General

  • Target

    e4d506940fad3af243ac3eb04e16f6a9_JaffaCakes118

  • Size

    3.0MB

  • MD5

    e4d506940fad3af243ac3eb04e16f6a9

  • SHA1

    0c6ba3fac39eab343539e2355bb0b533665b7ea6

  • SHA256

    7a1f67937c3df8b1b65b7e5ca2ac609a7f405123df91b948535ad866e9ff884d

  • SHA512

    19ecfa32e9e21cd65bc9579a8ef449f2b9fa883a22884ecc561586f9dd327aebe485a178128af2ed34270d51fffb5e754618ee22e0cd6e931bf09818060a2bec

  • SSDEEP

    49152:0gdipryDHH0D6gmPOroTV8asMbUCWhSENwOU1iNcJ3W7HxTQqUonXJ3cwk:0brWn0DAOroTV87wHDOC09RzUsFk

Score
10/10

Malware Config

Signatures

  • DogeRAT payload 1 IoCs
  • Dogerat family
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 6 IoCs

Files

  • e4d506940fad3af243ac3eb04e16f6a9_JaffaCakes118
    .apk android

    com.xunmeng.pinduoduo

    com.xunmeng.pinduoduo.pdd4f2ff0


Android Permissions

e4d506940fad3af243ac3eb04e16f6a9_JaffaCakes118

Permissions

android.permission.REQUEST_DELETE_PACKAGES

android.permission.QUERY_ALL_PACKAGES

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.VIBRATE

android.permission.RECEIVE_SMS

android.permission.WAKE_LOCK

android.permission.READ_SMS

android.permission.READ_PHONE_STATE

android.permission.SEND_SMS

android.permission.READ_CONTACTS

android.permission.FOREGROUND_SERVICE

android.permission.WRITE_SMS

android.permission.CALL_PHONE

android.permission.INTERNET

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.ACCESS_NETWORK_STATE