civio_shippark1[.]3[.]1内测[.]apk

General

Target

civio_shippark1.3.1内测.apk
Size

5.7MB
MD5

2223a5d90ab31d0fb70697681f7c249a
SHA1

193604f1c495c172e52e993d28b5081e3927b9c0
SHA256

fd04c0f2ee81e834e6da4be44b6592e55b6b06de43c7f8dd391c6a2ef8339141
SHA512

57f241deefada894df6528e4b84423d89d5f6e32a028d710178fefc3cfc1e0b40d140b88094788f410b4f88be6cef76c34537197501e1a66fc6ca37c11a520ab
SSDEEP

98304:uL3SSxOr4BuzoXTUTCu7shaITmx99Jg8MEYA1pQhHKsxlVXG0SJV8BEAM:uLBOr4gUTNUsEJFavVW0QAM

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 18 IoCs

Processes:

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

civio_shippark1.3.1内测.apk
.apk android arch:arm arch:x86

civio.shipparking

io.dcloud.PandoraEntry

Activities

io.dcloud.PandoraEntry

android.intent.action.MAIN
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INSTALL_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CALL_PHONE
android.permission.CAMERA
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.FLASHLIGHT
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.RECORD_AUDIO
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_SETTINGS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.WRITE_SMS
android.permission.READ_SMS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.RECORD_AUDIO
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
com.asus.msa.SupplementaryDID.ACCESS
android.permission.READ_EXTERNAL_STORAGE
com.huawei.android.launcher.permission.CHANGE_BADGE

Receivers

io.dcloud.common.adapter.io.PushReceiver

dcloud.push.broswer

io.dcloud.common.adapter.io.DownloadReceiver

android.intent.action.DOWNLOAD_COMPLETE
android.intent.action.PACKAGE_ADDED

Services

Android Permissions

civio_shippark1.3.1内测.apk

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INSTALL_PACKAGES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CALL_PHONE

android.permission.CAMERA

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.FLASHLIGHT

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_LOGS

android.permission.READ_PHONE_STATE

android.permission.RECORD_AUDIO

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_SETTINGS

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.WRITE_SMS

android.permission.READ_SMS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.RECORD_AUDIO

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

com.asus.msa.SupplementaryDID.ACCESS

android.permission.READ_EXTERNAL_STORAGE

com.huawei.android.launcher.permission.CHANGE_BADGE

Sharing

General

Malware Config

Signatures

Files

civio.shipparking

io.dcloud.PandoraEntry

Activities

io.dcloud.PandoraEntry

Permissions

Receivers

io.dcloud.common.adapter.io.PushReceiver

io.dcloud.common.adapter.io.DownloadReceiver

Services

Android Permissions

civio_shippark1.3.1内测.apk