Malicious
5 /62

Threat

com.tiantian.nettest

5G网络测速大师

Analyzed on 2021-08-24T17:55:26.076242

27

permissions

76

activities

18

services

10

receivers

6

domains

File sums

MD5 1b62cfc495706a1e2d9860284ba82f25
SHA1 f3b0e5d51ecc727e19ac463a14a97d5b4b52e7de
SHA256 7d0e6a9fabf0f3613b644f3f7c6c1de9c3864e922914e97397f726df5cf76d46
Size 24.26MB

APKiD

Information computed with APKiD.

/tmp/tmpl7gpxgaf
packer
  • Jiagu
/tmp/tmpl7gpxgaf!classes.dex
compiler
  • dexlib 2.x
/tmp/tmpl7gpxgaf!lib/armeabi-v7a/libAMapSDK_MAP_v7_4_0.so
packer
  • sharelib UPX

SSdeep

Information computed with ssdeep.

APK file 393216:8TTmvLw2K0IphSdJkzAk59ZAsh6yrio1Pkxjplke6/BpbrWTB1WfqpCUbLpFg69:7kL0FGzAG9ZpiAPkJgg1WSHx9
Manifest 768:s9iSIvm+OGycQGjnM0FwcHsruQXBNORPIr4iUna4E8vWBpG0+TuyLMyuhPQaC/lh:…
classes.dex 196608:0i3rmmRmPORXZqQx3xG5qanGwfj0byzACr:/i0mPORXvG5qanGq0bsRr

Dexofuzzy

Information computed with Dexofuzzy.

APK file 6:i6Wm3KnK56PikiEE8GtVm0fFUUlzYfdQV/AprGzOovyqXEATmJtfGRrKbmeLHKTe:VW…
classes.dex 6:i6Wm3KnK56PikiEE8GtVm0fFUUlzYfdQV/AprGzOovyqXEATmJtfGRrKbmeLHKTe:VW…

APK details

Information computed with AndroGuard and Pithus.

Package com.tiantian.nettest
App name 5G网络测速大师
Version name 3.7.0303
Version code 7
SDK 22 - 29
UAID 367c50bad3144a8f042ee0785fdb1da8a64d0c94
Signature Signature V1 Signature V2
Frosting Not frosted
Blocks found within V2 signature:
  • 0x7109871a: Unknown
  • 0x42726577: Verity padding

Certificate details

Information computed with AndroGuard.

MD5 08d281ca09bc25242837c57678944374
SHA1 d106ba6cb2c856d6341f2f3445ba101aa0627bcf
SHA256 505d9e58a0ad768fd563874b608c241b4f0ea9cdbdfce72425f489f5e108d77a
Issuer Common Name: sq
Not before 2020-09-08T08:32:19+00:00
Not after 2045-09-02T08:32:19+00:00

File Analysis

Information computed with MobSF.

Findings Files
Certificate/Key files hardcoded inside the app. assets/.appkey
okhttp3/internal/publicsuffix/NOTICE

Manifest analysis

Information computed with MobSF.

High Clear text traffic is Enabled For App[android:usesCleartextTraffic=true]
The app intends to use cleartext network traffic, such as cleartext HTTP, FTP stacks, DownloadManager, and MediaPlayer. The default value for apps that target API level 27 or lower is "true". Apps that target API level 28 or higher default to "false". The key reason for avoiding cleartext traffic is the lack of confidentiality, authenticity, and protections against tampering; a network attacker can eavesdrop on transmitted data and also modify it without being detected.
Medium Application Data can be Backed up[android:allowBackup=true]
This flag allows anyone to backup your application data via adb. It allows users who have enabled USB debugging to copy application data off of the device.
High Service (com.tiantian.nettest.service.DataCollectService) is not Protected.An intent-filter exists.
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Service is explicitly exported.
High Activity (com.mob.guard.MobTranPullUpActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.mob.guard.MobTranPullLockActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Service (com.mob.guard.MobGuardPullUpService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.mob.MobACService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.thl.wechatutils.wxapi.WXEntryActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (com.tiantian.nettest.wxapi.WXEntryActivity) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.thl.wechatutils.wxapi.WXPayEntryActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (com.tiantian.nettest.wxapi.WXPayEntryActivity) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.tencent.tauth.AuthActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.thl.thl_advertlibrary.activity.Fhad_WebPageActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Broadcast Receiver (com.thl.thl_advertlibrary.downloadhelper.DownloadReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (androidx.work.impl.background.systemjob.SystemJobService) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.alipay.sdk.app.PayResultActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.alipay.sdk.app.AlipayResultActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.

