f70239e7e7c7559e313c009f31702125_JaffaCakes118

General

Target

f70239e7e7c7559e313c009f31702125_JaffaCakes118
Size

8.2MB
MD5

f70239e7e7c7559e313c009f31702125
SHA1

fe7e7cce84f1fe9237d7a2e947b3f100e0ef7dd5
SHA256

94cf641f1400820ff6bfb46664a67b534bc1eaff2ab39b122f0bda905f9cd67d
SHA512

2dcc0c94839a816b8276cf62364903d14004d4295b9d7bc03c2ffff778b56fed1dc83326a6fb5300910d6f393747304c9e54eb6fc522cd04803e13391f72d764
SSDEEP

196608:5za45ORGg4ysB1P5nKeyvnVm3LY9lhVaMQ0FJ4m:Fa45gGesB1PgvnVWLY9X34m

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

Processes:

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

f70239e7e7c7559e313c009f31702125_JaffaCakes118
.apk android

com.zhiqupk.root

com.rootmaster.activity.MainActivity

Activities

com.rootmaster.activity.MainActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.CAMERA
android.permission.ACCESS_MTK_MMHW
android.permission.FLASHLIGHT
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.USE_CREDENTIALS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.DISABLE_KEYGUARD
android.permission.WAKE_LOCK
android.permission.CHANGE_WIFI_STATE
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.RECORD_AUDIO
android.permission.VIBRATE
android.permission.CAMERA
android.permission.ACCESS_FINE_LOCATION
com.android.browser.permission.READ_HISTORY_BOOKMARKS

Services
__pasys_remote_banner.jar
.apk android

f70239e7e7c7559e313c009f31702125_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.CAMERA

android.permission.ACCESS_MTK_MMHW

android.permission.FLASHLIGHT

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.USE_CREDENTIALS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.DISABLE_KEYGUARD

android.permission.WAKE_LOCK

android.permission.CHANGE_WIFI_STATE

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.RECORD_AUDIO

android.permission.VIBRATE

android.permission.CAMERA

android.permission.ACCESS_FINE_LOCATION

com.android.browser.permission.READ_HISTORY_BOOKMARKS

Sharing

General

Malware Config

Signatures

Files

com.zhiqupk.root

com.rootmaster.activity.MainActivity

Activities

com.rootmaster.activity.MainActivity

Permissions

Services

Android Permissions

f70239e7e7c7559e313c009f31702125_JaffaCakes118