de240dcfd40ddeb80f3e0461d3a0fcfa

General

Target

de240dcfd40ddeb80f3e0461d3a0fcfa
Size

4.5MB
MD5

de240dcfd40ddeb80f3e0461d3a0fcfa
SHA1

8e1319e351b21f63ff91b611669430427dd51c34
SHA256

79ccb5a8cc8551b1c0ca0243faf8e7ceafc50dc8402779865028e981e6f86bde
SHA512

2e66fee4294ecfb1a6445039a6f4492478e5551989ba401aa82037b5129d97c50b9c110b4956186d92f581ad002e325660c2f9bd205e4332db2f62445cd8aa22
SSDEEP

98304:qyIxgY+sCdI7YplPeF3dUL5lR80iojM+c75W7EXwcBZbUFGBEE433mlqSsfS:q7xg3sHUplPeF3dUL5Pi++5W7mBZbUFQ

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device.	android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

de240dcfd40ddeb80f3e0461d3a0fcfa
.apk android arch:arm

com.lm.powersecurity

com.lm.powersecurity.activity.SplashActivity

Activities

com.lm.powersecurity.activity.MainAliveActivity

com.lm.powersecurity.action.ALIVE

com.lm.powersecurity.activity.SplashActivity

android.intent.action.MAIN

com.lm.powersecurity.activity.ShortcutActivity

android.intent.action.MAIN

com.lm.powersecurity.activity.ShortcutSecurityActivity

android.intent.action.MAIN

com.lm.powersecurity.activity.SecurityPreScanActivity

android.intent.action.VIEW

com.lm.powersecurity.activity.VaultLockActivity

android.intent.action.MAIN

Permissions

android.permission.PACKAGE_USAGE_STATS
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.GET_TASKS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.BATTERY_CHANGED_ACTION
android.permission.EXPAND_STATUS_BAR
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED
com.android.browser.permission.READ_HISTORY_BOOKMARKS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS
com.google.android.c2dm.permission.RECEIVE
com.lm.powersecurity.permission.C2D_MESSAGE

Receivers

com.lm.powersecurity.broadcast.AlarmReceiver

com.lm.powersecurity.action.alarm

com.lm.powersecurity.broadcast.BootServiceReceiver

android.intent.action.BOOT_COMPLETED

com.lm.powersecurity.broadcast.CleanActionReceiver

com.lm.powersecurity.action.CLEAN

com.lm.powersecurity.broadcast.CpuCoolActionReceiver

com.lm.powersecurity.action.CPU

com.lm.powersecurity.broadcast.BoostActionReceiver

com.lm.powersecurity.action.BOOST

com.lm.powersecurity.broadcast.SecurityScanActionReceiver

com.lm.powersecurity.action.SECURITY_SCAN

com.lm.powersecurity.broadcast.BatteryActionReceiver

com.lm.powersecurity.action.BATTERY

com.lm.powersecurity.broadcast.NetworkActionReceiver

com.lm.powersecurity.action.NETWORK

com.appsflyer.MultipleInstallBroadcastReceiver

com.android.vending.INSTALL_REFERRER

com.lm.powersecurity.broadcast.InstallRefererReceiver

com.android.vending.INSTALL_REFERRER

com.lm.powersecurity.broadcast.UpdateActionReceiver

com.lm.powersecurity.action.update

com.google.ads.conversiontracking.InstallReceiver

com.android.vending.INSTALL_REFERRER

com.lm.powersecurity.broadcast.StartThroughSplashReceiver

com.lm.powersecurity.action.startthroughsplash

com.lm.powersecurity.broadcast.InstallQuitScanReceiver

com.lm.powersecurity.action.install_quit_scan

com.lm.powersecurity.broadcast.MsgSecuritySwitchReceiver

com.lm.powersecurity.action.msg_security_switch

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.REGISTRATION

Services

com.lm.powersecurity.service.NotificationService

android.service.notification.NotificationListenerService

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

de240dcfd40ddeb80f3e0461d3a0fcfa

Permissions

android.permission.PACKAGE_USAGE_STATS

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.GET_TASKS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.BATTERY_CHANGED_ACTION

android.permission.EXPAND_STATUS_BAR

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

android.permission.RECEIVE_BOOT_COMPLETED

com.android.browser.permission.READ_HISTORY_BOOKMARKS

com.android.browser.permission.WRITE_HISTORY_BOOKMARKS

com.google.android.c2dm.permission.RECEIVE

com.lm.powersecurity.permission.C2D_MESSAGE

Sharing

General

Malware Config

Signatures

Files

com.lm.powersecurity

com.lm.powersecurity.activity.SplashActivity

Activities

com.lm.powersecurity.activity.MainAliveActivity

com.lm.powersecurity.activity.SplashActivity

com.lm.powersecurity.activity.ShortcutActivity

com.lm.powersecurity.activity.ShortcutSecurityActivity

com.lm.powersecurity.activity.SecurityPreScanActivity

com.lm.powersecurity.activity.VaultLockActivity

Permissions

Receivers

com.lm.powersecurity.broadcast.AlarmReceiver

com.lm.powersecurity.broadcast.BootServiceReceiver

com.lm.powersecurity.broadcast.CleanActionReceiver

com.lm.powersecurity.broadcast.CpuCoolActionReceiver

com.lm.powersecurity.broadcast.BoostActionReceiver

com.lm.powersecurity.broadcast.SecurityScanActionReceiver

com.lm.powersecurity.broadcast.BatteryActionReceiver

com.lm.powersecurity.broadcast.NetworkActionReceiver

com.appsflyer.MultipleInstallBroadcastReceiver

com.lm.powersecurity.broadcast.InstallRefererReceiver

com.lm.powersecurity.broadcast.UpdateActionReceiver

com.google.ads.conversiontracking.InstallReceiver

com.lm.powersecurity.broadcast.StartThroughSplashReceiver

com.lm.powersecurity.broadcast.InstallQuitScanReceiver

com.lm.powersecurity.broadcast.MsgSecuritySwitchReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.lm.powersecurity.service.NotificationService

com.google.firebase.iid.FirebaseInstanceIdService

Android Permissions

de240dcfd40ddeb80f3e0461d3a0fcfa