Browsable activities

Information computed with MobSF.

com.tencent.tauth.AuthActivity

Schemes: @string/TencentAppIdXml://

com.thl.thl_advertlibrary.activity.Fhad_WebPageActivity

Hosts: ssl.ptlogin2.qq.com

Schemes: https://

Main Activity

Information computed with AndroGuard. 

['com.sqcatfix.emptyproject.mvp.ui.activity.SplashActivity', 'com.sqcatfix.emptyproject.mvp.ui.activity.GoogleSplashActivity', 'com.sqcatfix.emptyproject.mvp.ui.activity.ManSplashActivity', 'com.sqcatfix.emptyproject.mvp.ui.activity.GuideActivity', 'com.sqcatfix.emptyproject.mvp.ui.activity.MainActivity', 'com.tiantian.nettest.activity.MineActivity', 'com.tiantian.nettest.activity.AboutUsActivity', 'com.tiantian.nettest.MainActivity', 'com.tiantian.nettest.activity.SuggestionActivity', 'com.tiantian.nettest.activity.ConnectGirlActivity', 'com.tiantian.nettest.activity.SpeedDetailActivity', 'com.tiantian.nettest.activity.test.OnLineWatchActivity', 'com.tiantian.nettest.activity.test.NetCheckActivity', 'com.tiantian.nettest.activity.SpeedHistoryActivity', 'com.tiantian.nettest.activity.FreeSpaceActivity', 'com.tiantian.nettest.clean.VideoCleanActivity', 'com.tiantian.nettest.clean.AllZipCleanActivity', 'com.tiantian.nettest.clean.UninstallApkActivity', 'com.tiantian.nettest.clean.AllLargeCleanActivity', 'com.tiantian.nettest.clean.special.WechatCleanActivity', 'com.tiantian.nettest.clean.MediaCleanActivity', 'com.tiantian.nettest.clean.PhonePhotoActivity', 'com.tiantian.nettest.activity.CleanActivity', 'com.tiantian.nettest.activity.GuildPermissionActivity', 'com.sqcatfix.emptyproject.mvp.ui.activity.GPBootActivity', 'com.mob.guard.MobTranPullUpActivity', 'com.mob.guard.MobTranPullLockActivity', 'com.hardlove.common.base.MGroupActivity', 'com.hardlove.common.web.WebViewActivity', 'com.amap.api.maps.offlinemap.OfflineMapActivity', 'apache.rio.kluas_update.ui.DownloadActivity', 'com.rx.img.activity.RxImagePickerActivity', 'com.rx.img.activity.PreviewActivity', 'com.rx.img.activity.RxTranslucentActivity', 'com.thl.wechatutils.wxapi.WXEntryActivity', 'com.thl.wechatutils.wxapi.WXPayEntryActivity', 'com.tencent.tauth.AuthActivity', 'com.tencent.connect.common.AssistActivity', 'com.thl.tencentutils.TencentShareActivity', 'com.thl.tencentutils.TencentLoginActivity', 'com.luck.picture.lib.PictureSelectorActivity', 'com.luck.picture.lib.PictureSelectorWeChatStyleActivity', 'com.luck.picture.lib.PictureSelectorCameraEmptyActivity', 'com.luck.picture.lib.PictureCustomCameraActivity', 'com.luck.picture.lib.PicturePreviewActivity', 'com.luck.picture.lib.PictureSelectorPreviewWeChatStyleActivity', 'com.luck.picture.lib.PictureVideoPlayActivity', 'com.luck.picture.lib.PictureExternalPreviewActivity', 'com.luck.picture.lib.PicturePlayAudioActivity', 'com.yalantis.ucrop.UCropActivity', 'com.yalantis.ucrop.PictureMultiCuttingActivity', 'com.lzy.ninegrid.preview.ImagePreviewActivity', 'cat.ereza.customactivityoncrash.activity.DefaultErrorActivity', 'com.thl.thl_advertlibrary.activity.Fhad_WebPageActivity', 'pub.devrel.easypermissions.AppSettingsDialogHolderActivity', 'per.goweii.anylayer.LayerActivity', 'com.ss.android.socialbase.appdownloader.view.DownloadTaskDeleteActivity', 'com.ss.android.socialbase.appdownloader.view.JumpUnknownSourceActivity', 'com.ss.android.downloadlib.activity.TTDelegateActivity', 'com.ss.android.downloadlib.guide.install.InstallGuideActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTWebPageActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTPlayableWebPageActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTVideoWebPageActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTVideoScrollWebPageActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTDelegateActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTRewardVideoActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTRewardExpressVideoActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTFullScreenVideoActivity', 'com.bytedance.sdk.openadsdk.activity.base.TTFullScreenExpressVideoActivity', 'com.google.android.gms.ads.AdActivity', 'com.blankj.utilcode.util.UtilsTransActivity', 'com.alipay.sdk.app.H5PayActivity', 'com.alipay.sdk.app.H5AuthActivity', 'com.alipay.sdk.app.PayResultActivity', 'com.alipay.sdk.app.AlipayResultActivity', 'com.mob.tools.MobUIShell']

