f647fb22988a9ce7fc4b4d55f759bcae_JaffaCakes118

General

Target

f647fb22988a9ce7fc4b4d55f759bcae_JaffaCakes118
Size

8.3MB
MD5

f647fb22988a9ce7fc4b4d55f759bcae
SHA1

93d3e30d50bcf81f8f1afd7c13564cf33c15acb2
SHA256

4f6f3ec7dadf67ba0031ed5d3cdc33979c05c75160eb7eb8e700e5eac2130016
SHA512

67b5b4fc0d4e68a58289c3e22f0aab358e4ef010f3432ae196cb294bb13818f786ad9dc3ba7cdd46d64117cec562ec8af64a805a900767cd96a8a403e2a39a68
SSDEEP

196608:kOXMzmMl+Fp/SH+gwj0FQM9M+yqesV9Rg+69:xMKMlCOwgFlq9

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by remote views services to bind with the system. Allows apps to share and display views across different processes.	android.permission.BIND_REMOTEVIEWS

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

f647fb22988a9ce7fc4b4d55f759bcae_JaffaCakes118
.apk android

net.daum.android.solmail

net.daum.android.solmail.StartActivity

Activities

net.daum.android.solmail.StartActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.SENDTO
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE
net.daum.android.mail.PUSH_NOTI_MESSAGE_INTENT

net.daum.android.solmail.appwidget.MailWidgetConfigActivity

android.appwidget.action.APPWIDGET_CONFIGURE

net.daum.android.solmail.appwidget.MailListWidgetConfigActivity

android.appwidget.action.APPWIDGET_CONFIGURE

net.daum.android.solmail.appwidget.MailButtonListWidgetConfigActivity

android.appwidget.action.APPWIDGET_CONFIGURE

Permissions

android.permission.WRITE_CONTACTS
net.daum.android.solmail.permission.C2D_MESSAGE
net.daum.android.solmail.permission.AOM_MESSAGE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_TASKS
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.SET_WALLPAPER
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.READ_CONTACTS
android.permission.READ_PHONE_STATE
android.permission.READ_PROFILE
net.daum.android.login.AUTHENTICATE
com.google.android.c2dm.permission.RECEIVE
com.skt.aom.permission.AOM_RECEIVE

Receivers

net.daum.android.solmail.appwidget.MailListWidgetProviderBlack

android.appwidget.action.APPWIDGET_UPDATE

net.daum.android.solmail.appwidget.MailListWidgetProviderWhite

android.appwidget.action.APPWIDGET_UPDATE

net.daum.android.solmail.appwidget.MailWidgetProviderOneByOne

android.appwidget.action.APPWIDGET_UPDATE
com.buzzpia.aqua.appwidget.GET_VERSION
net.daum.android.solmail.appwidget.WIDGET_NAVIGATE
net.daum.android.solmail.appwidget.WIDGET_RELOAD
net.daum.android.solmail.appwidget.WIDGET_WRITE
net.daum.android.solmail.appwidget.WIDGET_FOLDER
net.daum.android.solmail.appwidget.WIDGET_MESSAGE
net.daum.android.solmail.appwidget.WIDGET_ACCOUNT_CHANGE

net.daum.android.solmail.appwidget.MailWidgetProviderWhite

android.appwidget.action.APPWIDGET_UPDATE
net.daum.android.solmail.appwidget.WIDGET_NAVIGATE
net.daum.android.solmail.appwidget.WIDGET_RELOAD
net.daum.android.solmail.appwidget.WIDGET_WRITE
net.daum.android.solmail.appwidget.WIDGET_FOLDER
net.daum.android.solmail.appwidget.WIDGET_MESSAGE
net.daum.android.solmail.appwidget.WIDGET_ACCOUNT_CHANGE

net.daum.android.solmail.appwidget.MailWidgetProviderBlack

android.appwidget.action.APPWIDGET_UPDATE
net.daum.android.solmail.appwidget.WIDGET_NAVIGATE
net.daum.android.solmail.appwidget.WIDGET_RELOAD
net.daum.android.solmail.appwidget.WIDGET_WRITE
net.daum.android.solmail.appwidget.WIDGET_FOLDER
net.daum.android.solmail.appwidget.WIDGET_MESSAGE
net.daum.android.solmail.appwidget.WIDGET_ACCOUNT_CHANGE

