07cfdd8dbaf44f6e42ddbff6f7ac9e24_JaffaCakes118

General

Target

07cfdd8dbaf44f6e42ddbff6f7ac9e24_JaffaCakes118
Size

7.1MB
MD5

07cfdd8dbaf44f6e42ddbff6f7ac9e24
SHA1

49caeb24f3b12aa8ec4bf0299b4e172897668174
SHA256

beaec0f7c00cc06b008188cf82367bb711454c13b921f853e939a879a3afdd28
SHA512

125d2e695a76537192eddcb89a8b91ef7ad71076b4a018357af9bdc82544b1aaff71dad5d8b76a73cb5c599176d75e68f5506383bb0fe6fb705d6329be9c0999
SSDEEP

196608:EyoFDn9jKUJQ0ReB5Zxd8kWSZtSicmaj/m:eJ9jKUShROkWQcHj+

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

07cfdd8dbaf44f6e42ddbff6f7ac9e24_JaffaCakes118
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.bqs.wetime.fruits

com.bqs.wetime.fruits.ui.core.SplashActivity

Activities

com.bqs.wetime.fruits.ui.core.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.bqs.wetime.fruits.ui.webview.CommWebviewActivity

android.intent.action.VIEW

com.mob.tools.MobUIShell

android.intent.action.VIEW
com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

Permissions

com.bqs.wetime.fruits.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.ACCESS_WIFI_STATE
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.CHANGE_NETWORK_STATE
android.permission.MOUNT_UNMOUNT_FIFESSTEMS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CALL_PHONE
android.permission.READ_PHONE_STATE
android.permission.READ_LOGS
android.permission.GET_TASKS
wetime.permission.BILL_REPORT
android.permission.READ_SYNC_STATS
android.permission.WRITE_SYNC_SETTINGS
android.permission.AUTHENTICATE_ACCOUNTS

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.bqs.wetime.fruits.push.JPushReceiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.UNREGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.ACTION_RICHPUSH_CALLBACK
cn.jpush.android.intent.CONNECTION

com.bqs.wetime.fruits.ui.relateaccount.sync.SyncAlarmReceiver

com.bqs.android.wetime.sync.alarm

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

cn.jpush.android.service.DaemonService

cn.jpush.android.intent.DaemonService

com.bqs.wetime.fruits.ui.relateaccount.sync.SyncService

android.content.SyncAdapter

com.bqs.wetime.fruits.ui.relateaccount.sync.accounts.GenericAccountService

android.accounts.AccountAuthenticator

Android Permissions

07cfdd8dbaf44f6e42ddbff6f7ac9e24_JaffaCakes118

Permissions

com.bqs.wetime.fruits.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.ACCESS_WIFI_STATE

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.CHANGE_NETWORK_STATE

android.permission.MOUNT_UNMOUNT_FIFESSTEMS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CALL_PHONE

android.permission.READ_PHONE_STATE

android.permission.READ_LOGS

android.permission.GET_TASKS

wetime.permission.BILL_REPORT

android.permission.READ_SYNC_STATS

android.permission.WRITE_SYNC_SETTINGS

android.permission.AUTHENTICATE_ACCOUNTS

Sharing

General

Malware Config

Signatures

Files

com.bqs.wetime.fruits

com.bqs.wetime.fruits.ui.core.SplashActivity

Activities

com.bqs.wetime.fruits.ui.core.SplashActivity

com.bqs.wetime.fruits.ui.webview.CommWebviewActivity

com.mob.tools.MobUIShell

cn.jpush.android.ui.PushActivity

Permissions

Receivers

cn.jpush.android.service.PushReceiver

com.bqs.wetime.fruits.push.JPushReceiver

com.bqs.wetime.fruits.ui.relateaccount.sync.SyncAlarmReceiver

Services

cn.jpush.android.service.PushService

cn.jpush.android.service.DaemonService

com.bqs.wetime.fruits.ui.relateaccount.sync.SyncService

com.bqs.wetime.fruits.ui.relateaccount.sync.accounts.GenericAccountService

Android Permissions

07cfdd8dbaf44f6e42ddbff6f7ac9e24_JaffaCakes118