Activities

Information computed with AndroGuard. 

com.sqcatfix.emptyproject.mvp.ui.activity.SplashActivity
com.sqcatfix.emptyproject.mvp.ui.activity.GoogleSplashActivity
com.sqcatfix.emptyproject.mvp.ui.activity.ManSplashActivity
com.sqcatfix.emptyproject.mvp.ui.activity.GuideActivity
com.sqcatfix.emptyproject.mvp.ui.activity.MainActivity
com.tiantian.nettest.activity.MineActivity
com.tiantian.nettest.activity.AboutUsActivity
com.tiantian.nettest.MainActivity
com.tiantian.nettest.activity.SuggestionActivity
com.tiantian.nettest.activity.ConnectGirlActivity
com.tiantian.nettest.activity.SpeedDetailActivity
com.tiantian.nettest.activity.test.OnLineWatchActivity
com.tiantian.nettest.activity.test.NetCheckActivity
com.tiantian.nettest.activity.SpeedHistoryActivity
com.tiantian.nettest.activity.FreeSpaceActivity
com.tiantian.nettest.clean.VideoCleanActivity
com.tiantian.nettest.clean.AllZipCleanActivity
com.tiantian.nettest.clean.UninstallApkActivity
com.tiantian.nettest.clean.AllLargeCleanActivity
com.tiantian.nettest.clean.special.WechatCleanActivity
com.tiantian.nettest.clean.MediaCleanActivity
com.tiantian.nettest.clean.PhonePhotoActivity
com.tiantian.nettest.activity.CleanActivity
com.tiantian.nettest.activity.GuildPermissionActivity
com.sqcatfix.emptyproject.mvp.ui.activity.GPBootActivity
com.mob.guard.MobTranPullUpActivity
com.mob.guard.MobTranPullLockActivity
com.hardlove.common.base.MGroupActivity
com.hardlove.common.web.WebViewActivity
com.amap.api.maps.offlinemap.OfflineMapActivity
apache.rio.kluas_update.ui.DownloadActivity
com.rx.img.activity.RxImagePickerActivity
com.rx.img.activity.PreviewActivity
com.rx.img.activity.RxTranslucentActivity
com.thl.wechatutils.wxapi.WXEntryActivity
com.thl.wechatutils.wxapi.WXPayEntryActivity
com.tencent.tauth.AuthActivity
com.tencent.connect.common.AssistActivity
com.thl.tencentutils.TencentShareActivity
com.thl.tencentutils.TencentLoginActivity
com.luck.picture.lib.PictureSelectorActivity
com.luck.picture.lib.PictureSelectorWeChatStyleActivity
com.luck.picture.lib.PictureSelectorCameraEmptyActivity
com.luck.picture.lib.PictureCustomCameraActivity
com.luck.picture.lib.PicturePreviewActivity
com.luck.picture.lib.PictureSelectorPreviewWeChatStyleActivity
com.luck.picture.lib.PictureVideoPlayActivity
com.luck.picture.lib.PictureExternalPreviewActivity
com.luck.picture.lib.PicturePlayAudioActivity
com.yalantis.ucrop.UCropActivity
com.yalantis.ucrop.PictureMultiCuttingActivity
com.lzy.ninegrid.preview.ImagePreviewActivity
cat.ereza.customactivityoncrash.activity.DefaultErrorActivity
com.thl.thl_advertlibrary.activity.Fhad_WebPageActivity
pub.devrel.easypermissions.AppSettingsDialogHolderActivity
per.goweii.anylayer.LayerActivity
com.ss.android.socialbase.appdownloader.view.DownloadTaskDeleteActivity
com.ss.android.socialbase.appdownloader.view.JumpUnknownSourceActivity
com.ss.android.downloadlib.activity.TTDelegateActivity
com.ss.android.downloadlib.guide.install.InstallGuideActivity
com.bytedance.sdk.openadsdk.activity.base.TTWebPageActivity
com.bytedance.sdk.openadsdk.activity.base.TTPlayableWebPageActivity
com.bytedance.sdk.openadsdk.activity.base.TTVideoWebPageActivity
com.bytedance.sdk.openadsdk.activity.base.TTVideoScrollWebPageActivity
com.bytedance.sdk.openadsdk.activity.base.TTDelegateActivity
com.bytedance.sdk.openadsdk.activity.base.TTRewardVideoActivity
com.bytedance.sdk.openadsdk.activity.base.TTRewardExpressVideoActivity
com.bytedance.sdk.openadsdk.activity.base.TTFullScreenVideoActivity
com.bytedance.sdk.openadsdk.activity.base.TTFullScreenExpressVideoActivity
com.google.android.gms.ads.AdActivity
com.blankj.utilcode.util.UtilsTransActivity
com.alipay.sdk.app.H5PayActivity
com.alipay.sdk.app.H5AuthActivity
com.alipay.sdk.app.PayResultActivity
com.alipay.sdk.app.AlipayResultActivity
com.mob.tools.MobUIShell

