64_Ctrip_V8[.]68[.]2_SIT4[.]4_product_Product_18742928_55559082[.]apk

Sharing

Copy URL Twitter E-mail

General

Target

64_Ctrip_V8.68.2_SIT4.4_product_Product_18742928_55559082.apk
Size

91.6MB
MD5

b0eccb8996fe5f2567b4340e8a04aea7
SHA1

6319ebd7f3689666bc9fce23eed601c94865eee3
SHA256

47b3bdfa596453aadaa1020a44f9cdb8105b4841c730113ebcfa79cc8dc7a088
SHA512

f24cad262ad6b354d1456f17501b93394ba943a88221979d0e31161735c72795fed3b352212cd651cff7a9899d6f7869fee74b8f85f780fd5f19966dff860d05
SSDEEP

1572864:uG0DMLQpe0F+7GsKu2waeEmG4SJf1IZcnp5lz240nFOSedyF8HaOjqe4q2vS61O9:uMLp08/PPC4SJdIinV90FOSedyF86Ojz

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 16 IoCs

description	ioc
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access location in the background.	android.permission.ACCESS_BACKGROUND_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to access any geographic locations persisted in the user's shared collection.	android.permission.ACCESS_MEDIA_LOCATION
Required to be able to discover and pair nearby Bluetooth devices.	android.permission.BLUETOOTH_SCAN
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

64_Ctrip_V8.68.2_SIT4.4_product_Product_18742928_55559082.apk
.apk android arch:arm64

ctrip.android.view

ctrip.business.splash.CtripSplashActivity

Activities

ctrip.android.pay.thirdtask.CmbPayActivity

android.intent.action.VIEW

ctrip.android.pay.thirdtask.QQWalletPayProxyActivity

android.intent.action.VIEW

ctrip.android.pay.business.activity.CRNPayActivity

android.intent.action.VIEW

ctrip.android.pay.business.activity.CtripPayActivity

comccbpay105290073990480CTRIP

ctrip.android.pay.business.activity.CtripAliPayCallBackActivity

android.intent.action.VIEW

ctrip.android.pay.business.activity.CtripUniWallerCallBackActivity

android.intent.action.VIEW

com.alipay.sdk.app.AlipayResultActivity

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

ctrip.business.splash.CtripSplashActivity

android.intent.action.MAIN

ctrip.business.splash.CtripHoldActivity

android.intent.action.VIEW

ctrip.business.splash.CtripBridgeActivity

android.intent.action.VIEW

ctrip.android.view.view.CtripBootActivity

android.intent.action.VIEW
android.intent.action.VIEW
ctrip.android.view.pushsdk.PUSHACTION
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
com.vendor.action.MULTI_SEARCH

ctrip.android.flight.view.inland.FlightInquireActivity

flight_ui_test_action

ctrip.business.schema.IntentUriHandlerActivity

android.intent.action.VIEW

ctrip.android.hotel.detail.map.StreetScenicActivity

android.intent.action.VIEW

ctrip.business.share.system.EmailEntryActivity

android.intent.action.SEND

ctrip.android.view.view.CtripAppLinkActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.squareup.leakcanary.internal.DisplayLeakActivity

