RuStore[.]apk | Triage

General

Target

RuStore.apk
Size

62.0MB
MD5

124d957ec98769afd840c6036765627f
SHA1

627b375342f2399d0d0779bdbdc57f4b0f5bbffa
SHA256

eaabeb9eae0185f9121ca31aae8d2df1dac40cd64e03720e41b7974c23d75efd
SHA512

1f55cb477a415b65fb8902dae2d2d97bcc621e9447ae545cd56602c42cffd5288667d2212bdb40b141e9171bace814b5c0f27f8cce4cb11927b0867f692c62d3
SSDEEP

1572864:DRSNtJCwxXkZIbnpPVi7ygqMPSG8cfU4ZX4KH:DR6tJCwxuIbnpPo7ygqtAU41VH

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

RuStore.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

ru.vk.store

ru.vk.store.app.MainActivity

Activities

ru.vk.store.app.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

ru.vk.store.feature.banners.presentation.RequestIgnoreBatteryOptimizationsActivity

ru.vk.store.RequestIgnoreBatteryOptimizations

ru.vk.store.feature.storeapp.details.direct.impl.presentation.activity.DirectDetailsActivity

android.intent.action.VIEW

ru.vk.store.feature.storeapp.update.remote.flexible.impl.presentation.FlexibleAppUpdateActivity

ru.vk.store.FlexibleAppUpdate

ru.vk.store.feature.storeapp.update.remote.force.impl.presentation.StoreappForceUpdateActivity

ru.vk.store.AnyAppForceUpdateActivity

ru.vk.store.feature.storeapp.review.remote.impl.presentation.AddAppReviewActivity

ru.vk.store.RequestAppReview

com.vk.superapp.logs.SuperappLogsActivity

android.intent.action.VIEW

com.vk.oauth.sber.oauth.VkSberOAuthActivity

android.intent.action.VIEW

com.yandex.authsdk.internal.BrowserDataActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.vk.oauth.tinkoff.oauth.VkTinkoffOAuthActivity

android.intent.action.VIEW

com.vk.oauth.esia.VkEsiaOAuthActivity

android.intent.action.VIEW

com.vk.oauth.alfa.oauth.VkAlfaOAuthActivity

android.intent.action.VIEW

ru.mail.auth.sdk.RedirectReceiverActivity

android.intent.action.VIEW

com.vk.auth.oauth.passkey.VkPasskeyWebAuthActivity

android.intent.action.VIEW

Permissions

android.permission.INSTALL_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.UPDATE_PACKAGES_WITHOUT_USER_ACTION
android.permission.ENFORCE_UPDATE_OWNERSHIP
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
com.google.android.gms.permission.AD_ID
android.permission.POST_NOTIFICATIONS
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.QUERY_ALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.provider.Telephony.SMS_RECEIVED
android.permission.PACKAGE_USAGE_STATS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
ru.sberbank.mobile.sberid.BIND_PERSONALIZATION_SERVICE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
com.android.vending.BILLING
ru.vk.store.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.ACCESS_WIFI_STATE

Receivers

com.vk.superapp.logs.SuperappLogsBroadcastReceiver

android.provider.Telephony.SECRET_CODE

com.vk.superapp.browser.utils.SuperAppLoadingBroadcastReceiver

android.intent.action.DOWNLOAD_COMPLETE

ru.rustore.sdk.pushclient.internal.arbiter.ArbiterBroadcastReceiver

com.vk.push.ACTION_MASTER_HOST_UPDATE

com.vk.push.pushsdk.broadcast.VkpnsReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.MY_PACKAGE_REPLACED

com.vk.push.pushsdk.broadcast.FullyPackageRemovedReceiver

android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_DATA_CLEARED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

com.kavsdk.StartReceiver

com.avsdk.READY
com.avsdk.LAUNCH
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

com.kavsdk.AppInstallationReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED

Services

ru.vk.store.feature.storeapp.update.remote.flexible.impl.presentation.RemoteAppUpdateFlowService

ru.vk.store.provider.appupdate.RemoteAppUpdateFlowProvider

ru.vk.store.feature.storeapp.review.remote.impl.presentation.RemoteReviewFlowProvider

ru.vk.store.provider.review.RemoteReviewFlowProvider

ru.vk.store.feature.push.featureavailability.remote.impl.RemoteFeatureAvailabilityChecker

ru.vk.store.provider.feature.FeatureAvailabilityProvider

ru.vk.store.feature.storeapp.payments.remote.impl.presentation.RemotePayTokenProvider

ru.vk.store.provider.RemotePayTokenProvider

ru.vk.store.feature.storeapp.payments.remote.impl.presentation.PayInfoProvider

ru.vk.store.provider.PayInfoProvider

ru.vk.store.feature.push.client.impl.presentation.PushClientMessagingService

ru.rustore.sdk.pushclient.MESSAGING_EVENT

ru.vk.store.feature.storeapp.analytics.remote.impl.RemoteAnalyticsProvider

ru.vk.store.provider.analytics.RemoteAnalyticsProvider

ru.vk.store.feature.payments.remote.impl.presentation.RemotePayTokenProvider

ru.vk.store.provider.RuStorePayTokenProvider

ru.vk.store.feature.user.profile.remote.impl.RemoteUserProfileProvider

ru.vk.store.provider.user.RemoteUserProfileProvider

ru.vk.store.feature.rustore.version.remote.impl.presentation.RuStoreVersionProviderImpl

