MediaProvider[.]apk

General

Target

MediaProvider.apk
Size

2.6MB
MD5

b0f05c5262273dea641dd2a0a6af4ff8
SHA1

e4b5c1cc1134e8930135ae22578d4b0966b585b3
SHA256

0c857aeae84a561d71e9c50ee154a46679d6b89fc7a2d0ed32975ef212f7e96b
SHA512

0c69fb5ec84701366585d41841ff37a4c0b2ed79ca805167fa53e7ed27f6a7522ff0649c80170e83c8ec8b904c042d96cb9ac1fe5504a959b8cd98b1e1770cbe
SSDEEP

24576:uZ0D10QBx6rh3ZWv2TbsnRqIEI9TVCg5a/V/gsGHnWj2VGx+VQya+bAcO9ZZ6ygt:uO76rhNXsnZJC9V/d2KTLvgUyr2o

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application a broad access to external storage in scoped storage.	android.permission.MANAGE_EXTERNAL_STORAGE

Files

MediaProvider.apk
.apk android arch:arm

com.android.providers.media.module

com.android.providers.media.PermissionActivity

Activities

com.android.providers.media.CacheClearingActivity

android.os.storage.action.CLEAR_APP_CACHE

Permissions

android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK
android.permission.FOREGROUND_SERVICE
android.permission.MANAGE_USERS
android.permission.INTERACT_ACROSS_USERS
android.permission.WATCH_APPOPS
android.permission.UPDATE_APP_OPS_STATS
android.permission.UPDATE_DEVICE_STATS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_MEDIA_STORAGE
android.permission.MANAGE_EXTERNAL_STORAGE
android.permission.USE_RESERVED_DISK
android.permission.QUERY_ALL_PACKAGES
android.permission.HIDE_NON_SYSTEM_OVERLAY_WINDOWS
android.permission.LOG_COMPAT_CHANGE
android.permission.READ_COMPAT_CHANGE_CONFIG

Receivers

com.android.providers.media.MediaUpgradeReceiver

android.intent.action.PRE_BOOT_COMPLETED

com.android.providers.media.MediaReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.LOCALE_CHANGED
android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_DATA_CLEARED
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_SCANNER_SCAN_FILE
com.vt.tv.action.SCREEN_ON
com.vt.tv.action.SCREEN_OFF

Services

com.android.providers.media.fuse.ExternalStorageServiceImpl

android.service.storage.ExternalStorageService

Android Permissions

MediaProvider.apk

Permissions

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.MANAGE_USERS

android.permission.INTERACT_ACROSS_USERS

android.permission.WATCH_APPOPS

android.permission.UPDATE_APP_OPS_STATS

android.permission.UPDATE_DEVICE_STATS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_MEDIA_STORAGE

android.permission.MANAGE_EXTERNAL_STORAGE

android.permission.USE_RESERVED_DISK

android.permission.QUERY_ALL_PACKAGES

android.permission.HIDE_NON_SYSTEM_OVERLAY_WINDOWS

android.permission.LOG_COMPAT_CHANGE

android.permission.READ_COMPAT_CHANGE_CONFIG

Sharing

General

Malware Config

Signatures

Files

com.android.providers.media.module

com.android.providers.media.PermissionActivity

Activities

com.android.providers.media.CacheClearingActivity

Permissions

Receivers

com.android.providers.media.MediaUpgradeReceiver

com.android.providers.media.MediaReceiver

Services

com.android.providers.media.fuse.ExternalStorageServiceImpl

Android Permissions

MediaProvider.apk