:arm

mobi.shoumeng.tkwttgedoub

com.game.god.FaActivity

Activities

com.yunva.monsterhunter.MonsterHunter

android.intent.action.MAIN

cn.egame.terminal.sdk.EgameCoreActivity

android.intent.action.MAIN

com.game.god.FaActivity

android.intent.action.MAIN

Permissions

android.permission.RECEIVE_USER_PRESENT
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_ACCOUNTS
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_COARSE_LOCATION
android.permission.GET_PACKAGE_SIZE
android.permission.WRITE_SETTINGS
android.permission.CALL_PHONE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT

Receivers

mobi.shoumeng.sdk.update.UpdateReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED

cn.egame.terminal.sdk.EgameCoreReceiver

android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
cn.egame.terminal.sdk.RECEIVER_CMD

Services

cn.egame.terminal.sdk.EgameCoreService

cn.egame.terminal.sdk.SERVICE_CMD
game.jpg
.apk android arch:arm64 arch:arm arch:x86 arch:x64

cn.niucoo.niucooapp

cn.niucoo.niucooapp.activity.LoadingAty

Activities

cn.niucoo.niucooapp.activity.LoadingAty

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.READ_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.REORDER_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.WRITE_APN_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.BROADCAST_STICKY
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_NETWORK_STATE
android.permission.RESTART_PACKAGES
android.permission.RECEIVE_BOOT_COMPLETED

Receivers

cn.niucoo.niucooapp.common.ConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

cn.niucoo.niucooapp.common.BootReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.umeng.message.SystemReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.MessageReceiver

org.agoo.android.intent.action.RECEIVE

com.umeng.message.ElectionReceiver

org.agoo.android.intent.action.ELECTION_RESULT_V4

com.umeng.message.RegistrationReceiver

cn.niucoo.niucooapp.intent.action.COMMAND

com.umeng.message.UmengMessageBootReceiver

android.intent.action.BOOT_COMPLETED

Services

com.umeng.message.UmengService

cn.niucoo.niucooapp.intent.action.START
cn.niucoo.niucooapp.intent.action.COCKROACH
org.agoo.android.intent.action.PING_V4

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService
org.android.agoo.client.ElectionReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.unregistercallback.action
com.umeng.message.message.handler.action
com.umeng.message.autoupdate.handler.action
shoumeng_helper_package.jar
.apk .ps1 android polyglot
unicom_resource.dat
.apk android

com.unicom.resourcepro

Android Permissions

d6c3e40b87ae7784e1f0945816429f99

Permissions

android.permission.RECEIVE_USER_PRESENT

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_ACCOUNTS

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_COARSE_LOCATION

android.permission.GET_PACKAGE_SIZE

android.permission.WRITE_SETTINGS

android.permission.CALL_PHONE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

mobi.shoumeng.tkwttgedoub

com.game.god.FaActivity

Activities

com.yunva.monsterhunter.MonsterHunter

cn.egame.terminal.sdk.EgameCoreActivity

com.game.god.FaActivity

Permissions

Receivers

mobi.shoumeng.sdk.update.UpdateReceiver

cn.egame.terminal.sdk.EgameCoreReceiver

Services

cn.egame.terminal.sdk.EgameCoreService

cn.niucoo.niucooapp

cn.niucoo.niucooapp.activity.LoadingAty

Activities

cn.niucoo.niucooapp.activity.LoadingAty

com.tencent.tauth.AuthActivity

Permissions

Receivers

cn.niucoo.niucooapp.common.ConnectionChangeReceiver

cn.niucoo.niucooapp.common.BootReceiver

com.umeng.message.SystemReceiver

com.umeng.message.MessageReceiver

com.umeng.message.ElectionReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengMessageBootReceiver

Services

com.umeng.message.UmengService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.unicom.resourcepro

Android Permissions

d6c3e40b87ae7784e1f0945816429f99