d6bc32a71e8da26e48d1b330994ee43f[.]bin

General

Target

d6bc32a71e8da26e48d1b330994ee43f.bin
Size

20.5MB
MD5

b1e1d3f5abeabd3087b07cf4bdb542dd
SHA1

1a813f6fd9a2ee69f80a7c0670852adb6fcf02b1
SHA256

fa84f608d0ea94bc55df16a14195605ea01a584c6d90a2040b2aad74ab11cf0d
SHA512

6775629ab5b8896f55516662bdae42e035cd94cfd1340c99d25477e6e9258ad521e715aaf00e2b1f3864d5d1387bb1a1e8c50d3aa67d347ccb82ac5e82967a27
SSDEEP

393216:XYg1xbx5vpNq4yfsmExTA7vv+ZYdBMDVccxgf6hfmZuQ6xukisFZeWua7GZ3jTey:XD3xADhDv+UyMMuZZaZbuaMmy

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by input method services to bind with the system. Allows apps to provide custom input methods (keyboards).	android.permission.BIND_INPUT_METHOD

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

d6bc32a71e8da26e48d1b330994ee43f.bin
.zip

Password: infected
831017bde243964c8f47c63f1d14a4602e6961595f0b9e7e06171fa99f4ceb7e.apk
.apk android arch:arm

Password: infected

com.nuance.swype.dtc

com.nuance.swype.input.settings.SettingsDispatch

Activities

com.nuance.swype.input.settings.SettingsDispatch

android.intent.action.MAIN

com.nuance.swype.input.settings.ConnectAccountDispatch

android.intent.action.MAIN
android.intent.action.VIEW

com.nuance.swype.input.settings.LanguageDispatch

android.intent.action.MAIN

com.nuance.swype.input.settings.LanguageUpdateDispatch

android.intent.action.MAIN

com.nuance.swype.input.settings.UpdatesDispatch

android.intent.action.MAIN

com.nuance.swype.input.settings.SettingsV11

android.intent.action.MAIN

com.nuance.swype.input.settings.SettingsV19

android.intent.action.MAIN

com.nuance.swype.input.about.MainAboutFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.about.AboutSwypeFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.about.AboutDragonFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.about.AboutConnectFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.settings.TutorialFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.settings.LanguageUpdateFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.settings.SocialIntegrationPrefsFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.settings.ThemesPrefsFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.settings.PersonalDictionaryFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.settings.AccountPrefsFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.settings.AddonDictionariesPrefsFragmentActivity

android.intent.action.MAIN

com.nuance.swype.input.settings.ChinesePrefsDispatch

android.intent.action.MAIN

Permissions

android.permission.VIBRATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_USER_DICTIONARY
android.permission.BLUETOOTH
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
com.android.vending.BILLING
android.permission.RECORD_AUDIO
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_CONTACTS
android.permission.READ_SMS
android.permission.READ_CALL_LOG
android.permission.GET_ACCOUNTS

Receivers

com.localytics.android.ReferralReceiver

com.android.vending.INSTALL_REFERRER

Services

com.nuance.swype.input.IME

android.view.InputMethod
com.nuance.swype.input.baseline2ALMUpgrade

com.nuance.connect.service.ConnectClient

com.nuance.connect.service.ConnectClient

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

com.nuance.swype.dtc

com.nuance.swype.input.settings.SettingsDispatch

Activities

com.nuance.swype.input.settings.SettingsDispatch

com.nuance.swype.input.settings.ConnectAccountDispatch

com.nuance.swype.input.settings.LanguageDispatch

com.nuance.swype.input.settings.LanguageUpdateDispatch

com.nuance.swype.input.settings.UpdatesDispatch

com.nuance.swype.input.settings.SettingsV11

com.nuance.swype.input.settings.SettingsV19

com.nuance.swype.input.about.MainAboutFragmentActivity

com.nuance.swype.input.about.AboutSwypeFragmentActivity

com.nuance.swype.input.about.AboutDragonFragmentActivity

com.nuance.swype.input.about.AboutConnectFragmentActivity

com.nuance.swype.input.settings.TutorialFragmentActivity

com.nuance.swype.input.settings.LanguageUpdateFragmentActivity

com.nuance.swype.input.settings.SocialIntegrationPrefsFragmentActivity

com.nuance.swype.input.settings.ThemesPrefsFragmentActivity

com.nuance.swype.input.settings.PersonalDictionaryFragmentActivity

com.nuance.swype.input.settings.AccountPrefsFragmentActivity

com.nuance.swype.input.settings.AddonDictionariesPrefsFragmentActivity

com.nuance.swype.input.settings.ChinesePrefsDispatch

Permissions

Receivers

com.localytics.android.ReferralReceiver

Services

com.nuance.swype.input.IME

com.nuance.connect.service.ConnectClient