0/61

Threat

com.android.systemui

System UI

Analyzed on 2021-09-03T14:02:32.449392

136

permissions

24

activities

11

services

11

receivers

2

domains

File sums

MD5 2fd7923111136081b4cb8a56f5f8d7bc
SHA1 ea992a2c1232355c355c7337acd818d005306d2d
SHA256 062657a9ad3ce8d7a13f06714d8215a0e3bb3330d52e0072fdaf990046aaa9fc
Size 21.56MB

APKiD

Information computed with APKiD.

/tmp/tmp540fktlc!classes.dex
yara_issue
  • yara issue - dex file recognized by apkid but not yara module
anti_vm
  • Build.FINGERPRINT check
compiler
  • unknown (please file detection issue!)

SSdeep

Information computed with ssdeep.

APK file 196608:Dszy45fUp4QtB+xZ9TEOOd3ysFusqSMzWZ:Dszy3pF+x8iFq
Manifest 768:ahqYSlaXlANk0u5Bb/BRIFQUn6y1LmEDL3O3H3T3i3+3mE3QMVXxgUx3JJwP8nKG:…
classes.dex 49152:vLOyeiTOBvqeg9bNOLhbbrUPvAB5fP2VHMuZoHaDFU8iYGNxPb3mzUuGqx8QoVX…

Dexofuzzy

Information computed with Dexofuzzy.

classes.dex None

APK details

Information computed with AndroGuard and Pithus.

Package com.android.systemui
App name System UI
Version name 10
Version code 29
SDK 29 - 29
UAID dea65aa977b8569a2c66f19ed90b56dbc541f81e
Signature Signature V1 Signature V2 Signature V3
Frosting Not frosted
Blocks found within V2 signature:
  • 0x7109871a: Unknown
  • 0xf05368c0: Unknown
  • 0x42726577: Verity padding

Certificate details

Information computed with AndroGuard.

MD5 eb86258406dcb0a2c0ba083bf23986d3
SHA1 38d81cfb64bd5d78baed393c25e7e92b9160200e
SHA256 0510e57a129e3b98d3f5e790db0f51c786b06461ed390dbfb3d860807b0d7b3a
Issuer Common Name: Android, Organizational Unit: Android, Organization: Google Inc., Locality: Mountain View, State/Province: California, Country: US
Not before 2017-04-19T00:50:16+00:00
Not after 2047-04-19T00:50:16+00:00

Manifest analysis

Information computed with MobSF.

Low App is direct-boot aware [android:directBootAware=true]
This app can run before the user unlocks the device. If you're using a custom subclass of Application, and if any component inside your application is direct - boot aware, then your entire custom application is considered to be direct - boot aware.During Direct Boot, your application can only access the data that is stored in device protected storage.
High Service (com.google.android.systemui.elmyra.plugin.ElmyraSensorPlugin) is not Protected.An intent-filter exists.
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Service is explicitly exported.
High Content Provider (com.google.android.systemui.keyguard.KeyguardSliceProviderGoogle) is not Protected. [android:exported=true]
A Content Provider is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.android.systemui.plugin.globalactions.wallet.backend.gpay.NfcTapReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.android.systemui.plugin.globalactions.wallet.EnableWalletBroadcastReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.android.systemui.SystemUIService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.android.systemui.ImageWallpaper) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_WALLPAPER [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.android.systemui.tuner.TunerActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (com.android.systemui.DemoMode) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.android.systemui.usb.UsbConfirmActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.MANAGE_USB [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.android.systemui.usb.UsbPermissionActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.MANAGE_USB [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.android.systemui.usb.UsbResolverActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.MANAGE_USB [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.android.systemui.usb.UsbAccessoryUriActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.MANAGE_USB [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.android.systemui.usb.UsbContaminantActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.MANAGE_USB [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity-Alias (com.android.systemui.UsbDebuggingActivityAlias) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.DUMP [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High TaskAffinity is set for Activity
(com.android.systemui.net.NetworkOverLimitActivity)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Activity (com.android.systemui.net.NetworkOverLimitActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.MANAGE_NETWORK_POLICY [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.android.systemui.media.MediaProjectionPermissionActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.android.systemui.SlicePermissionActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.android.systemui.egg.MLandActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.android.systemui.DessertCaseDream) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_DREAM_SERVICE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Service (com.android.systemui.keyguard.KeyguardService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.android.systemui.Somnambulator) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.android.systemui.settings.BrightnessDialog) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.android.systemui.ForegroundServicesDialog) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.android.systemui.chooser.ChooserActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Service (com.android.systemui.doze.DozeService) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_DREAM_SERVICE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Broadcast Receiver (com.android.systemui.statusbar.KeyboardShortcutsReceiver) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.