Receivers

Information computed with AndroGuard. 

com.thl.thl_advertlibrary.downloadhelper.DownloadReceiver
com.ss.android.downloadlib.core.download.DownloadReceiver
com.bytedance.embedapplog.collector.Collector
androidx.work.impl.utils.ForceStopRunnable$BroadcastReceiver
androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy
androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy
androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy
androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy
androidx.work.impl.background.systemalarm.RescheduleReceiver
androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

Services

Information computed with AndroGuard. 

com.tiantian.nettest.service.DataCollectService
com.mob.guard.MobGuardPullUpService
com.mob.MobACService
com.amap.api.location.APSService
com.ss.android.socialbase.downloader.notification.DownloadNotificationService
com.ss.android.socialbase.downloader.downloader.DownloadService
com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService
com.ss.android.socialbase.downloader.impls.DownloadHandleService
com.ss.android.socialbase.downloader.impls.RetryJobSchedulerService
com.ss.android.socialbase.downloader.downloader.SqlDownloadCacheService
com.ss.android.socialbase.appdownloader.DownloadHandlerService
com.bytedance.sdk.openadsdk.multipro.aidl.BinderPoolService
com.bytedance.tea.crash.upload.CrashUploadService
com.google.android.gms.ads.AdService
androidx.work.impl.background.systemalarm.SystemAlarmService
androidx.work.impl.background.systemjob.SystemJobService
androidx.room.MultiInstanceInvalidationService
com.blankj.utilcode.util.MessengerUtils$ServerService

Sample timeline

Certificate valid not before Sept. 8, 2020, 8:32 a.m.
Latest file found in APK March 3, 2021, 10:42 a.m.
First submission on VT Aug. 24, 2021, 4:21 p.m.
Last submission on VT Aug. 24, 2021, 4:21 p.m.
Upload on Pithus Aug. 24, 2021, 5:55 p.m.
Certificate valid not after Sept. 2, 2045, 8:32 a.m.

VirusTotal

Score 5/62
Report https://www.virustotal.com/gui/file/7d0e6a9fabf0f3613b644f3f7c6c1de9c3864e922914e97397f726df5cf76d46/detection

Most Popular AV Detections

Provided by VirusTotal

Threat name: jiagu Identified 2 times

NIAP analysis

Information computed with MobSF.

FCS_STO_EXT.1.1 The application does not store any credentials to non-volatile memory.
Storage of Credentials
FCS_CKM_EXT.1.1 The application generate no asymmetric cryptographic keys.
Cryptographic Key Generation Services
FDP_DEC_EXT.1.1 The application has access to ['location', 'bluetooth', 'network connectivity', 'camera'].
Access to Platform Resources
FDP_DEC_EXT.1.2 The application has access to no sensitive information repositories.
Access to Platform Resources
FDP_NET_EXT.1.1 The application has user/application initiated network communications.
Network Communications
FDP_DAR_EXT.1.1 The application does not encrypt files in non-volatile memory.
Encryption Of Sensitive Application Data
FTP_DIT_EXT.1.1 The application does not encrypt any data in traffic or does not transmit any data between itself and another trusted IT product.
Protection of Data in Transit
Pygal China: 400 United States: 200

Map computed by Pithus.

Domains analysis

Information computed with MobSF.

CN applog.uc.cn 14.116.143.241
CN errlog.umeng.com 203.119.169.82
CN www.mob.com 116.62.130.46
US gjapplog.ucweb.com 168.235.204.12
CN www.junke.online 47.92.233.19
US github.com 140.82.121.4

URL analysis

Information computed with MobSF.

https://github.com/vinc3m1
https://github.com/vinc3m1/RoundedImageView
https://github.com/vinc3m1/RoundedImageView.git
http://www.junke.online
http://www.mob.com
Defined in Android String Resource
https://applog.uc.cn/collect
https://gjapplog.ucweb.com/collect
https://errlog.umeng.com
Defined in lib/armeabi-v7a/libcrashsdk.so

Permissions analysis

Information computed with MobSF.

