anydesk[.]apk | Triage

General

Target

anydesk.apk
Size

20.4MB
MD5

7c949f97a7b422230ee38f6e824ebd06
SHA1

0a4d03d030446e439cc9bfee28849e1315c45270
SHA256

585de84378f227f9fabb44ea282c54097c05fa56ea992bc028c3853e2ef17b28
SHA512

bbc3c5e39528668dd9930c5b956889852fb125e0bf5726c1d64a81aa61dfc79cd80be6f94a2183b24d8f244a077ca2bf77a9814834a77b9460cfd3e6893c6ef3
SSDEEP

393216:6lYA7NwansJiesjmXUbJR9jGjc/sWWfcqXQL0JGkv/3Dsub:6lYARwqszQpR9ao/sW8fjb

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by VPN services to bind with the system. Allows apps to provision VPN services.	android.permission.BIND_VPN_SERVICE

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application a broad access to external storage in scoped storage.	android.permission.MANAGE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

anydesk.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.anydesk.anydeskandroid

com.anydesk.anydeskandroid.gui.activity.MainActivity

Activities

com.anydesk.anydeskandroid.gui.activity.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

Permissions

com.samsung.android.knox.permission.KNOX_REMOTE_CONTROL
android.permission.sec.MDM_REMOTE_CONTROL
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.RECORD_AUDIO
android.permission.POST_NOTIFICATIONS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.MANAGE_EXTERNAL_STORAGE
android.permission.QUERY_ALL_PACKAGES
android.permission.SYSTEM_ALERT_WINDOW
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.ACCESS_NETWORK_STATE
android.permission.FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE_MEDIA_PROJECTION
android.permission.FOREGROUND_SERVICE_SPECIAL_USE
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.INJECT_EVENTS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.USE_BIOMETRIC
android.permission.USE_FINGERPRINT

Receivers

com.anydesk.anydeskandroid.adcontrol.SamsungLicenseReceiver

com.samsung.android.knox.intent.action.LICENSE_STATUS
com.samsung.android.knox.intent.extra.KNOX_LICENSE_STATUS
edm.intent.action.knox_license.status
edm.intent.action.license.status

com.anydesk.anydeskandroid.adcontrol.AdDeviceAdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED

com.anydesk.anydeskandroid.BootReceiver

android.intent.action.LOCKED_BOOT_COMPLETED
android.intent.action.BOOT_COMPLETED

Services

com.anydesk.anydeskandroid.AdVpnService

android.net.VpnService

Android Permissions

anydesk.apk

Permissions

com.samsung.android.knox.permission.KNOX_REMOTE_CONTROL

android.permission.sec.MDM_REMOTE_CONTROL

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.RECORD_AUDIO

android.permission.POST_NOTIFICATIONS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.MANAGE_EXTERNAL_STORAGE

android.permission.QUERY_ALL_PACKAGES

android.permission.SYSTEM_ALERT_WINDOW

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.ACCESS_NETWORK_STATE

android.permission.FOREGROUND_SERVICE

android.permission.FOREGROUND_SERVICE_MEDIA_PROJECTION

android.permission.FOREGROUND_SERVICE_SPECIAL_USE

android.permission.FOREGROUND_SERVICE_DATA_SYNC

android.permission.INJECT_EVENTS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

android.permission.USE_BIOMETRIC

android.permission.USE_FINGERPRINT

Resubmissions

Sharing

General

Malware Config

Signatures

Files

com.anydesk.anydeskandroid

com.anydesk.anydeskandroid.gui.activity.MainActivity

Activities

com.anydesk.anydeskandroid.gui.activity.MainActivity

Permissions

Receivers

com.anydesk.anydeskandroid.adcontrol.SamsungLicenseReceiver

com.anydesk.anydeskandroid.adcontrol.AdDeviceAdminReceiver

com.anydesk.anydeskandroid.BootReceiver

Services

com.anydesk.anydeskandroid.AdVpnService

Android Permissions

anydesk.apk