Main Activity

Information computed with AndroGuard.

['com.android.systemui.screenrecord.ScreenRecordDialog', 'com.android.systemui.tuner.TunerActivity', 'com.android.systemui.stackdivider.ForcedResizableInfoActivity', 'com.android.systemui.usb.UsbConfirmActivity', 'com.android.systemui.usb.UsbPermissionActivity', 'com.android.systemui.usb.UsbResolverActivity', 'com.android.systemui.usb.UsbAccessoryUriActivity', 'com.android.systemui.usb.UsbContaminantActivity', 'com.android.systemui.usb.UsbDebuggingActivity', 'com.android.systemui.usb.UsbDebuggingSecondaryUserActivity', 'com.android.systemui.net.NetworkOverLimitActivity', 'com.android.systemui.media.MediaProjectionPermissionActivity', 'com.android.systemui.pip.tv.PipMenuActivity', 'com.android.systemui.pip.phone.PipMenuActivity', 'com.android.systemui.SlicePermissionActivity', 'com.android.systemui.DessertCase', 'com.android.systemui.egg.MLandActivity', 'com.android.systemui.keyguard.WorkLockActivity', 'com.android.systemui.Somnambulator', 'com.android.systemui.settings.BrightnessDialog', 'com.android.systemui.ForegroundServicesDialog', 'com.android.systemui.chooser.ChooserActivity', 'androidx.slice.compat.SlicePermissionActivity', 'com.google.android.gms.common.api.GoogleApiActivity']

Activities

Information computed with AndroGuard.

com.android.systemui.screenrecord.ScreenRecordDialog
com.android.systemui.tuner.TunerActivity
com.android.systemui.stackdivider.ForcedResizableInfoActivity
com.android.systemui.usb.UsbConfirmActivity
com.android.systemui.usb.UsbPermissionActivity
com.android.systemui.usb.UsbResolverActivity
com.android.systemui.usb.UsbAccessoryUriActivity
com.android.systemui.usb.UsbContaminantActivity
com.android.systemui.usb.UsbDebuggingActivity
com.android.systemui.usb.UsbDebuggingSecondaryUserActivity
com.android.systemui.net.NetworkOverLimitActivity
com.android.systemui.media.MediaProjectionPermissionActivity
com.android.systemui.pip.tv.PipMenuActivity
com.android.systemui.pip.phone.PipMenuActivity
com.android.systemui.SlicePermissionActivity
com.android.systemui.DessertCase
com.android.systemui.egg.MLandActivity
com.android.systemui.keyguard.WorkLockActivity
com.android.systemui.Somnambulator
com.android.systemui.settings.BrightnessDialog
com.android.systemui.ForegroundServicesDialog
com.android.systemui.chooser.ChooserActivity
androidx.slice.compat.SlicePermissionActivity
com.google.android.gms.common.api.GoogleApiActivity

Receivers

Information computed with AndroGuard.

com.android.systemui.plugin.globalactions.wallet.backend.gpay.NfcTapReceiver
com.android.systemui.plugin.globalactions.wallet.EnableWalletBroadcastReceiver
com.android.systemui.screenshot.ScreenshotServiceErrorReceiver
com.android.systemui.SysuiRestartReceiver
com.android.systemui.screenshot.GlobalScreenshot$ActionProxyReceiver
com.android.systemui.screenshot.GlobalScreenshot$TargetChosenReceiver
com.android.systemui.screenshot.GlobalScreenshot$DeleteScreenshotReceiver
com.android.systemui.screenshot.GlobalScreenshot$SmartActionsReceiver
com.android.systemui.tuner.TunerService$ClearReceiver
com.android.systemui.statusbar.KeyboardShortcutsReceiver
androidx.remotecallback.ProviderRelayReceiver

