privateloader | 0b69b4ebdb1605a0832cb08854b2b1d8_JaffaCakes118

General

Target

0b69b4ebdb1605a0832cb08854b2b1d8_JaffaCakes118
Size

26.2MB
MD5

0b69b4ebdb1605a0832cb08854b2b1d8
SHA1

ed1f07f60d5793e7f666c18d6f771dddc6e5e510
SHA256

d3d1a3979f55d457e29a7eae179a1004e88aa0c0ce170831f738ffa76fa17a33
SHA512

0b27ea2b15b59ff61ae01bc434ac1cf10f85019b187af95d1b5a2d8d7f9e2e1483a0f2eab6a8c23d0ddea920636c5fed7119dd1a8c81bfb74767a7f39cc5b5bd
SSDEEP

786432:9PeqwRDgInbhdma5sNOhlIrEfKZklKD1HM6+NgmtGxdfE186vV8n5:VzwRDgInlx5COnIIflJ2mtGxdfk985

Score

10^/10

privateloader

Malware Config

Signatures

Privateloader family
privateloader

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

0b69b4ebdb1605a0832cb08854b2b1d8_JaffaCakes118
.apk android arch:arm arch:x86

com.hamon.sixface.mg

com.google.littleDog.SplashActivity

Activities

com.google.littleDog.SplashActivity

android.intent.action.MAIN

com.unity3d.player.UnityPlayerNativeActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.SEND_DOWNLOAD_COMPLETED_INTENTS
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE

Receivers

com.tapjoy.GCMReceiver

com.google.android.c2dm.intent.REGISTRATION
com.google.android.c2dm.intent.RECEIVE
com.google.android.gcm.intent.RETRY

com.tapjoy.InstallReferrerReceiver

com.android.vending.INSTALL_REFERRER
mimo_asset.apk
.apk android

com.miui.ad.mimo.plugin

com.miui.zeus.chameleon.engine.ui.DebuggerActivity

Activities

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION

Android Permissions

0b69b4ebdb1605a0832cb08854b2b1d8_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_PHONE_STATE

android.permission.GET_TASKS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.SEND_DOWNLOAD_COMPLETED_INTENTS

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.INTERNET

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.hamon.sixface.mg

com.google.littleDog.SplashActivity

Activities

com.google.littleDog.SplashActivity

com.unity3d.player.UnityPlayerNativeActivity

Permissions

Receivers

com.tapjoy.GCMReceiver

com.tapjoy.InstallReferrerReceiver

com.miui.ad.mimo.plugin

com.miui.zeus.chameleon.engine.ui.DebuggerActivity

Activities

Permissions

Android Permissions

0b69b4ebdb1605a0832cb08854b2b1d8_JaffaCakes118