File Name File Size File Hash
com.wacosoft.appmill_s304.apk 814 KB SHA512: 5751cfdf656f2a5ee021940c5448a77e5b921d1510d2abfa520a57d02c74821e0f5c2e4935bea2554c440072d32fc22bb8317a85dabbbc7c9cca9d1c077793c2

Report - Potential Malicious Behavior Detected

Last update: 05.06.2020

Hotspot Detection - Get the info of network and the last location of the device

settings_remote

100%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getNetworkInfo

class: Landroid/location/LocationManager
method: getLastKnownLocation

Native API Combination

Yes

Native API Sequence

Yes

Native API Use Same Parameter

Yes

Steal Sensitive Information - Get info of SD cards and network

description

100%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/os/Environment
method: getExternalStorageDirectory

class: Landroid/net/ConnectivityManager
method: getNetworkInfo

Native API Combination

Yes

Native API Sequence

Yes

Native API Use Same Parameter

Yes

Steal Sensitive Information - Get infos about network

description

100%

Permission Request

android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

class: Landroid/net/ConnectivityManager
method: getNetworkInfo

Native API Combination

Yes

Native API Sequence

Yes

Native API Use Same Parameter

Yes

Download files via http post

file_copy

100%

Permission Request

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Lorg/apache/http/client/methods/HttpPost
method: <init>

class: Ljava/io/File
method: <init>

Native API Combination

Yes

Native API Sequence

Yes

Native API Use Same Parameter

Yes

Steal Sensitive Information - Get info of SD cards and active networks

description

100%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

class: Landroid/os/Environment
method: getExternalStorageDirectory

Native API Combination

Yes

Native API Sequence

Yes

Native API Use Same Parameter

Yes

Download files via http get

file_copy

100%

Permission Request

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Lorg/apache/http/client/methods/HttpGet
method: <init>

class: Ljava/io/File
method: <init>

Native API Combination

Yes

Native API Sequence

Yes

Native API Use Same Parameter

Yes

Stealth and Steal Sensitive Information - Get the last known location and hide from GPS tracking

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION

Native API Usage

class: Landroid/location/LocationManager
method: getLastKnownLocation

class: Landroid/location/LocationManager
method: removeUpdates

Native API Combination

Yes

 

 

Steal Sensitive Information - Get the last known location and active network info

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/location/LocationManager
method: getLastKnownLocation

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

Native API Combination

Yes

 

 

Steal Sensitive Information - Get current location and request an update to double check

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getCellLocation

class: Landroid/location/LocationManager
method: requestLocationUpdates

Native API Combination

Yes

 

 

Hotspot Detection - Get active networks info and update the location of current device

settings_remote

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

class: Landroid/location/LocationManager
method: requestLocationUpdates

Native API Combination

Yes

 

 

Steal Sensitive Information - Get SD cards info and last known location of the device

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/location/LocationManager
method: getLastKnownLocation

class: Landroid/os/Environment
method: getExternalStorageDirectory

Native API Combination

Yes

 

 

Steal Sensitive Information - Get info of SD cards and your current location

location_on

60%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/os/Environment
method: getExternalStorageDirectory

class: Landroid/telephony/TelephonyManager
method: getCellLocation

Native API Combination

Yes

 

 

Stealth and Steal Sensitive Info - Hide from GPS tracking and get active network info

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/location/LocationManager
method: removeUpdates

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

Native API Combination

Yes

 

 

Hotspot Detection - Get current location and active network info

settings_remote

60%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getCellLocation

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

Native API Combination

Yes

 

 

Stealth - Hide from GPS tracking after getting location info

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getCellLocation

class: Landroid/location/LocationManager
method: removeUpdates

Native API Combination

Yes

 

 

Steal Sensitive Information - Check if the user is in the last known location

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getCellLocation

class: Landroid/location/LocationManager
method: getLastKnownLocation

Native API Combination

Yes

 

 

Avoid Detection - Disable and enable GPS tracking in a low frequency

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION

Native API Usage

class: Landroid/location/LocationManager
method: removeUpdates

class: Landroid/location/LocationManager
method: requestLocationUpdates

Native API Combination

Yes

 

 

Stealth and Steal Sensitive Information - Hide from GPS tracking and get directory info in your SD cards

location_on

60%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/location/LocationManager
method: removeUpdates

class: Landroid/os/Environment
method: getExternalStorageDirectory

Native API Combination

Yes

 

 

Hotspot Detection - Get network info in the current location

settings_remote

60%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getNetworkInfo

class: Landroid/telephony/TelephonyManager
method: getCellLocation

Native API Combination

Yes

 

 