Services

Information computed with AndroGuard.

com.google.android.systemui.elmyra.ElmyraServiceProxy
com.google.android.systemui.elmyra.plugin.ElmyraSensorPlugin
com.android.systemui.plugin.globalactions.wallet.WalletPluginService
com.android.systemui.SystemUIService
com.android.systemui.SystemUISecondaryUserService
com.android.systemui.screenshot.TakeScreenshotService
com.android.systemui.screenrecord.RecordingService
com.android.systemui.ImageWallpaper
com.android.systemui.DessertCaseDream
com.android.systemui.keyguard.KeyguardService
com.android.systemui.doze.DozeService

Sample timeline

Oldest file found in APK Jan. 1, 2009, midnight
Latest file found in APK Jan. 1, 2009, midnight
Certificate valid not before April 19, 2017, 12:50 a.m.
First submission on VT June 14, 2020, 8:56 a.m.
Last submission on VT June 29, 2020, 11:25 p.m.
Upload on Pithus Sept. 3, 2021, 2:02 p.m.
Certificate valid not after April 19, 2047, 12:50 a.m.

NIAP analysis

Information computed with MobSF.

FCS_RBG_EXT.1.1 The application use no DRBG functionality for its cryptographic operations.
Random Bit Generation Services
FCS_STO_EXT.1.1 The application invoke the functionality provided by the platform to securely store credentials to non-volatile memory.
Storage of Credentials
FCS_CKM_EXT.1.1 The application generate no asymmetric cryptographic keys.
Cryptographic Key Generation Services
FDP_DEC_EXT.1.1 The application has access to ['network connectivity', 'camera', 'location', 'bluetooth', 'microphone'].
Access to Platform Resources
FDP_DEC_EXT.1.2 The application has access to ['call lists', 'address book'].
Access to Platform Resources
FDP_NET_EXT.1.1 The application has no network communications.
Network Communications
FDP_DAR_EXT.1.1 The application does not encrypt files in non-volatile memory.
Encryption Of Sensitive Application Data
FMT_MEC_EXT.1.1 The application invoke the mechanisms recommended by the platform vendor for storing and setting configuration options.
Supported Configuration Mechanism
FTP_DIT_EXT.1.1 The application does encrypt some transmitted data with HTTPS/TLS/SSH between itself and another trusted IT product.
Protection of Data in Transit

Code analysis

Information computed with MobSF.

High
CVSS:7.4
Files may contain hardcoded sensitive informations like usernames, passwords, keys etc.
MASVS: MSTG-STORAGE-14
CWE-312 Cleartext Storage of Sensitive Information
M9: Reverse Engineering
Files:
 vendor/google/wireless_charger/V1_0/KeyExchangeResponse.java
High
CVSS:7.5
The App uses an insecure Random Number Generator.
MASVS: MSTG-CRYPTO-6
CWE-330 Use of Insufficiently Random Values
M5: Insufficient Cryptography
Files:
 kotlin/collections/EmptyList.java
kotlin/collections/CollectionsKt__MutableCollectionsKt.java
Pygal United States: 200

Map computed by Pithus.

Domains analysis

Information computed with MobSF.

US www.example.com 93.184.216.34
US support.google.com 142.250.185.238

URL analysis

Information computed with MobSF.

https://support.google.com/googleplay/?p=instant_apps
https://www.example.com/proxy.pac
Defined in Android String Resource

Permissions analysis

Information computed with MobSF.

