03053f3f49d75a2f258bb5050db90371_JaffaCakes118

General

Target

03053f3f49d75a2f258bb5050db90371_JaffaCakes118
Size

24.7MB
MD5

03053f3f49d75a2f258bb5050db90371
SHA1

d0b6cad9acffac7731f18233cd49d3fadbcdf037
SHA256

54cbd8fb6344d845b52a702261597639b71fd4dee20693de917e76708e6ea832
SHA512

e423e26405e3dcc7509a2cf90f4b2a56d6d39821f650b5fc42bdfeb8b57965ee3436ff48130fbdc57493b0dd42f59cc75c3d140f5064213f44724d2a23e3cf5b
SSDEEP

786432:zBV4/pVEpPQKqk8rt18AUC2z3SXYhdXRM+qaqAy:zBVovugk8rtOA72zSXYb2ey

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS

Files

03053f3f49d75a2f258bb5050db90371_JaffaCakes118
.apk android arch:arm

com.imangi.templerunzh

com.templerun1.SkyNetPluginActivity

Activities

com.templerun1.SkyNetPluginActivity

android.intent.action.MAIN
android.intent.action.CHINAMOBILE_OMS_GAME

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.SEND_SMS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Receivers

mm.sms.purchasesdk.sms.SMSReceiver

aspire.iap.SMS_SEND_ACTIOIN
aspire.iap.SMS_DELIVERED_ACTION

Services

com.idreamsky.gamecenter.service.SkynetService

com.idreamsky.gamecenter.skynetservice
com.alipay.android.app.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

Android Permissions

03053f3f49d75a2f258bb5050db90371_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.SEND_SMS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Sharing

General

Malware Config

Signatures

Files

com.imangi.templerunzh

com.templerun1.SkyNetPluginActivity

Activities

com.templerun1.SkyNetPluginActivity

Permissions

Receivers

mm.sms.purchasesdk.sms.SMSReceiver

Services

com.idreamsky.gamecenter.service.SkynetService

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

.AlixReceiver

Services

.AlixService

Android Permissions

03053f3f49d75a2f258bb5050db90371_JaffaCakes118