EHS_050040[.]apk

General

Target

EHS_050040.apk
Size

3.2MB
MD5

a919fe6acd4d99bb9c9c092ee7b80349
SHA1

fc8e69d75bd5589a128d4f15fefa28afd2527c7a
SHA256

449ded54066527d905e72807fa37e323918ba3fa45381c42f0540c11f9f73f12
SHA512

6490ee6a0ef73b1b595e6f652cdb350f3956003da5dad360c86487a6bd2f43367660839b57b88c5b96395a5409896c9e51c15f58144e8c20a498f20df96d1f52
SSDEEP

49152:bpRj0zUTJJspYzUmKtWtJi7XfJNa5JfqLtzytmd/Qnmh7cDoW8JkfMe+srp:njtkmKtWtJi7vJNa58eq/rhQDz8JYjd

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

Processes:

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

EHS_050040.apk
.apk android

com.zebra.mdna.enterprisehomescreen

com.zebra.mdna.enterprisehomescreen.HomeScreenActivity

Activities

com.zebra.mdna.enterprisehomescreen.HomeScreenActivity

android.intent.action.MAIN

com.zebra.mdna.enterprisehomescreen.PinShortcutConfirm

android.content.pm.action.CONFIRM_PIN_SHORTCUT

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.SET_WALLPAPER
android.permission.BLUETOOTH
android.permission.ACCESS_COARSE_LOCATION
android.permission.LOCAL_MAC_ADDRESS
android.permission.FOREGROUND_SERVICE
com.symbol.mxmf.ACCESS_MX_MANAGEMENT_FRAMEWORK_SERVICE
com.symbol.mxmf.proxyframework.BIND_SERVICE
com.symbol.mxmf.proxyframework.BIND_SERVICE_PRIVAPI
com.zebra.provider.WRITE
com.zebra.provider.READ
android.permission.SYSTEM_ALERT_WINDOW
com.google.android.providers.gsf.permission.READ_GSERVICES
com.zebra.securestoragemanager.securecontentprovider.PERMISSION.WRITE
com.zebra.securestoragemanager.securecontentprovider.PERMISSION.READ
com.zebra.devicemanager.provider.READ_PERMISSION
com.symbol.zdm.ACCESS_DEVICE_MANAGER_SERVICE
com.symbol.osx.proxyframework.permission.APP_LOCKOUT
com.symbol.osx.proxyframework.permission.MXADDONSERVICE_CONTROL
com.symbol.osx.proxyframework.permission.BIND_SYSTEM_INFO_REPORTING
com.symbol.osx.proxyframework.permission.SETTINGS_CHANGE
com.symbol.osx.proxyframework.permission.BIND_APP_INSTALL_UNINSTALL
com.symbol.osx.proxyframework.permission.BIND_CERT_INSTALL_UNINSTALL
com.symbol.osx.multiuser.permission.MULTIUSER_STATUS
com.symbol.osx.securestorage.permission.SECURE_STORAGE

Receivers

com.zebra.mdna.enterprisehomescreen.util.MxBroadcastReceiverForPackage

com.symbol.mxmf.proxyframework.CUSTOM_PACKAGE_CHANGES

Services

EHS_050040.apk

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.SET_WALLPAPER

android.permission.BLUETOOTH

android.permission.ACCESS_COARSE_LOCATION

android.permission.LOCAL_MAC_ADDRESS

android.permission.FOREGROUND_SERVICE

com.symbol.mxmf.ACCESS_MX_MANAGEMENT_FRAMEWORK_SERVICE

com.symbol.mxmf.proxyframework.BIND_SERVICE

com.symbol.mxmf.proxyframework.BIND_SERVICE_PRIVAPI

com.zebra.provider.WRITE

com.zebra.provider.READ

android.permission.SYSTEM_ALERT_WINDOW

com.google.android.providers.gsf.permission.READ_GSERVICES

com.zebra.securestoragemanager.securecontentprovider.PERMISSION.WRITE

com.zebra.securestoragemanager.securecontentprovider.PERMISSION.READ

com.zebra.devicemanager.provider.READ_PERMISSION

com.symbol.zdm.ACCESS_DEVICE_MANAGER_SERVICE

com.symbol.osx.proxyframework.permission.APP_LOCKOUT

com.symbol.osx.proxyframework.permission.MXADDONSERVICE_CONTROL

com.symbol.osx.proxyframework.permission.BIND_SYSTEM_INFO_REPORTING

com.symbol.osx.proxyframework.permission.SETTINGS_CHANGE

com.symbol.osx.proxyframework.permission.BIND_APP_INSTALL_UNINSTALL

com.symbol.osx.proxyframework.permission.BIND_CERT_INSTALL_UNINSTALL

com.symbol.osx.multiuser.permission.MULTIUSER_STATUS

com.symbol.osx.securestorage.permission.SECURE_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.zebra.mdna.enterprisehomescreen

com.zebra.mdna.enterprisehomescreen.HomeScreenActivity

Activities

com.zebra.mdna.enterprisehomescreen.HomeScreenActivity

com.zebra.mdna.enterprisehomescreen.PinShortcutConfirm

Permissions

Receivers

com.zebra.mdna.enterprisehomescreen.util.MxBroadcastReceiverForPackage

Services

Android Permissions

EHS_050040.apk