Stealing Sensitive Information - Get phone number and directory info of the SD cards

description

40%

Permission Request

android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/os/Environment
method: getExternalStorageDirectory

class: Landroid/telephony/TelephonyManager
method: getLine1Number

 

 

 

Steal Sensitive Information - Get active network info and your ISP name

description

40%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

class: Landroid/telephony/TelephonyManager
method: getNetworkType

 

 

 

Stealth and Steal Sensitive Info - Stop vibration notification and get active network infos

description

40%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.VIBRATE

Native API Usage

class: Landroid/os/Vibrator
method: cancel

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

 

 

 

Stealth and Steal Sensitive Info - Hide vibration notification and get location info

location_on

40%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.VIBRATE

Native API Usage

class: Landroid/os/Vibrator
method: cancel

class: Landroid/telephony/TelephonyManager
method: getCellLocation

 

 

 

Avoid Detection - Disable and enable GPS tracking to hide from anomoly detection

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION

Native API Usage

class: Landroid/location/LocationManager
method: removeUpdates

class: Landroid/location/LocationManager
method: addGpsStatusListener

 

 

 

Steal Sensitive Information - Get phone number and location of device to locating postition

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getLine1Number

class: Landroid/location/LocationManager
method: getLastKnownLocation

 

 

 

Stealth and Steal Sensitive Info - Hide from GPS tracking and get voice mail number

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/location/LocationManager
method: removeUpdates

class: Landroid/telephony/TelephonyManager
method: getVoiceMailNumber

 

 

 

Steal Sensitive Information - Get information in your SD cards and information of active networks

description

40%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/content/Context
method: getExternalCacheDir

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

 

 

 

Steal Sensitive Information - Get the last location of the device and the device software version

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/location/LocationManager
method: getLastKnownLocation

class: Landroid/telephony/TelephonyManager
method: getDeviceSoftwareVersion

 

 

 

Steal Sensitive Information - Get phone number and location

location_on

40%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getLine1Number

class: Landroid/telephony/TelephonyManager
method: getCellLocation

 

 

 

Stealth and Steal Sensitive Info - Hide from GPS tracking and get phone number

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getLine1Number

class: Landroid/location/LocationManager
method: removeUpdates

 

 

 

Stealth and Steal Sensitive Info - Hide vibrate notification and get last known location of the device

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.VIBRATE

Native API Usage

class: Landroid/os/Vibrator
method: cancel

class: Landroid/location/LocationManager
method: getLastKnownLocation

 

 

 

Stealth - Read existing GPS data and hide from GPS

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION

Native API Usage

class: Landroid/location/LocationManager
method: removeUpdates

class: Landroid/location/LocationManager
method: addNmeaListener

 

 

 

Steal Sensitive Information - Get ISP info and the last known location of the device

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getNetworkType

class: Landroid/location/LocationManager
method: getLastKnownLocation

 

 

 

Steal Sensitive Information - Get network info and the phone number

description

40%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getNetworkInfo

class: Landroid/telephony/TelephonyManager
method: getLine1Number

 

 

 

Send contact via socket

adb

40%

Permission Request

android.permission.INTERNET
android.permission.READ_CONTACTS

Native API Usage

class: Landroid/content/ContentResolver
method: query

class: Ljava/net/Socket
method: connect

 

 

 

Steal Sensitive Information - keep the device awake and get the SD cards' information

description

40%

Permission Request

android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/os/Environment
method: getExternalStorageDirectory

class: Landroid/os/PowerManager
method: newWakeLock

 

 

 

Steal Sensitive Information - See what ISP you are using when in current location

location_on

40%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getNetworkType

class: Landroid/telephony/TelephonyManager
method: getCellLocation

 

 

 

Hotspot Detection - Searching available networks at device location

settings_remote

40%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getAllNetworkInfo

class: Landroid/telephony/TelephonyManager
method: getCellLocation

 

 

 

Hotspot Detection - Get all and active network infos

settings_remote

40%

Permission Request

android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getAllNetworkInfo

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

 

 

 

Steal Sensitive Information - See what version of software people use in particular location

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/location/LocationManager
method: requestLocationUpdates

class: Landroid/telephony/TelephonyManager
method: getDeviceSoftwareVersion

 

 

 

Steal Sensitive Information - Get your phone number and last known location of the device

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getVoiceMailNumber

class: Landroid/location/LocationManager
method: getLastKnownLocation

 

 

 

Steal Sensitive Information - Get location info and reuqest a new GPS listener

location_on

40%

Permission Request

android.permission.ACCESS_FINE_LOCATION

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getCellLocation

class: Landroid/location/LocationManager
method: addNmeaListener

 

 

 

Steal Sensitive Information - Get the information of network provider and the device location

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getNetworkType

class: Landroid/location/LocationManager
method: requestLocationUpdates

 