android.intent.action.MAIN

com.sina.weibo.sdk.share.ShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CAMERA
android.permission.INTERNET
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.RECORD_AUDIO
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.VIBRATE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.READ_CALENDAR
android.permission.WRITE_CALENDAR
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.INSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
android.permission.CALL_PHONE
com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY
android.permission.NFC
org.simalliance.openmobileapi.SMARTCARD
com.huawei.authentication.HW_ACCESS_AUTH_SERVICE
android.permission.USE_FINGERPRINT
android.permission.USE_BIOMETRIC
com.huawei.android.launcher.permission.CHANGE_BADGE
com.hihonor.android.launcher.permission.CHANGE_BADGE
com.asus.msa.SupplementaryDID.ACCESS
com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA
ctrip.android.view.permission.MIPUSH_RECEIVE
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE
ctrip.android.view.push
com.android.alarm.permission.SET_ALARM
android.permission.READ_EXTERNAL_STORAGE
android.permission.USE_CREDENTIALS
ctrip.android.view.permission.third
com.hihonor.push.permission.READ_PUSH_NOTIFICATION_INFO
android.permission.GET_PACKAGE_SIZE
android.permission.BLUETOOTH
android.permission.ACCESS_MEDIA_LOCATION
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.READ_PRIVILEGED_PHONE_STATE
android.permission.BLUETOOTH_CONNECT
android.permission.BLUETOOTH_SCAN
android.permission.POST_NOTIFICATIONS
freemme.permission.msa
freemme.permission.msa.SECURITY_ACCESS
oplus.permission.settings.LAUNCH_FOR_EXPORT

Receivers

ctrip.business.push.PushReceiver

ctrip.android.view.push.receiver
ctrip.android.view.push.receiver

ctrip.business.badge.BadgeUpdateReceiver

ctrip.business.push.receiver.1.3

ctrip.android.hotel.view.UI.comment.HotelCommentPushReceiver

ctrip.business.push.receiver.1.16

ctrip.android.pushsdk.DaemonReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

ctrip.android.pushsdk.PushMsgCenter

ctrip.android.pushsdk.msgcenter

ctrip.business.notification.NotificationReceiver

ctrip.business.notification.NotificationReceiver

ctrip.android.train.douyin.receiver.TrainDouYinReceiver

com.aweme.opensdk.action.stay.in.dy
com.aweme.opensdk.action.stay.in.dy.im

ctrip.android.pushsdkv2.receiver.HWPushRecevier

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

com.huawei.hms.support.api.push.PushEventReceiver

com.huawei.intent.action.PUSH

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

ctrip.android.pushsdkv2.receiver.XiaoMiPushReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.meizu.cloud.pushsdk.MzPushSystemReceiver

com.meizu.flyme.push.intent.PUSH_SYSTEM

ctrip.android.pushsdkv2.receiver.PushMessageReceiverImpl

com.vivo.pushclient.action.RECEIVE

ctrip.business.push.MyPushMessageReceiver

ctrip.android.push.pushsdkv2.TOKEN

cn.hikyson.godeye.core.internal.modules.leakdetector.debug.LeakOutputReceiver

com.ctrip.ibu.leakcanary.output.start
com.ctrip.ibu.leakcanary.output.progress
com.ctrip.ibu.leakcanary.output.retry
com.ctrip.ibu.leakcanary.output.done

ctrip.android.flight.widget.FlightTravelInspirationWidget

android.appwidget.action.APPWIDGET_UPDATE
miui.appwidget.action.APPWIDGET_UPDATE

ctrip.android.flight.widget.FlightTravelToolWidget

android.appwidget.action.APPWIDGET_UPDATE
miui.appwidget.action.APPWIDGET_UPDATE

ctrip.android.flight.widget.FlightLowPriceBoardWidget

android.appwidget.action.APPWIDGET_UPDATE
miui.appwidget.action.APPWIDGET_UPDATE

ctrip.android.flight.widget.FlightLowPriceSubscriptionWidget

android.appwidget.action.APPWIDGET_UPDATE
miui.appwidget.action.APPWIDGET_UPDATE

Services

ctrip.android.pushsdk.PushService

ctrip.android.view.pushsdk.PushService

ctrip.android.pushsdkv2.service.MyHonorMessageService

com.hihonor.push.action.MESSAGING_EVENT

com.heytap.mcssdk.PushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.heytap.mcssdk.AppPushService

com.heytap.mcs.action.RECEIVE_MCS_MESSAGE

Android Permissions

64_Ctrip_V8.68.2_SIT4.4_product_Product_18742928_55559082.apk

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_BACKGROUND_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.CAMERA

android.permission.INTERNET

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.RECORD_AUDIO

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.VIBRATE

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.READ_CALENDAR

android.permission.WRITE_CALENDAR

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.INSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

android.permission.CALL_PHONE

com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY

android.permission.NFC

org.simalliance.openmobileapi.SMARTCARD

com.huawei.authentication.HW_ACCESS_AUTH_SERVICE

android.permission.USE_FINGERPRINT

android.permission.USE_BIOMETRIC

com.huawei.android.launcher.permission.CHANGE_BADGE

com.hihonor.android.launcher.permission.CHANGE_BADGE

com.asus.msa.SupplementaryDID.ACCESS

com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA

ctrip.android.view.permission.MIPUSH_RECEIVE

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE

ctrip.android.view.push

com.android.alarm.permission.SET_ALARM

android.permission.READ_EXTERNAL_STORAGE

android.permission.USE_CREDENTIALS

ctrip.android.view.permission.third

com.hihonor.push.permission.READ_PUSH_NOTIFICATION_INFO

android.permission.GET_PACKAGE_SIZE

android.permission.BLUETOOTH

android.permission.ACCESS_MEDIA_LOCATION

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.READ_PRIVILEGED_PHONE_STATE

android.permission.BLUETOOTH_CONNECT

android.permission.BLUETOOTH_SCAN

Sharing

General

Malware Config

Signatures

Files

ctrip.android.view

ctrip.business.splash.CtripSplashActivity

Activities

ctrip.android.pay.thirdtask.CmbPayActivity

ctrip.android.pay.thirdtask.QQWalletPayProxyActivity

ctrip.android.pay.business.activity.CRNPayActivity

ctrip.android.pay.business.activity.CtripPayActivity

ctrip.android.pay.business.activity.CtripAliPayCallBackActivity

ctrip.android.pay.business.activity.CtripUniWallerCallBackActivity

com.alipay.sdk.app.AlipayResultActivity

com.tencent.tauth.AuthActivity

ctrip.business.splash.CtripSplashActivity

ctrip.business.splash.CtripHoldActivity

ctrip.business.splash.CtripBridgeActivity

ctrip.android.view.view.CtripBootActivity

ctrip.android.flight.view.inland.FlightInquireActivity

ctrip.business.schema.IntentUriHandlerActivity

ctrip.android.hotel.detail.map.StreetScenicActivity

ctrip.business.share.system.EmailEntryActivity

ctrip.android.view.view.CtripAppLinkActivity

com.squareup.leakcanary.internal.DisplayLeakActivity

com.sina.weibo.sdk.share.ShareTransActivity

Permissions

Receivers

ctrip.business.push.PushReceiver

ctrip.business.badge.BadgeUpdateReceiver

ctrip.android.hotel.view.UI.comment.HotelCommentPushReceiver

ctrip.android.pushsdk.DaemonReceiver

ctrip.android.pushsdk.PushMsgCenter

ctrip.business.notification.NotificationReceiver

ctrip.android.train.douyin.receiver.TrainDouYinReceiver

ctrip.android.pushsdkv2.receiver.HWPushRecevier

com.huawei.hms.support.api.push.PushEventReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

ctrip.android.pushsdkv2.receiver.XiaoMiPushReceiver

com.meizu.cloud.pushsdk.MzPushSystemReceiver

ctrip.android.pushsdkv2.receiver.PushMessageReceiverImpl

ctrip.business.push.MyPushMessageReceiver

cn.hikyson.godeye.core.internal.modules.leakdetector.debug.LeakOutputReceiver

ctrip.android.flight.widget.FlightTravelInspirationWidget

ctrip.android.flight.widget.FlightTravelToolWidget

ctrip.android.flight.widget.FlightLowPriceBoardWidget

ctrip.android.flight.widget.FlightLowPriceSubscriptionWidget

Services

ctrip.android.pushsdk.PushService

ctrip.android.pushsdkv2.service.MyHonorMessageService

com.heytap.mcssdk.PushService

com.heytap.mcssdk.AppPushService

Android Permissions

64_Ctrip_V8.68.2_SIT4.4_product_Product_18742928_55559082.apk