0445c3a475f927dc371e7edf2a60ce50_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0445c3a475f927dc371e7edf2a60ce50_JaffaCakes118
Size

4.4MB
MD5

0445c3a475f927dc371e7edf2a60ce50
SHA1

cda938d1a4b51b2a63d11af13e1e93c9abaf56e0
SHA256

3b9aaab8422fe17e8b703c27c0bbebb85f0fdbd0e38189665175c1fd712a286a
SHA512

779c384a15616b56a77ad1c432857de510f2ebae450eb46f0f2d77b45c17025f1d708cf1812692d9637768598c17684dc4afb8fdbd89b638b51042b15c1a5480
SSDEEP

98304:qeVKvvfTTqc215tKqUjqOSh0A1pBWrUMPg0FmKSEafuwWo:qe2nTTqp5tSSp1TWrUEFyAW

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

0445c3a475f927dc371e7edf2a60ce50_JaffaCakes118
.apk android

com.fans.tfboys

com.wacosoft.appcloud.app_imusicapp3972.AppMain

Activities

com.wacosoft.appcloud.app_imusicapp3972.AppMain

android.intent.action.MAIN

com.imusic.imuapp.activity.WebViewActivity

android.intent.action.MAIN

Permissions

android.permission.CAMERA
android.permission.VIBRATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.MOUNT_FORMAT_FILESYSTEMS
android.permission.WAKE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.RESTART_PACKAGES
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.WRITE_SETTINGS

Receivers

com.wacosoft.appcloud.activity.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

com.utils.daydayup.Dcc

android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE

neo.proxy.DistributeReceiver

android.intent.action.ACTION_POWER_CONNECTED
com.secneo.plugin.action.HOURLY
com.secneo.plugin.action.DAILY
com.secneo.plugin.action.APP_STARTED
android.net.conn.CONNECTIVITY_CHANGE
com.secneo.proxy.action.CUSTOM

Services

com.wacosoft.appcloud.activity.PushService

com.wacosoft.appcloud.app_imusicapp3972.pushservice_action
appinfo.apk
.apk android
appstart.apk
.apk android
container.apk
.apk android
device.apk
.apk android
jiffiesinfo.apk
.apk android
location.apk
.apk android
wifiinfo.apk
.apk android

Android Permissions

0445c3a475f927dc371e7edf2a60ce50_JaffaCakes118

Permissions

android.permission.CAMERA

android.permission.VIBRATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.MOUNT_FORMAT_FILESYSTEMS

android.permission.WAKE_LOCK

android.permission.ACCESS_WIFI_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.RESTART_PACKAGES

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.fans.tfboys

com.wacosoft.appcloud.app_imusicapp3972.AppMain

Activities

com.wacosoft.appcloud.app_imusicapp3972.AppMain

com.imusic.imuapp.activity.WebViewActivity

Permissions

Receivers

com.wacosoft.appcloud.activity.BootBroadcastReceiver

com.utils.daydayup.Dcc

neo.proxy.DistributeReceiver

Services

com.wacosoft.appcloud.activity.PushService

Android Permissions

0445c3a475f927dc371e7edf2a60ce50_JaffaCakes118