ru.vk.store.provider.StoreVersionProvider

ru.vk.store.feature.storeapp.install.referrer.remote.impl.presentation.RemoteInstallReferrerProvider

ru.vk.store.sdk.install.referrer.InstallReferrerProvider

com.vk.accountmanager.domain.interactor.VkAccountAuthenticatorService

android.accounts.AccountAuthenticator

com.vk.silentauth.host.SilentAuthService

com.vk.silentauth.action.GET_INFO

com.vk.push.authsdk.ipc.AuthService

com.vk.push.HOST_SERVICE

com.vk.push.pushsdk.ipc.PushService

com.vk.push.HOST_SERVICE

com.vk.push.pushsdk.masterhost.MasterSelectionService

com.vk.push.HOST_SERVICE
com.vk.push.MASTER_SERVICE

com.vk.push.pushsdk.service.TestPushService

com.vk.push.TEST_PUSH

com.yandex.metrica.MetricaService

com.yandex.metrica.IMetricaService

com.yandex.metrica.ConfigurationService

com.yandex.metrica.configuration.ACTION_INIT

Android Permissions

RuStore.apk

Permissions

android.permission.INSTALL_PACKAGES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.UPDATE_PACKAGES_WITHOUT_USER_ACTION

android.permission.ENFORCE_UPDATE_OWNERSHIP

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

com.google.android.gms.permission.AD_ID

android.permission.POST_NOTIFICATIONS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE_DATA_SYNC

android.permission.QUERY_ALL_PACKAGES

android.permission.REQUEST_DELETE_PACKAGES

android.provider.Telephony.SMS_RECEIVED

android.permission.PACKAGE_USAGE_STATS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

ru.sberbank.mobile.sberid.BIND_PERSONALIZATION_SERVICE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

com.android.vending.BILLING

ru.vk.store.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.ACCESS_WIFI_STATE

Resubmissions

Sharing

General

Malware Config

Signatures

Files

ru.vk.store

ru.vk.store.app.MainActivity

Activities

ru.vk.store.app.MainActivity

ru.vk.store.feature.banners.presentation.RequestIgnoreBatteryOptimizationsActivity

ru.vk.store.feature.storeapp.details.direct.impl.presentation.activity.DirectDetailsActivity

ru.vk.store.feature.storeapp.update.remote.flexible.impl.presentation.FlexibleAppUpdateActivity

ru.vk.store.feature.storeapp.update.remote.force.impl.presentation.StoreappForceUpdateActivity

ru.vk.store.feature.storeapp.review.remote.impl.presentation.AddAppReviewActivity

com.vk.superapp.logs.SuperappLogsActivity

com.vk.oauth.sber.oauth.VkSberOAuthActivity

com.yandex.authsdk.internal.BrowserDataActivity

com.vk.oauth.tinkoff.oauth.VkTinkoffOAuthActivity

com.vk.oauth.esia.VkEsiaOAuthActivity

com.vk.oauth.alfa.oauth.VkAlfaOAuthActivity

ru.mail.auth.sdk.RedirectReceiverActivity

com.vk.auth.oauth.passkey.VkPasskeyWebAuthActivity

Permissions

Receivers

com.vk.superapp.logs.SuperappLogsBroadcastReceiver

com.vk.superapp.browser.utils.SuperAppLoadingBroadcastReceiver

ru.rustore.sdk.pushclient.internal.arbiter.ArbiterBroadcastReceiver

com.vk.push.pushsdk.broadcast.VkpnsReceiver

com.vk.push.pushsdk.broadcast.FullyPackageRemovedReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.profileinstaller.ProfileInstallReceiver

com.kavsdk.StartReceiver

com.kavsdk.AppInstallationReceiver

Services

ru.vk.store.feature.storeapp.update.remote.flexible.impl.presentation.RemoteAppUpdateFlowService

ru.vk.store.feature.storeapp.review.remote.impl.presentation.RemoteReviewFlowProvider

ru.vk.store.feature.push.featureavailability.remote.impl.RemoteFeatureAvailabilityChecker

ru.vk.store.feature.storeapp.payments.remote.impl.presentation.RemotePayTokenProvider

ru.vk.store.feature.storeapp.payments.remote.impl.presentation.PayInfoProvider

ru.vk.store.feature.push.client.impl.presentation.PushClientMessagingService

ru.vk.store.feature.storeapp.analytics.remote.impl.RemoteAnalyticsProvider

ru.vk.store.feature.payments.remote.impl.presentation.RemotePayTokenProvider

ru.vk.store.feature.user.profile.remote.impl.RemoteUserProfileProvider

ru.vk.store.feature.rustore.version.remote.impl.presentation.RuStoreVersionProviderImpl

ru.vk.store.feature.storeapp.install.referrer.remote.impl.presentation.RemoteInstallReferrerProvider

com.vk.accountmanager.domain.interactor.VkAccountAuthenticatorService

com.vk.silentauth.host.SilentAuthService

com.vk.push.authsdk.ipc.AuthService

com.vk.push.pushsdk.ipc.PushService

com.vk.push.pushsdk.masterhost.MasterSelectionService

com.vk.push.pushsdk.service.TestPushService

com.yandex.metrica.MetricaService

com.yandex.metrica.ConfigurationService

Android Permissions

RuStore.apk