 

 

Steal Sensitive Information - Get your phone number and update current location

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getLine1Number

class: Landroid/location/LocationManager
method: requestLocationUpdates

 

 

 

Steal Sensitive Information - Get all network info and the last known location of the device

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getAllNetworkInfo

class: Landroid/location/LocationManager
method: getLastKnownLocation

 

 

 

Stealth and Steal Sensitive Info - Hide from GPS tracking and get device software version

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getDeviceSoftwareVersion

class: Landroid/location/LocationManager
method: removeUpdates

 

 

 

Stealth and Steal Sensitive Info - Hide from GPS tracking and see what ISP you're using

location_on

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/location/LocationManager
method: removeUpdates

class: Landroid/telephony/TelephonyManager
method: getNetworkType

 

 

 

Monitor SMS

email

40%

Permission Request

android.permission.READ_SMS
android.permission.RECEIVE_SMS

Native API Usage

class: Landroid/content/ContentResolver
method: registerContentObserver

class: Landroid/content/ContentResolver
method: query

 

 

 

Steal Sensitive Information - Get current network information and phone number

description

40%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getActiveNetworkInfo

class: Landroid/telephony/TelephonyManager
method: getLine1Number

 

 

 

Get path of external storage directory and vibrate device

adb

40%

Permission Request

android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/os/Environment
method: getExternalStorageDirectory

class: Landroid/os/Vibrator
method: vibrate

 

 

 

Steal Sensitive Information - Get SD cards information

description

40%

Permission Request

android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/os/Environment
method: getExternalStorageDirectory

class: Landroid/content/Context
method: getExternalCacheDir

 

 

 

Location Detection - Get cell phone location and add another GPS status listener

location_on

40%

Permission Request

android.permission.ACCESS_FINE_LOCATION

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getCellLocation

class: Landroid/location/LocationManager
method: addGpsStatusListener

 

 

 

Steal Sensitive Information - Get info of the network and ISP

description

40%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/net/ConnectivityManager
method: getNetworkInfo

class: Landroid/telephony/TelephonyManager
method: getNetworkType

 

 

 

Delete SMS after querying

email

40%

Permission Request

android.permission.READ_SMS
android.permission.RECEIVE_SMS

Native API Usage

class: Landroid/content/ContentResolver
method: query

class: Landroid/content/ContentResolver
method: delete

 

 

 

Steal Sensitive Information - Get SD cards and all network info

description

40%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/os/Environment
method: getExternalStorageDirectory

class: Landroid/net/ConnectivityManager
method: getAllNetworkInfo

 

 

 

Steal Sensitive Information - See where does the user use voice mail service

description

40%

Permission Request

android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getVoiceMailNumber

class: Landroid/location/LocationManager
method: requestLocationUpdates

 

 

 

Steal Sensitive Information - Get your ISP name and SD cards info

description

40%

Permission Request

android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE

Native API Usage

class: Landroid/telephony/TelephonyManager
method: getNetworkType

class: Landroid/os/Environment
method: getExternalStorageDirectory

 

 

 

Send recording via socket

adb

20%

Permission Request

android.permission.INTERNET
android.permission.RECORD_AUDIO

 

 

 

 

Steal Sensitive Information - Get file information in the SD cards and network infos

description

20%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE

 

 

 

 

Stealth - Disable and enable vibrate notification

adb

20%

Permission Request

android.permission.VIBRATE

 

 

 

 

Steal Sensitive Information - See what ISP you use in a particular location

location_on

20%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE

 

 

 

 

Stealth and Resource Consumption - Stop vibration notification and keep your phone awake

adb

20%

Permission Request

android.permission.VIBRATE
android.permission.WAKE_LOCK

 

 

 

 

Resource Comsumption - keep the phone awake when vibrate

adb

20%

Permission Request

android.permission.VIBRATE
android.permission.WAKE_LOCK

 

 

 

 

Stealth and Steal Sensitive Info - Cancel vibration notificiton and know what you ISP is

adb

20%

Permission Request

android.permission.READ_PHONE_STATE
android.permission.VIBRATE

 

 

 

 

Steal Sensitive Information - See what ISP you're using in a specific location

location_on

20%

Permission Request

android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE

 

 

 

 

Steal Sensitive Information - Get your phone number and your ISP info

description

20%

Permission Request

android.permission.READ_PHONE_STATE

 

 

 

 

Steal Sensitive Information - Get your ISP and all network infos

description

20%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE

 

 

 

 

Resource Consumption and Steal Sensitive Info - Keep the device awake and get all network info

description

20%

Permission Request

android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK

 

 

 

 

Download file via socket

file_copy

20%

Permission Request

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE