StarV10_Vod_20240413[.]apk

General

Target

StarV10_Vod_20240413.apk
Size

49.0MB
MD5

1f7c73c7d889d4334c2d081c8eda0ea1
SHA1

1e07827e9c7de84f4d984ebf33d18c64ceef92b8
SHA256

40312ade6cd9e6a14e80c474b1bcf82189e36e3c26d56c528dc37465fff8cf74
SHA512

6b752c3b591c28c5510213c7b0e36ca7cf9ac661c36b8e7b3151680efb375675cd2cc850f02788966f3467e4482bd1ec0aa6cb9773e2670cf02c293d961e534e
SSDEEP

786432:fqWwTs81DR5s3SB667HLKFmHdeAwP/FeviaQ5EHC5y+avNUsohh+T97VzOz5Wh9c:fq/AIDRH3kH/Wi55Ez+aliG97+Wh9c

Score

8^/10

upx

Malware Config

Signatures

Patched UPX-packed file 1 IoCs

Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

resource	yara_rule
sample	patched_upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by VPN services to bind with the system. Allows apps to provision VPN services.	android.permission.BIND_VPN_SERVICE

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

StarV10_Vod_20240413.apk
.apk android arch:arm

com.yby.v10.chaoneng

com.moon.android.activity.IndexActivity

Activities

com.moon.android.activity.IndexActivity

android.intent.action.MAIN

Permissions

android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEM
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.GET_TASKS
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Receivers

Services

com.blankj.utilcode.util.MessengerUtils$ServerService

com.yby.v10.chaoneng.messenger

cn.leo.messenger.BinderPool

com.yby.v10.chaoneng.messenger
resthird.data
.apk android

Android Permissions

StarV10_Vod_20240413.apk

Permissions

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_EXTERNAL_STORAGE

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEM

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.GET_TASKS

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Sharing

General

Malware Config

Signatures

Files

com.yby.v10.chaoneng

com.moon.android.activity.IndexActivity

Activities

com.moon.android.activity.IndexActivity

Permissions

Receivers

Services

com.blankj.utilcode.util.MessengerUtils$ServerService

cn.leo.messenger.BinderPool

Android Permissions

StarV10_Vod_20240413.apk