High android.permission.READ_EXTERNAL_STORAGE read external storage contents
Allows an application to read from external storage.
High android.permission.WRITE_SETTINGS modify global system settings
Allows an application to modify the system's settings data. Malicious applications can corrupt your system's configuration.
High android.permission.READ_PROFILE read the user's personal profile data
Allows an application to read the user's personal profile data.
High android.permission.READ_CONTACTS read contact data
Allows an application to read all of the contact (address) data stored on your phone. Malicious applications can use this to send your data to other people.
High android.permission.ACCESS_COARSE_LOCATION coarse (network-based) location
Access coarse location sources, such as the mobile network database, to determine an approximate phone location, where available. Malicious applications can use this to determine approximately where you are.
High android.permission.MOUNT_UNMOUNT_FILESYSTEMS mount and unmount file systems
Allows the application to mount and unmount file systems for removable storage.
High android.permission.SYSTEM_ALERT_WINDOW display system-level alerts
Allows an application to show system-alert windows. Malicious applications can take over the entire screen of the phone.
High android.permission.GET_ACCOUNTS list accounts
Allows access to the list of accounts in the Accounts Service.
High android.permission.MANAGE_ACCOUNTS manage the accounts list
Allows an application to perform operations like adding and removing accounts and deleting their password.
High android.permission.CAMERA take pictures and videos
Allows application to take pictures and videos with the camera. This allows the application to collect images that the camera is seeing at any time.
High android.permission.RECORD_AUDIO record audio
Allows application to access the audio record path.
High android.permission.READ_CALL_LOG Allows an application to read the user's call log.
Low android.permission.LOCATION_HARDWARE Allows an application to use location features in hardware, such as the geofencing api.
Low android.permission.RECEIVE_BOOT_COMPLETED automatically start at boot
Allows an application to start itself as soon as the system has finished booting. This can make it take longer to start the phone and allow the application to slow down the overall phone by always running.
Low android.permission.WAKE_LOCK prevent phone from sleeping
Allows an application to prevent the phone from going to sleep.
Low android.permission.EXPAND_STATUS_BAR expand/collapse status bar
Allows application to expand or collapse the status bar.
Low android.permission.BLUETOOTH create Bluetooth connections
Allows applications to connect to paired bluetooth devices.
Low android.permission.BLUETOOTH_ADMIN bluetooth administration
Allows applications to discover and pair bluetooth devices.
Low android.permission.ACCESS_NETWORK_STATE view network status
Allows an application to view the status of all networks.
Low android.permission.CHANGE_NETWORK_STATE change network connectivity
Allows applications to change network connectivity state.
Low android.permission.ACCESS_WIFI_STATE view Wi-Fi status
Allows an application to view the information about the status of Wi-Fi.
Low android.permission.CHANGE_WIFI_STATE change Wi-Fi status
Allows an application to connect to and disconnect from Wi-Fi access points and to make changes to configured Wi-Fi networks.
Low android.permission.VIBRATE control vibrator
Allows the application to control the vibrator.
Low android.permission.REORDER_TASKS reorder applications running
Allows an application to move tasks to the foreground and background. Malicious applications can force themselves to the front without your control.
Low android.permission.DISABLE_KEYGUARD Allows applications to disable the keyguard if it is not secure.
Low android.permission.MEDIA_CONTENT_CONTROL Allows an application to know what content is playing and control its playback.
Low android.permission.USE_FINGERPRINT allow use of fingerprint
This constant was deprecated in API level 28. Applications should request USE_BIOMETRIC instead
Low android.permission.SET_WALLPAPER set wallpaper
Allows the application to set the system wallpaper.
Low android.permission.FOREGROUND_SERVICE Allows a regular application to use Service.startForeground
Medium android.permission.PACKAGE_USAGE_STATS update component usage statistics
Allows the modification of collected component usage statistics. Not for use by common applications.
Medium android.permission.INJECT_EVENTS press keys and control buttons
Allows an application to deliver its own input events (key presses, etc.) to other applications. Malicious applications can use this to take over the phone.
Medium android.permission.STATUS_BAR_SERVICE status bar
Allows the application to be the status bar.
Medium android.permission.DEVICE_POWER turn phone on or off
Allows the application to turn the phone on or off.
Medium android.permission.STOP_APP_SWITCHES prevent app switches
Prevents the user from switching to another application.
Medium android.permission.INTERNAL_SYSTEM_WINDOW display unauthorised windows
Allows the creation of windows that are intended to be used by the internal system user interface. Not for use by common applications.
Medium android.permission.READ_FRAME_BUFFER read frame buffer
Allows application to read the content of the frame buffer.
Medium android.permission.MANAGE_APP_TOKENS manage application tokens
Allows applications to create and manage their own tokens, bypassing their common Z-ordering. Should never be needed for common applications.
Medium android.permission.SET_ORIENTATION change screen orientation