net.daum.android.solmail.service.PushAlarm

net.daum.android.solmail.service.MAIL_PUSH
net.daum.android.solmail.service.MAIL_NOTIFICATION_DELETE
net.daum.android.solmail.service.MAIL_NOTIFICATION_DELETE_SUCCESS
net.daum.android.solmail.service.MAIL_NOTIFICATION_DELETE_FAILURE
net.daum.android.solmail.service.MAIL_NOTIFICATION_DELETE_ING
android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_DATA_CLEARED

net.daum.android.solmail.notification.NotificationReceiver

net.daum.android.solmail.notification.MAIL_NOTIFICATION_CLOSE
net.daum.android.solmail.notification.MAIL_NOTIFICATION_ACTION_DELETE
net.daum.android.solmail.notification.MAIL_NOTIFICATION_ACTION_READ

net.daum.mf.push.gcm.DaumGCMBroadcastReceiver

com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.REGISTRATION

net.daum.android.solmail.service.MailServiceManager

android.intent.action.BOOT_COMPLETED
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.DEVICE_STORAGE_LOW

net.daum.android.solmail.SyncConnectivityManager

android.net.wifi.WIFI_STATE_CHANGED
android.net.conn.CONNECTIVITY_CHANGE

net.daum.android.solmail.service.ReferrerBroadcastReceiver

com.android.vending.INSTALL_REFERRER

Services

net.daum.android.solmail.service.MailService

net.daum.android.solmail.service.MAIL_SERVICE
net.daum.android.solmail.service.MAIL_SYNC
net.daum.android.solmail.service.MAIL_AUTOLOGIN
net.daum.android.solmail.service.MAIL_RESCHEDULE
net.daum.android.solmail.service.MAIL_IMAP_PUSH
net.daum.android.solmail.service.MAIL_IMAP_PUSH_STOP
net.daum.android.solmail.service.MAIL_SERVICE_RESTART
net.daum.android.solmail.service.MAIL_SYNC_WIDGET
net.daum.android.solmail.service.MAIL_PUSH

Android Permissions

f647fb22988a9ce7fc4b4d55f759bcae_JaffaCakes118

Permissions

android.permission.WRITE_CONTACTS

net.daum.android.solmail.permission.C2D_MESSAGE

net.daum.android.solmail.permission.AOM_MESSAGE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.GET_TASKS

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.SET_WALLPAPER

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.READ_CONTACTS

android.permission.READ_PHONE_STATE

android.permission.READ_PROFILE

net.daum.android.login.AUTHENTICATE

com.google.android.c2dm.permission.RECEIVE

com.skt.aom.permission.AOM_RECEIVE

Sharing

General

Malware Config

Signatures

Files

net.daum.android.solmail

net.daum.android.solmail.StartActivity

Activities

net.daum.android.solmail.StartActivity

net.daum.android.solmail.appwidget.MailWidgetConfigActivity

net.daum.android.solmail.appwidget.MailListWidgetConfigActivity

net.daum.android.solmail.appwidget.MailButtonListWidgetConfigActivity

Permissions

Receivers

net.daum.android.solmail.appwidget.MailListWidgetProviderBlack

net.daum.android.solmail.appwidget.MailListWidgetProviderWhite

net.daum.android.solmail.appwidget.MailWidgetProviderOneByOne

net.daum.android.solmail.appwidget.MailWidgetProviderWhite

net.daum.android.solmail.appwidget.MailWidgetProviderBlack

net.daum.android.solmail.service.PushAlarm

net.daum.android.solmail.notification.NotificationReceiver

net.daum.mf.push.gcm.DaumGCMBroadcastReceiver

net.daum.android.solmail.service.MailServiceManager

net.daum.android.solmail.SyncConnectivityManager

net.daum.android.solmail.service.ReferrerBroadcastReceiver

Services

net.daum.android.solmail.service.MailService

Android Permissions

f647fb22988a9ce7fc4b4d55f759bcae_JaffaCakes118