High android.permission.READ_PHONE_STATE read phone state and identity
Allows the application to access the phone features of the device. An application with this permission can determine the phone number and serial number of this phone, whether a call is active, the number that call is connected to and so on.
High android.permission.WRITE_EXTERNAL_STORAGE read/modify/delete external storage contents
Allows an application to write to external storage.
High android.permission.READ_EXTERNAL_STORAGE read external storage contents
Allows an application to read from external storage.
High android.permission.REQUEST_INSTALL_PACKAGES Allows an application to request installing packages.
Malicious applications can use this to try and trick users into installing additional malicious packages.
High android.permission.ACCESS_FINE_LOCATION fine (GPS) location
Access fine location sources, such as the Global Positioning System on the phone, where available. Malicious applications can use this to determine where you are and may consume additional battery power.
High android.permission.CAMERA take pictures and videos
Allows application to take pictures and videos with the camera. This allows the application to collect images that the camera is seeing at any time.
High android.permission.ACCESS_COARSE_LOCATION coarse (network-based) location
Access coarse location sources, such as the mobile network database, to determine an approximate phone location, where available. Malicious applications can use this to determine approximately where you are.
High android.permission.GET_TASKS retrieve running applications
Allows application to retrieve information about currently and recently running tasks. May allow malicious applications to discover private information about other applications.
High android.permission.MOUNT_UNMOUNT_FILESYSTEMS mount and unmount file systems
Allows the application to mount and unmount file systems for removable storage.
Low android.permission.ACCESS_NETWORK_STATE view network status
Allows an application to view the status of all networks.
Low android.permission.ACCESS_WIFI_STATE view Wi-Fi status
Allows an application to view the information about the status of Wi-Fi.
Low android.permission.INTERNET full Internet access
Allows an application to create network sockets.
Low android.permission.INSTALL_SHORTCUT Allows an application to install a shortcut in Launcher.
Low android.permission.UNINSTALL_SHORTCUT Don't use this permission in your app. This permission is no longer supported.
Low android.permission.WAKE_LOCK prevent phone from sleeping
Allows an application to prevent the phone from going to sleep.
Low android.permission.BLUETOOTH create Bluetooth connections
Allows applications to connect to paired bluetooth devices.
Low android.permission.RECEIVE_BOOT_COMPLETED automatically start at boot
Allows an application to start itself as soon as the system has finished booting. This can make it take longer to start the phone and allow the application to slow down the overall phone by always running.
Low android.permission.CHANGE_WIFI_STATE change Wi-Fi status
Allows an application to connect to and disconnect from Wi-Fi access points and to make changes to configured Wi-Fi networks.
Medium android.permission.PACKAGE_USAGE_STATS update component usage statistics
Allows the modification of collected component usage statistics. Not for use by common applications.
com.android.launcher.permission.INSTALL_SHORTCUT Unknown permission
Unknown permission from android reference
com.android.launcher.permission.UNINSTALL_SHORTCUT Unknown permission
Unknown permission from android reference
com.android.launcher.permission.READ_SETTINGS Unknown permission
Unknown permission from android reference
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION Unknown permission
Unknown permission from android reference
android.permission.READ_PRIVILEGED_PHONE_STATE Unknown permission
Unknown permission from android reference
com.huawei.permission.sec.ACCESS_UDID Unknown permission
Unknown permission from android reference
com.xiaomi.permission.ACCESS_SECURITY_DEVICE_CREDENTIAL Unknown permission
Unknown permission from android reference
com.asus.msa.SupplementaryDID.ACCESS Unknown permission
Unknown permission from android reference

Threat analysis

Information computed with Quark-Engine.

Confidence:
100%
Read file from assets directory
Confidence:
100%
Method reflection
Confidence:
80%
Read data and put it into a buffer stream
Confidence:
80%
Read file and put it into a stream
Confidence:
80%
Open a file from given absolute path of the file
Confidence:
80%
Get absolute path of the file and store in string

Behavior analysis

Information computed with MobSF.

Java reflection 
       com/qihoo/util/c.java
       com/stub/StubApp.java
Load and manipulate dex files 
       com/stub/StubApp.java
Loading native code (shared library) 
       com/stub/StubApp.java

Control flow graphs analysis

Information computed by Pithus.

The application probably dynamically loads code