050ca066fcbb9a30ef8fff41a52ff5a2_JaffaCakes118

General

Target

050ca066fcbb9a30ef8fff41a52ff5a2_JaffaCakes118
Size

9.0MB
MD5

050ca066fcbb9a30ef8fff41a52ff5a2
SHA1

428ae1be9b06d8c31500bda72f8a89d393f95ad1
SHA256

06ba5ce743d14f1f96ad392d5dc729d4b23eb560a70f7ed880845d512f1a2fe2
SHA512

4f6e3c2c338508ee75e1ec3ee5de23e2d882a92d0039ff1e5bc2e3aa269d595b5303c4ef6201409ec72f5edf7eaa608d1ab786761b3c5d40007baee7e8463a3d
SSDEEP

196608:/203PPT4SZI8O6i4eVcgkPV9yOqAzoCRLf3VPeTVoTVozbsA0F3EwCEPI:/5jBni4eVcvdUNA0CR7FYVoTizbsAs3O

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

050ca066fcbb9a30ef8fff41a52ff5a2_JaffaCakes118
.apk android arch:arm arch:x86

com.tencent.hlx

com.iapp.app.logoActivity

Activities

com.iapp.app.logoActivity

android.intent.action.MAIN

Permissions

android.permission.PACKAGE_USAGE_STATS
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.CAMERA
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.FLASHLIGHT
android.permission.RECORD_AUDIO
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
com.android.launcher.permission.INSTALL_SHORTCUT

Receivers

net.youmi.android.AdReceiver

android.intent.action.PACKAGE_ADDED

Services
hf.apk
.apk android

com.qqguanjianzihuifu

com.e4a.runtime.android.StartActivity

Activities

com.e4a.runtime.android.StartActivity

android.intent.action.MAIN

com.e4a.runtime.android.mainActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.READ_PHONE_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.READ_SETTINGS
android.permission.WAKE_LOCK
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_CONFIGURATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.GET_TASKS
android.permission.SET_DEBUG_APP
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.accessibilityservice.AccessibilityService
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW

Services

com.e4a.runtime.components.impl.android.清明_跨程序辅助类库.Ser

android.accessibilityservice.AccessibilityService
qm.apk
.apk android arch:arm arch:x86

com.qm

com.yougaile.iapp.logoActivity

Activities

com.yougaile.iapp.logoActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE

Android Permissions

050ca066fcbb9a30ef8fff41a52ff5a2_JaffaCakes118

Permissions

android.permission.PACKAGE_USAGE_STATS

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.CAMERA

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.FLASHLIGHT

android.permission.RECORD_AUDIO

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

com.android.launcher.permission.INSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

com.tencent.hlx

com.iapp.app.logoActivity

Activities

com.iapp.app.logoActivity

Permissions

Receivers

net.youmi.android.AdReceiver

Services

com.qqguanjianzihuifu

com.e4a.runtime.android.StartActivity

Activities

com.e4a.runtime.android.StartActivity

com.e4a.runtime.android.mainActivity

com.tencent.tauth.AuthActivity

Permissions

Services

com.e4a.runtime.components.impl.android.清明_跨程序辅助类库.Ser

com.qm

com.yougaile.iapp.logoActivity

Activities

com.yougaile.iapp.logoActivity

Permissions

Android Permissions

050ca066fcbb9a30ef8fff41a52ff5a2_JaffaCakes118