Allows an application to change the rotation of the screen at any time. Should never be needed for common applications.
Medium android.permission.BIND_DEVICE_ADMIN interact with device admin
Allows the holder to send intents to a device administrator. Should never be needed for common applications.
Medium android.permission.BATTERY_STATS modify battery statistics
Allows the modification of collected battery statistics. Not for use by common applications.
Medium android.permission.SET_WALLPAPER_COMPONENT
Medium android.permission.DUMP retrieve system internal status
Allows application to retrieve internal status of the system. Malicious applications may retrieve a wide variety of private and secure information that they should never commonly need.
Medium android.permission.STATUS_BAR disable or modify status bar
Allows application to disable the status bar or add and remove system icons.
Medium android.permission.WRITE_SECURE_SETTINGS modify secure system settings
Allows an application to modify the system's secure settings data. Not for use by common applications.
Medium android.permission.BLUETOOTH_PRIVILEGED Allows applications to pair bluetooth devices without user interaction, and to allow or disallow phonebook access or message access. This is not available to third party applications.
Medium android.permission.MASTER_CLEAR reset system to factory defaults
Allows an application to completely reset the system to its factory settings, erasing all data, configuration and installed applications.
Medium android.permission.MODIFY_PHONE_STATE modify phone status
Allows the application to control the phone features of the device. An application with this permission can switch networks, turn the phone radio on and off and the like, without ever notifying you.
Medium android.permission.CHANGE_COMPONENT_ENABLED_STATE enable or disable application components
Allows an application to change whether or not a component of another application is enabled. Malicious applications can use this to disable important phone capabilities. It is important to be careful with permission, as it is possible to bring application components into an unusable, inconsistent or unstable state.
Medium android.permission.BIND_QUICK_SETTINGS_TILE Allows an application to bind to third party quick settings tiles.
com.google.android.deskclock.permission.RECEIVE_ALERT_BROADCASTS Unknown permission
Unknown permission from android reference
com.google.sensor.elmyra.permission.USE_RAW_SENSOR Unknown permission
Unknown permission from android reference
com.google.android.elmyra.permission.CONFIGURE_ASSIST_GESTURE Unknown permission
Unknown permission from android reference
com.google.restricted_assist_gesture.permission.RESTRICTED_ASSIST_GESTURE_PROVIDER Unknown permission
Unknown permission from android reference
com.google.android.apps.nexuslauncher.permission.QSB Unknown permission
Unknown permission from android reference
com.google.android.apps.dreamliner.permission.DREAMLINER_SERVICE Unknown permission
Unknown permission from android reference
com.android.systemui.permission.PLUGIN Unknown permission
Unknown permission from android reference
com.breel.wallpapers.notifications Unknown permission
Unknown permission from android reference
android.permission.MODIFY_AUDIO_ROUTING Unknown permission
Unknown permission from android reference
android.permission.WRITE_MEDIA_STORAGE Unknown permission
Unknown permission from android reference
android.permission.READ_DEVICE_CONFIG Unknown permission
Unknown permission from android reference
android.permission.REMOTE_AUDIO_PLAYBACK Unknown permission
Unknown permission from android reference
android.permission.MANAGE_USERS Unknown permission
Unknown permission from android reference
android.permission.CONFIGURE_WIFI_DISPLAY Unknown permission
Unknown permission from android reference
android.permission.GET_APP_OPS_STATS Unknown permission
Unknown permission from android reference
android.permission.USE_RESERVED_DISK Unknown permission
Unknown permission from android reference
android.permission.MANAGE_CONTENT_SUGGESTIONS Unknown permission
Unknown permission from android reference
android.permission.READ_PRIVILEGED_PHONE_STATE Unknown permission
Unknown permission from android reference
android.permission.OVERRIDE_WIFI_CONFIG Unknown permission
Unknown permission from android reference
android.permission.MANAGE_NETWORK_POLICY Unknown permission
Unknown permission from android reference
android.permission.CONNECTIVITY_INTERNAL Unknown permission
Unknown permission from android reference
android.permission.NETWORK_SETTINGS Unknown permission
Unknown permission from android reference
android.permission.TETHER_PRIVILEGED Unknown permission
Unknown permission from android reference
android.permission.READ_NETWORK_USAGE_HISTORY Unknown permission
Unknown permission from android reference
android.permission.REQUEST_NETWORK_SCORES Unknown permission
Unknown permission from android reference
android.permission.CONTROL_VPN Unknown permission
Unknown permission from android reference
android.permission.PEERS_MAC_ADDRESS Unknown permission
Unknown permission from android reference
android.permission.MANAGE_USB Unknown permission
Unknown permission from android reference
android.permission.CONTROL_DISPLAY_BRIGHTNESS Unknown permission
Unknown permission from android reference
android.permission.MANAGE_SENSOR_PRIVACY Unknown permission
Unknown permission from android reference
android.permission.REAL_GET_TASKS Unknown permission
Unknown permission from android reference
android.permission.GET_DETAILED_TASKS Unknown permission
Unknown permission from android reference
android.permission.REMOVE_TASKS Unknown permission
Unknown permission from android reference
android.permission.SET_SCREEN_COMPATIBILITY Unknown permission
Unknown permission from android reference
android.permission.START_ANY_ACTIVITY Unknown permission
Unknown permission from android reference
android.permission.START_ACTIVITIES_FROM_BACKGROUND Unknown permission
Unknown permission from android reference
android.permission.INTERACT_ACROSS_USERS Unknown permission
Unknown permission from android reference
android.permission.INTERACT_ACROSS_USERS_FULL Unknown permission
Unknown permission from android reference
android.permission.GET_TOP_ACTIVITY_INFO Unknown permission
Unknown permission from android reference
android.permission.MANAGE_ACTIVITY_STACKS Unknown permission
Unknown permission from android reference
android.permission.START_ACTIVITY_AS_CALLER Unknown permission
Unknown permission from android reference
android.permission.START_TASKS_FROM_RECENTS Unknown permission
Unknown permission from android reference
android.permission.GET_INTENT_SENDER_INTENT Unknown permission
Unknown permission from android reference
android.permission.REGISTER_WINDOW_MANAGER_LISTENERS Unknown permission
Unknown permission from android reference
android.permission.MONITOR_INPUT Unknown permission
Unknown permission from android reference
android.permission.READ_DREAM_STATE Unknown permission
Unknown permission from android reference
android.permission.WRITE_DREAM_STATE Unknown permission
Unknown permission from android reference
com.android.alarm.permission.SET_ALARM Unknown permission
Unknown permission from android reference
android.permission.WRITE_EMBEDDED_SUBSCRIPTIONS Unknown permission
Unknown permission from android reference
android.permission.CONTROL_KEYGUARD Unknown permission
Unknown permission from android reference
android.permission.ACCESS_KEYGUARD_SECURE_STORAGE Unknown permission
Unknown permission from android reference
android.permission.TRUST_LISTENER Unknown permission
Unknown permission from android reference
android.permission.USE_BIOMETRIC_INTERNAL Unknown permission
Unknown permission from android reference
android.permission.RESET_FINGERPRINT_LOCKOUT Unknown permission
Unknown permission from android reference
android.permission.MANAGE_BIOMETRIC Unknown permission
Unknown permission from android reference
android.permission.MANAGE_SLICE_PERMISSIONS Unknown permission
Unknown permission from android reference
android.permission.CONTROL_KEYGUARD_SECURE_NOTIFICATIONS Unknown permission
Unknown permission from android reference
android.permission.GET_RUNTIME_PERMISSIONS Unknown permission
Unknown permission from android reference
android.permission.CAMERA_OPEN_CLOSE_LISTENER Unknown permission
Unknown permission from android reference
android.permission.MANAGE_MEDIA_PROJECTION Unknown permission
Unknown permission from android reference
android.permission.ACCESS_VOICE_INTERACTION_SERVICE Unknown permission
Unknown permission from android reference
android.permission.CHANGE_DEVICE_IDLE_TEMP_WHITELIST Unknown permission
Unknown permission from android reference
android.permission.TABLET_MODE Unknown permission
Unknown permission from android reference
com.android.systemui.permission.SELF Unknown permission
Unknown permission from android reference
android.permission.MODIFY_DAY_NIGHT_MODE Unknown permission
Unknown permission from android reference
android.permission.UPDATE_APP_OPS_STATS Unknown permission
Unknown permission from android reference
android.permission.MANAGE_PROFILE_AND_DEVICE_OWNERS Unknown permission
Unknown permission from android reference
android.permission.RECEIVE_MEDIA_RESOURCE_USAGE Unknown permission
Unknown permission from android reference
android.permission.MANAGE_NOTIFICATIONS Unknown permission
Unknown permission from android reference
android.permission.ACCESS_VR_MANAGER Unknown permission
Unknown permission from android reference
android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME Unknown permission
Unknown permission from android reference
android.permission.RESET_SHORTCUT_MANAGER_THROTTLING Unknown permission
Unknown permission from android reference
android.permission.MODIFY_THEME_OVERLAY Unknown permission
Unknown permission from android reference
android.permission.MODIFY_ACCESSIBILITY_DATA Unknown permission
Unknown permission from android reference
android.permission.CHANGE_ACCESSIBILITY_VOLUME Unknown permission
Unknown permission from android reference
android.permission.BIND_RESOLVER_RANKER_SERVICE Unknown permission
Unknown permission from android reference
android.permission.ACCESS_INSTANT_APPS Unknown permission
Unknown permission from android reference
android.permission.CONTROL_REMOTE_APP_TRANSITION_ANIMATIONS Unknown permission
Unknown permission from android reference
android.permission.CHANGE_OVERLAY_PACKAGES Unknown permission
Unknown permission from android reference
android.permission.WATCH_APPOPS Unknown permission
Unknown permission from android reference
android.car.permission.CONTROL_CAR_CLIMATE Unknown permission
Unknown permission from android reference
android.car.permission.CAR_DRIVING_STATE Unknown permission
Unknown permission from android reference
android.car.permission.CAR_CONTROL_AUDIO_VOLUME Unknown permission
Unknown permission from android reference
android.permission.MANAGE_DEBUGGING Unknown permission
Unknown permission from android reference
android.permission.HIDE_NON_SYSTEM_OVERLAY_WINDOWS Unknown permission
Unknown permission from android reference
android.permission.CONTROL_DISPLAY_COLOR_TRANSFORMS Unknown permission
Unknown permission from android reference
com.google.android.ambientindication.permission.AMBIENT_INDICATION Unknown permission
Unknown permission from android reference

