ea8ba48e6066a41a5927e04b03e54369_JaffaCakes118

General

Target

ea8ba48e6066a41a5927e04b03e54369_JaffaCakes118
Size

149KB
MD5

ea8ba48e6066a41a5927e04b03e54369
SHA1

7bd5fbaebe2f7f2d4855b058d6f6ada994656a3c
SHA256

e8dfe1e032773417df9ae4f589bb71a024d9e05c47593e1d109795fa8ee024ba
SHA512

e3a3ae3d4714be5ac92827d5683251f03aa9ffd27ed4116771a853c836b160defb2778ef47ce9376cad53876f22c75ac3752849d52d9413673b8fff4d1d0c4aa
SSDEEP

3072:UW0dJaYhnxhj4ruh5ZAIb9iAptzL2m0XxKPnVBIVBQhPZhP3gpa:p0Dhn8c9bAAvx0Xxi/I/SHYpa

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

ea8ba48e6066a41a5927e04b03e54369_JaffaCakes118
.apk android

com.hpsuyzzuuphhahp.cxglvwodxyahqfg

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.vbqinfpjm

Activities

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.rqldyxst

android.intent.action.SENDTO
android.intent.action.SEND

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.vbqinfpjm

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.CALL_PHONE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.REQUEST_DELETE_PACKAGES
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.READ_CONTACTS
android.permission.WAKE_LOCK

Receivers

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.twkxn.rajitnbvdn

android.app.action.DEVICE_ADMIN_DISABLED
android.app.action.ACTION_DEVICE_ADMIN_DISABLE_REQUESTED
android.app.action.DEVICE_ADMIN_ENABLED

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.tmsliuagpbmjgwq

android.provider.Telephony.WAP_PUSH_DELIVER

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.vbhvrhsp.mdtvtcgphzlryhmu

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
android.provider.Telephony.SMS_RECEIVED
com.htc.intent.action.QUICKBOOT_POWERON
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.provider.Telephony.SMS_DELIVER

Services

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.cerb

android.intent.action.RESPOND_VIA_MESSAGE

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.brmtpadsuycp.ifvqpgrxeewhkkb

android.accessibilityservice.AccessibilityService

Android Permissions

ea8ba48e6066a41a5927e04b03e54369_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.CALL_PHONE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_PHONE_STATE

android.permission.REQUEST_DELETE_PACKAGES

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.READ_CONTACTS

android.permission.WAKE_LOCK

Sharing

General

Malware Config

Signatures

Files

com.hpsuyzzuuphhahp.cxglvwodxyahqfg

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.vbqinfpjm

Activities

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.rqldyxst

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.vbqinfpjm

Permissions

Receivers

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.twkxn.rajitnbvdn

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.tmsliuagpbmjgwq

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.vbhvrhsp.mdtvtcgphzlryhmu

Services

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.cerb

com.hpsuyzzuuphhahp.cxglvwodxyahqfg.brmtpadsuycp.ifvqpgrxeewhkkb

Android Permissions

ea8ba48e6066a41a5927e04b03e54369_JaffaCakes118