f123d90f9e7c5edfecd553148a34bb38_JaffaCakes118

General

Target

f123d90f9e7c5edfecd553148a34bb38_JaffaCakes118
Size

16.8MB
MD5

f123d90f9e7c5edfecd553148a34bb38
SHA1

37b8ec33b2ba9a99d94996ac3e229a60f1cfb384
SHA256

0fb47b92343f44b90bcd5f8815d2a74843a843cb9d8babb1f69d909358a8ac7b
SHA512

e77aec0b75d3c77a7a36ddadaa03dd15ae61e3ba460d2593e3f15882ebe01dce8e7000386a7fe8d0faa0f9e392203b168c37ce440d48ee7d546e7d7bedf152e9
SSDEEP

393216:JGrGFGrrJzg396uOAsdTZnyg1uCW38TALZ34wHtNwiwcx:JcGUU9eVygkCWMTALmwHPwiwcx

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

f123d90f9e7c5edfecd553148a34bb38_JaffaCakes118
.apk android arch:arm

com.gameloft.android.ANMP.GloftD4HM

com.inject.InjectActivity

Activities

.GLiveHTML.GLLiveActivity

android.intent.action.MAIN

.IGPActivity

android.intent.action.MAIN

.IGPFreemiumActivity

android.intent.action.MAIN

.SplashScreenActivity

android.intent.action.MAIN

com.inject.InjectActivity

android.intent.action.MAIN

Permissions

android.permission.GET_ACCOUNTS
com.android.vending.CHECK_LICENSE
com.android.vending.BILLING
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
com.gameloft.android.ANMP.GloftD4HM.permission.C2D_MESSAGE
com.google.android.c2dm.permission.RECEIVE
android.permission.VIBRATE
android.permission.RECEIVE_BOOT_COMPLETED
glshare.permission.ACCESS_SHARED_DATA
android.permission.GET_TASKS
android.permission.WRITE_SETTINGS

Receivers

com.google.android.gcm.GCMBroadcastReceiver

com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.REGISTRATION

.PushNotification.LocalPushReceiver

android.intent.action.BOOT_COMPLETED

.PushNotification.PushIntentReceiver

com.gameloft.android.ANMP.GloftD4HM.PNBroadcast

.GLUtils.NetworkStateReceiver

android.net.conn.CONNECTIVITY_CHANGE

.BootCompletedReceiver

android.intent.action.BOOT_COMPLETED

.installer.IReferrerReceiver

com.android.vending.INSTALL_REFERRER

.ApplicationSetUp

com.gameloft.android.ApplicationSetUp

neo.proxy.DistributeReceiver

android.intent.action.ACTION_POWER_CONNECTED
com.secneo.plugin.action.HOURLY
com.secneo.plugin.action.DAILY
com.secneo.plugin.action.APP_STARTED
android.net.conn.CONNECTIVITY_CHANGE
com.secneo.proxy.action.CUSTOM

Services
collector.dex
.apk android
container.dex
.apk android

Android Permissions

f123d90f9e7c5edfecd553148a34bb38_JaffaCakes118

Permissions

android.permission.GET_ACCOUNTS

com.android.vending.CHECK_LICENSE

com.android.vending.BILLING

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

com.gameloft.android.ANMP.GloftD4HM.permission.C2D_MESSAGE

com.google.android.c2dm.permission.RECEIVE

android.permission.VIBRATE

android.permission.RECEIVE_BOOT_COMPLETED

glshare.permission.ACCESS_SHARED_DATA

android.permission.GET_TASKS

android.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.gameloft.android.ANMP.GloftD4HM

com.inject.InjectActivity

Activities

.GLiveHTML.GLLiveActivity

.IGPActivity

.IGPFreemiumActivity

.SplashScreenActivity

com.inject.InjectActivity

Permissions

Receivers

com.google.android.gcm.GCMBroadcastReceiver

.PushNotification.LocalPushReceiver

.PushNotification.PushIntentReceiver

.GLUtils.NetworkStateReceiver

.BootCompletedReceiver

.installer.IReferrerReceiver

.ApplicationSetUp

neo.proxy.DistributeReceiver

Services

Android Permissions

f123d90f9e7c5edfecd553148a34bb38_JaffaCakes118