RuStore[.]apk | Triage

General

Target

RuStore.apk
Size

62.6MB
MD5

47f9ae50e29361cadefc65eec31f7340
SHA1

b420ffcf5ced30f5aec4cc4d62ed726b889a2bfb
SHA256

595ab9bd1483a91e82985670a3d6f89470a14ce038eef547fb9428f0e9673bf7
SHA512

2497c4027a1147ed190f37e4f196116aadc4107f77950db81fb40539c89b6358750f5b1ff0c7d6b4ea3e79c3a693b4a57ef33d9cc5641bebc36baee9db145d0a
SSDEEP

1572864:yCpkS4bvHIA784ElVGIbnpPVi7ygq0iPBg8c4HVMMS:yCpkvvI9YIbnpPo7ygqL51HVrS

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read image or video files from external storage that a user has selected via the permission prompt photo picker.	android.permission.READ_MEDIA_VISUAL_USER_SELECTED
Allows an application to read image files from external storage.	android.permission.READ_MEDIA_IMAGES
Allows an application to read video files from external storage.	android.permission.READ_MEDIA_VIDEO

Files

RuStore.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

ru.vk.store

ru.vk.store.app.MainActivity

Activities

ru.vk.store.app.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

ru.vk.store.feature.banners.presentation.RequestIgnoreBatteryOptimizationsActivity

ru.vk.store.RequestIgnoreBatteryOptimizations

ru.vk.store.feature.storeapp.details.direct.impl.presentation.activity.DirectDetailsActivity

android.intent.action.VIEW

ru.vk.store.feature.storeapp.update.remote.flexible.impl.presentation.FlexibleAppUpdateActivity

ru.vk.store.FlexibleAppUpdate

ru.vk.store.feature.storeapp.update.remote.force.impl.presentation.StoreappForceUpdateActivity

ru.vk.store.AnyAppForceUpdateActivity

ru.vk.store.feature.storeapp.update.remote.entrance.impl.presentation.UpdateEntranceActivity

ru.vk.store.FlexibleAppUpdateNew

ru.vk.store.feature.storeapp.review.remote.impl.presentation.AddAppReviewActivity

ru.vk.store.RequestAppReview

com.vk.superapp.logs.SuperappLogsActivity

android.intent.action.VIEW

com.vk.oauth.sber.oauth.VkSberOAuthActivity

android.intent.action.VIEW

com.vk.oauth.tinkoff.oauth.VkTinkoffOAuthActivity

android.intent.action.VIEW

ru.mail.auth.sdk.RedirectReceiverActivity

android.intent.action.VIEW

com.yandex.authsdk.internal.BrowserDataActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.vk.oauth.esia.VkEsiaOAuthActivity

android.intent.action.VIEW

com.vk.oauth.alfa.oauth.VkAlfaOAuthActivity

android.intent.action.VIEW

com.vk.auth.oauth.passkey.VkPasskeyWebAuthActivity

android.intent.action.VIEW

Permissions

android.permission.INSTALL_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.UPDATE_PACKAGES_WITHOUT_USER_ACTION
android.permission.ENFORCE_UPDATE_OWNERSHIP
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
com.google.android.gms.permission.AD_ID
android.permission.POST_NOTIFICATIONS
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.QUERY_ALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.provider.Telephony.SMS_RECEIVED
android.permission.FOREGROUND_SERVICE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_MEDIA_VISUAL_USER_SELECTED
android.permission.READ_MEDIA_IMAGES
android.permission.READ_MEDIA_VIDEO
android.permission.RECEIVE_BOOT_COMPLETED
ru.sberbank.mobile.sberid.BIND_PERSONALIZATION_SERVICE
com.android.vending.BILLING
ru.vk.store.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.vk.superapp.logs.SuperappLogsBroadcastReceiver

android.provider.Telephony.SECRET_CODE

com.vk.superapp.browser.utils.SuperAppLoadingBroadcastReceiver

android.intent.action.DOWNLOAD_COMPLETE

ru.rustore.sdk.pushclient.internal.arbiter.ArbiterBroadcastReceiver

com.vk.push.ACTION_MASTER_HOST_UPDATE

com.vk.push.pushsdk.broadcast.VkpnsReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.MY_PACKAGE_REPLACED

com.vk.push.pushsdk.broadcast.FullyPackageRemovedReceiver

android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_DATA_CLEARED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

com.kavsdk.StartReceiver

com.avsdk.READY
com.avsdk.LAUNCH
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

Services

ru.vk.store.feature.storeapp.update.remote.impl.presentation.RemoteAppUpdateFlowService

ru.vk.store.provider.appupdate.RemoteAppUpdateFlowProvider

ru.vk.store.feature.storeapp.review.remote.impl.presentation.RemoteReviewFlowProvider

ru.vk.store.provider.review.RemoteReviewFlowProvider

ru.vk.store.feature.push.client.impl.presentation.PushClientMessagingService

ru.rustore.sdk.pushclient.MESSAGING_EVENT

ru.vk.store.feature.storeapp.analytics.remote.impl.RemoteAnalyticsProvider

ru.vk.store.provider.analytics.RemoteAnalyticsProvider

ru.vk.store.feature.storeapp.payments.remote.impl.presentation.RemotePayTokenProvider

ru.vk.store.provider.RemotePayTokenProvider

ru.vk.store.feature.storeapp.payments.remote.impl.presentation.PayInfoProvider

ru.vk.store.provider.PayInfoProvider

ru.vk.store.feature.rustore.version.remote.impl.presentation.RuStoreVersionProviderImpl

ru.vk.store.provider.StoreVersionProvider

ru.vk.store.feature.payments.remote.impl.presentation.RemotePaymentInfoProvider

ru.vk.store.provider.RuStorePaymentInfoProvider

ru.vk.store.feature.push.featureavailability.remote.impl.RemoteFeatureAvailabilityChecker

