023a615be04ba326572c53030ec32fe1_JaffaCakes118

General

Target

023a615be04ba326572c53030ec32fe1_JaffaCakes118
Size

17.4MB
MD5

023a615be04ba326572c53030ec32fe1
SHA1

1c523eade2c5008e6732e25d1975b7c2a805ec6d
SHA256

136fee591e4a56325b3ffb0f52ca63b6969738f736abe66ad2297a88ffde5dda
SHA512

237d40fb085e320c4c273384fd96687e5f5ecea72d2441989158d6a9c7f0872988c081a935cd7dcc3556b8650229320ea2bd2404fb0fa89172f6e7bf930598a8
SSDEEP

393216:zsAJHBuXLxXWCjZEuw5UWPRuqTBspWuvCn7K/NYIfIDXPucgAK:3BuXlZEuw9PRuqXkL/CM

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

023a615be04ba326572c53030ec32fe1_JaffaCakes118
.apk android

ROKINvip.apk

com.mr.groot.com.MainActivity

Activities

com.mr.groot.com.MainActivity

android.intent.action.MAIN
android.intent.action.MAIN

com.mr.groot.com.ActivityMain

android.intent.action.MAIN
android.intent.action.MAIN

Permissions

android.permission.WRITE_SETTINGS
�吀愀倀漀㐀攀䬀䜀䜀
android.permission.CHANGE_WIFI_STATE
�吀愀倀漀㐀攀䬀䜀䜀
android.permission.RECEIVE_BOOT_COMPLETED
�吀愀倀漀㐀攀䬀䜀䜀
�吀愀倀漀㐀攀䬀䜀䜀
android.permission.ACCESS_WIFI_STATE
�吀愀倀漀㐀攀䬀䜀䜀
�吀愀倀漀㐀攀䬀䜀䜀
�吀愀倀漀㐀攀䬀䜀䜀
�吀愀倀漀㐀攀䬀䜀䜀
�吀愀倀漀㐀攀䬀䜀䜀
�吀愀倀漀㐀攀䬀䜀䜀
�吀愀倀漀㐀攀䬀䜀䜀
android.permission.SET_WALLPAPER
�吀愀倀漀㐀攀䬀䜀䜀
android.permission.WAKE_LOCK
�吀愀倀漀㐀攀䬀䜀䜀
android.permission.ACCESS_SUPERUSER
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_CLIPBOARD
android.permission.WRITE_CLIPBOARD
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_MEDIA_STORAGE
android.permission.VIBRATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.GET_TASKS
android.permission.REAL_GET_TASKS
android.permission.GET_DETAILED_TASKS
android.permission.INTERACT_ACROSS_USERS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.READ_LOGS
�吀愀倀漀㐀攀䬀䜀䜀
android.permission.UPDATE_APP_OPS_STATS
android.permission.CHANGE_COMPONENT_ENABLED_STATE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES

Receivers

com.mr.groot.com.Receiver

ROKINvip.apk

com.mr.groot.comm.xqvwd.Kwzmf

android.intent.action.BOOT_COMPLETED

Services

Android Permissions

023a615be04ba326572c53030ec32fe1_JaffaCakes118

Permissions

android.permission.WRITE_SETTINGS

�吀愀倀漀㐀攀䬀䜀䜀

android.permission.CHANGE_WIFI_STATE

�吀愀倀漀㐀攀䬀䜀䜀

android.permission.RECEIVE_BOOT_COMPLETED

�吀愀倀漀㐀攀䬀䜀䜀

android.permission.ACCESS_WIFI_STATE

�吀愀倀漀㐀攀䬀䜀䜀

android.permission.SET_WALLPAPER

�吀愀倀漀㐀攀䬀䜀䜀

android.permission.WAKE_LOCK

�吀愀倀漀㐀攀䬀䜀䜀

android.permission.ACCESS_SUPERUSER

android.permission.SYSTEM_ALERT_WINDOW

android.permission.READ_CLIPBOARD

android.permission.WRITE_CLIPBOARD

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_MEDIA_STORAGE

android.permission.VIBRATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.GET_TASKS

android.permission.REAL_GET_TASKS

android.permission.GET_DETAILED_TASKS

android.permission.INTERACT_ACROSS_USERS

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.READ_LOGS

�吀愀倀漀㐀攀䬀䜀䜀

android.permission.UPDATE_APP_OPS_STATS

android.permission.CHANGE_COMPONENT_ENABLED_STATE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.REQUEST_DELETE_PACKAGES

Sharing

General

Malware Config

Signatures

Files

ROKINvip.apk

com.mr.groot.com.MainActivity

Activities

com.mr.groot.com.MainActivity

com.mr.groot.com.ActivityMain

Permissions

Receivers

com.mr.groot.com.Receiver

com.mr.groot.comm.xqvwd.Kwzmf

Services

Android Permissions

023a615be04ba326572c53030ec32fe1_JaffaCakes118