Threat analysis

Information computed with Quark-Engine.

Confidence:
100%
Load external class
Confidence:
100%
Implicit intent(view a web page, make a phone call, etc.)
Confidence:
100%
Find a method from given class name, usually for reflection
Confidence:
100%
Modify voice volume
Confidence:
100%
Method reflection
Confidence:
100%
Retrieve data from broadcast
Confidence:
100%
Read sensitive data(SMS, CALLLOG, etc)
Confidence:
100%
Implicit intent(view a web page, make a phone call, etc.) via setData
Confidence:
100%
Send notification
Confidence:
100%
Monitor the broadcast action events (BOOT_COMPLETED)
Confidence:
100%
Monitor incoming call status
Confidence:
100%
Get last known location of the device
Confidence:
100%
Get calendar information
Confidence:
100%
Deletes media specified by a content URI(SMS, CALL_LOG, File, etc.)
Confidence:
100%
Method reflection
Confidence:
100%
Hide the current app's icon
Confidence:
100%
Get the time of current location
Confidence:
100%
Initialize class object dynamically
Confidence:
100%
Calculate WiFi signal strength
Confidence:
100%
Check the list of currently running applications
Confidence:
80%
Read file and put it into a stream
Confidence:
80%
Get declared method from given method name
Confidence:
80%
Open a file from given absolute path of the file
Confidence:
80%
Get absolute path of the file and store in string
Confidence:
80%
Get the current WIFI information
Confidence:
80%
Get location of the device
Confidence:
80%
Get resource file from res/raw directory

Behavior analysis

Information computed with MobSF.

Java reflection
       kotlin/internal/PlatformImplementationsKt.java
kotlin/coroutines/jvm/internal/ModuleNameRetriever.java
kotlin/jvm/internal/Reflection.java
kotlin/coroutines/jvm/internal/DebugMetadataKt.java

Control flow graphs analysis

Information computed by Pithus.

The application probably lists running applications

The application probably gets the subscriber ID associated to the SIM card/ Should never be collected

The application probably gets the network connections information

The application probably starts another application

The application probably gets memory and CPU information