smsworm | you_tv_player[.]apk

General

Target

you_tv_player.apk
Size

30.9MB
MD5

f91fb4b5e96eef3d3b6a76ffbf33afa9
SHA1

365c0ca17666b8541501b553e56e49ae00016a2d
SHA256

5eb4699148872722744f13e66bcf22fed82c2a00cb7e3190167736d0a123fa45
SHA512

885bb1a9de9e2984ba9829e4c4484bafbda1d338d560053e90373bd7ec683684a5c29a35e8e4fb5847d0db05d081c3d43228183cb9f1cfac125cc66895b21b91
SSDEEP

786432:aHUgfKng6pY2U9b02WVYGdyhZq5yEULQb18DG:kUgyng6pY9AOGd2Zqg9QbGK

Score

10^/10

smsworm

Malware Config

Signatures

Android SMSWorm payload 1 IoCs

resource	yara_rule
sample	family_smsworm

Smsworm family
smsworm

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

you_tv_player.apk
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

my.player.android.pro

my.player.android.pro.SplashActivity

Activities

my.player.android.pro.SplashActivity

android.intent.action.MAIN

my.player.android.pro.FaqMainActivity

android.intent.action.VIEW

my.player.android.pro.FaqArticlesInCategoryActivity

android.intent.action.VIEW

my.player.android.pro.FaqArticleViewActivity

android.intent.action.VIEW

my.player.android.pro.NotificationsCenterActivity

android.intent.action.VIEW

my.player.android.pro.SettingsActivity

android.intent.action.VIEW

my.player.android.pro.ChangeAvatarActivity

android.intent.action.VIEW

my.player.android.pro.SportsChannelsActivity

android.intent.action.VIEW

my.player.android.pro.OtherAppsActivity

android.intent.action.VIEW

my.player.android.pro.PremiumPackagesActivity

android.intent.action.VIEW

my.player.android.pro.SettingsActionHandlerActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

my.player.android.pro.VideoHandler

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.facebook.CustomTabActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_NOTIFICATION_POLICY
android.permission.REQUEST_DELETE_PACKAGES
com.google.android.c2dm.permission.RECEIVE
com.google.android.providers.gsf.permission.READ_GSERVICES
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

my.player.android.pro.desktop.ConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED

com.google.android.gms.analytics.AnalyticsReceiver

com.google.android.gms.analytics.ANALYTICS_DISPATCH

com.google.android.gms.analytics.CampaignTrackingReceiver

com.android.vending.INSTALL_REFERRER

my.player.android.pro.service.BootReceiver

android.intent.action.BOOT_COMPLETED

es.munix.updatemanager.receivers.StatusReceiver

my.player.android.pro.DOWNLOAD_START
my.player.android.pro.DOWNLOAD_READY
my.player.android.pro.DOWNLOAD_ERROR
my.player.android.pro.STATUS_REQUEST_UNINSTALL
my.player.android.pro.STATUS_NO_UPDATE_AVAILABLE

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.facebook.CampaignTrackingReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

com.startapp.sdk.adsbase.remoteconfig.BootCompleteListener

android.intent.action.BOOT_COMPLETED

Services

my.player.android.pro.service.NotificationService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Android Permissions

you_tv_player.apk

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_MULTICAST_STATE

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_NOTIFICATION_POLICY

android.permission.REQUEST_DELETE_PACKAGES

com.google.android.c2dm.permission.RECEIVE

com.google.android.providers.gsf.permission.READ_GSERVICES

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Sharing

General

Malware Config

Signatures

Files

my.player.android.pro

my.player.android.pro.SplashActivity

Activities

my.player.android.pro.SplashActivity

my.player.android.pro.FaqMainActivity

my.player.android.pro.FaqArticlesInCategoryActivity

my.player.android.pro.FaqArticleViewActivity

my.player.android.pro.NotificationsCenterActivity

my.player.android.pro.SettingsActivity

my.player.android.pro.ChangeAvatarActivity

my.player.android.pro.SportsChannelsActivity

my.player.android.pro.OtherAppsActivity

my.player.android.pro.PremiumPackagesActivity

my.player.android.pro.SettingsActionHandlerActivity

my.player.android.pro.VideoHandler

com.facebook.CustomTabActivity

Permissions

Receivers

my.player.android.pro.desktop.ConnectionChangeReceiver

com.google.android.gms.analytics.AnalyticsReceiver

com.google.android.gms.analytics.CampaignTrackingReceiver

my.player.android.pro.service.BootReceiver

es.munix.updatemanager.receivers.StatusReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.CampaignTrackingReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

com.startapp.sdk.adsbase.remoteconfig.BootCompleteListener

Services

my.player.android.pro.service.NotificationService

com.google.firebase.messaging.FirebaseMessagingService

Android Permissions

you_tv_player.apk