f18d69ddba89b600df7a7b23e583ae57_JaffaCakes118

General

Target

f18d69ddba89b600df7a7b23e583ae57_JaffaCakes118
Size

5.1MB
MD5

f18d69ddba89b600df7a7b23e583ae57
SHA1

124b2d3f27784c7dc62acbdbc20df5f625e79a5e
SHA256

028e12e82bca2091059a55c0cd3e01f6aeaca7d474aa6a65884538b9d9aca484
SHA512

02f7a6377fc45b50b9d0d2e7531f4e25f460bfc1e27d355bc608dd3cba19a56bbe27df094721877c56ea662fcc3ca2b5e643f15b45fd64e7e5302512b2439c46
SSDEEP

98304:jFAr1IO0JQqvgytItFws25K6Kz3U0X7y5p1L0523Fr9+jTxu9whGCM8WbULj57st:ZAhmnwwBKtz3pX7y5pBc2VR+dc88

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

f18d69ddba89b600df7a7b23e583ae57_JaffaCakes118
.apk android arch:arm

com.zhiqupk.root.global

com.zhiqupk.root.NewSplashActivity

Activities

com.zhiqupk.root.NewSplashActivity

android.intent.action.MAIN

com.opda.actionpoint.MainDialogActivity

android.intent.action.VIEW

com.opda.actionpoint.MainDialogActivity2

android.intent.action.VIEW

com.opda.actionpoint.activity.PreAppUninstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.PreAppInstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.GameSaveActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.GameSaveDetailActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.AdKillerActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.BootStartAppManager

android.intent.action.VIEW

com.opda.actionpoint.activity.AppInstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.AppUninstallActivity

android.intent.action.VIEW

com.surplusclear.SurplusMainActivity

android.intent.action.MAIN

com.umeng.update.UmengHtmlwebActivity

android.intent.action.VIEW

neo.proxy.ToolActivity

com.secneo.proxy.action.CUSTOM

Permissions

android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.ACCESS_MTK_MMHW
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.RECEIVE_USER_PRESENT
android.permission.BROADCAST_STICKY
android.permission.DISABLE_KEYGUARD
android.permission.INTERACT_ACROSS_USERS_FULL
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SETTINGS

Receivers

com.zhiqupk.root.InstallAppReceiver

android.intent.action.PACKAGE_ADDED

com.zhiqupk.root.receiver.AppListenerReceiver

android.intent.action.PACKAGE_ADDED

com.surplusclear.SurplusAppListenerReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED

com.zhiqupk.root.VorboseEventReceiver

com.zhiqupk.root_vorbose.event

com.umeng.update.UmengInstallReceiver

android.intent.action.PACKAGE_ADDED

com.umeng.update.UmengNetBroadCast

android.net.conn.CONNECTIVITY_CHANGE

com.umeng.update.UmengUpdateReceiver

android.intent.action.USER_PRESENT

com.google.android.gms.analytics.CampaignTrackingReceiver

com.android.vending.INSTALL_REFERRER

neo.proxy.DistributeReceiver

android.intent.action.ACTION_POWER_CONNECTED
com.secneo.plugin.action.HOURLY
com.secneo.plugin.action.DAILY
com.secneo.plugin.action.APP_STARTED
android.net.conn.CONNECTIVITY_CHANGE
com.secneo.proxy.action.CUSTOM

Services

com.opda.actionpoint.service.GameModifierService

com.opda.gamemodifier

com.opda.actionpoint.service.SpeedTimeService

com.opda.speedtime
container.apk
.apk android

Android Permissions

f18d69ddba89b600df7a7b23e583ae57_JaffaCakes118

Permissions

android.permission.WAKE_LOCK

android.permission.CAMERA

android.permission.ACCESS_MTK_MMHW

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.RECEIVE_USER_PRESENT

android.permission.BROADCAST_STICKY

android.permission.DISABLE_KEYGUARD

android.permission.INTERACT_ACROSS_USERS_FULL

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.zhiqupk.root.global

com.zhiqupk.root.NewSplashActivity

Activities

com.zhiqupk.root.NewSplashActivity

com.opda.actionpoint.MainDialogActivity

com.opda.actionpoint.MainDialogActivity2

com.opda.actionpoint.activity.PreAppUninstallActivity

com.opda.actionpoint.activity.PreAppInstallActivity

com.opda.actionpoint.activity.GameSaveActivity

com.opda.actionpoint.activity.GameSaveDetailActivity

com.opda.actionpoint.activity.AdKillerActivity

com.opda.actionpoint.activity.BootStartAppManager

com.opda.actionpoint.activity.AppInstallActivity

com.opda.actionpoint.activity.AppUninstallActivity

com.surplusclear.SurplusMainActivity

com.umeng.update.UmengHtmlwebActivity

neo.proxy.ToolActivity

Permissions

Receivers

com.zhiqupk.root.InstallAppReceiver

com.zhiqupk.root.receiver.AppListenerReceiver

com.surplusclear.SurplusAppListenerReceiver

com.zhiqupk.root.VorboseEventReceiver

com.umeng.update.UmengInstallReceiver

com.umeng.update.UmengNetBroadCast

com.umeng.update.UmengUpdateReceiver

com.google.android.gms.analytics.CampaignTrackingReceiver

neo.proxy.DistributeReceiver

Services

com.opda.actionpoint.service.GameModifierService

com.opda.actionpoint.service.SpeedTimeService

Android Permissions

f18d69ddba89b600df7a7b23e583ae57_JaffaCakes118