ru.vk.store.provider.feature.FeatureAvailabilityProvider

ru.vk.store.feature.user.profile.remote.impl.RemoteUserProfileProvider

ru.vk.store.provider.user.RemoteUserProfileProvider

ru.vk.store.feature.storeapp.install.referrer.remote.impl.presentation.RemoteInstallReferrerProvider

ru.vk.store.sdk.install.referrer.InstallReferrerProvider

com.vk.accountmanager.domain.interactor.VkAccountAuthenticatorService

android.accounts.AccountAuthenticator

com.vk.silentauth.host.SilentAuthService

com.vk.silentauth.action.GET_INFO

com.vk.push.pushsdk.ipc.PushService

com.vk.push.HOST_SERVICE

com.vk.push.pushsdk.masterhost.MasterSelectionService

com.vk.push.HOST_SERVICE
com.vk.push.MASTER_SERVICE

com.vk.push.pushsdk.service.TestPushService

com.vk.push.TEST_PUSH

com.vk.push.authsdk.ipc.AuthService

com.vk.push.HOST_SERVICE

com.yandex.metrica.MetricaService

com.yandex.metrica.IMetricaService

com.yandex.metrica.ConfigurationService

com.yandex.metrica.configuration.ACTION_INIT

Android Permissions

RuStore.apk

Permissions

android.permission.INSTALL_PACKAGES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.UPDATE_PACKAGES_WITHOUT_USER_ACTION

android.permission.ENFORCE_UPDATE_OWNERSHIP

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

com.google.android.gms.permission.AD_ID

android.permission.POST_NOTIFICATIONS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE_DATA_SYNC

android.permission.QUERY_ALL_PACKAGES

android.permission.REQUEST_DELETE_PACKAGES

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.provider.Telephony.SMS_RECEIVED

android.permission.FOREGROUND_SERVICE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_MEDIA_VISUAL_USER_SELECTED

android.permission.READ_MEDIA_IMAGES

android.permission.READ_MEDIA_VIDEO

android.permission.RECEIVE_BOOT_COMPLETED

ru.sberbank.mobile.sberid.BIND_PERSONALIZATION_SERVICE

com.android.vending.BILLING

ru.vk.store.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Sharing

General

Malware Config

Signatures

Files

ru.vk.store

ru.vk.store.app.MainActivity

Activities

ru.vk.store.app.MainActivity

ru.vk.store.feature.banners.presentation.RequestIgnoreBatteryOptimizationsActivity

ru.vk.store.feature.storeapp.details.direct.impl.presentation.activity.DirectDetailsActivity

ru.vk.store.feature.storeapp.update.remote.flexible.impl.presentation.FlexibleAppUpdateActivity

ru.vk.store.feature.storeapp.update.remote.force.impl.presentation.StoreappForceUpdateActivity

ru.vk.store.feature.storeapp.update.remote.entrance.impl.presentation.UpdateEntranceActivity

ru.vk.store.feature.storeapp.review.remote.impl.presentation.AddAppReviewActivity

com.vk.superapp.logs.SuperappLogsActivity

com.vk.oauth.sber.oauth.VkSberOAuthActivity

com.vk.oauth.tinkoff.oauth.VkTinkoffOAuthActivity

ru.mail.auth.sdk.RedirectReceiverActivity

com.yandex.authsdk.internal.BrowserDataActivity

com.vk.oauth.esia.VkEsiaOAuthActivity

com.vk.oauth.alfa.oauth.VkAlfaOAuthActivity

com.vk.auth.oauth.passkey.VkPasskeyWebAuthActivity

Permissions

Receivers

com.vk.superapp.logs.SuperappLogsBroadcastReceiver

com.vk.superapp.browser.utils.SuperAppLoadingBroadcastReceiver

ru.rustore.sdk.pushclient.internal.arbiter.ArbiterBroadcastReceiver

com.vk.push.pushsdk.broadcast.VkpnsReceiver

com.vk.push.pushsdk.broadcast.FullyPackageRemovedReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.profileinstaller.ProfileInstallReceiver

com.kavsdk.StartReceiver

Services

ru.vk.store.feature.storeapp.update.remote.impl.presentation.RemoteAppUpdateFlowService

ru.vk.store.feature.storeapp.review.remote.impl.presentation.RemoteReviewFlowProvider

ru.vk.store.feature.push.client.impl.presentation.PushClientMessagingService

ru.vk.store.feature.storeapp.analytics.remote.impl.RemoteAnalyticsProvider

ru.vk.store.feature.storeapp.payments.remote.impl.presentation.RemotePayTokenProvider

ru.vk.store.feature.storeapp.payments.remote.impl.presentation.PayInfoProvider

ru.vk.store.feature.rustore.version.remote.impl.presentation.RuStoreVersionProviderImpl

ru.vk.store.feature.payments.remote.impl.presentation.RemotePaymentInfoProvider

ru.vk.store.feature.push.featureavailability.remote.impl.RemoteFeatureAvailabilityChecker

ru.vk.store.feature.user.profile.remote.impl.RemoteUserProfileProvider

ru.vk.store.feature.storeapp.install.referrer.remote.impl.presentation.RemoteInstallReferrerProvider

com.vk.accountmanager.domain.interactor.VkAccountAuthenticatorService

com.vk.silentauth.host.SilentAuthService

com.vk.push.pushsdk.ipc.PushService

com.vk.push.pushsdk.masterhost.MasterSelectionService

com.vk.push.pushsdk.service.TestPushService

com.vk.push.authsdk.ipc.AuthService

com.yandex.metrica.MetricaService

com.yandex.metrica.ConfigurationService

Android Permissions

RuStore.apk