0c46ea9e12ff2cc03df7431d6f2e6798_JaffaCakes118

General

Target

0c46ea9e12ff2cc03df7431d6f2e6798_JaffaCakes118
Size

16.4MB
MD5

0c46ea9e12ff2cc03df7431d6f2e6798
SHA1

0e2ffd4e31afe62aa66ddd8eab6ae5f63d7fb014
SHA256

b166c95bf0cad7452d2759e374844743c8982112a32809d8332de4e48a13cb48
SHA512

5395b1174a118be35d8bb40ceb26d7e3d7ca9b3ce1d28b3fc9935789a7e0fcc62aa7fe70f2375a1109f855fc2734f6d9f9195db2cb0a1b55e416ed219c1a0fdc
SSDEEP

393216:1KUttSURtPrJbPBZDfYARzXowCTwgUPnCZiauI8+Bf4CP4Tk7O:xJdrpPQAiBw7GF/rAC60O

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

0c46ea9e12ff2cc03df7431d6f2e6798_JaffaCakes118
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

com.abb.news

com.abb.news.ui.home.SplashActivity

Activities

com.abb.news.ui.home.SplashActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.abb.news.ui.ThirdOpenActivity

android.intent.action.VIEW

Permissions

android.permission.READ_LOGS
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.BLUETOOTH
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.VIBRATE
com.abb.news.permission.MIPUSH_RECEIVE
com.meizu.flyme.push.permission.RECEIVE
com.abb.news.push.permission.MESSAGE
com.meizu.c2dm.permission.RECEIVE
com.abb.news.permission.C2D_MESSAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE

Receivers

org.android.agoo.xiaomi.MiPushBroadcastReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

org.android.agoo.huawei.HuaWeiReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH
com.huawei.intent.action.PUSH_STATE

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.abb.news.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

Services

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action
bdxadsdk.jar
.apk android
gdtadv2.jar
.apk android arch:arm arch:arm64

Android Permissions

0c46ea9e12ff2cc03df7431d6f2e6798_JaffaCakes118

Permissions

android.permission.READ_LOGS

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.BLUETOOTH

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.VIBRATE

com.abb.news.permission.MIPUSH_RECEIVE

com.meizu.flyme.push.permission.RECEIVE

com.abb.news.push.permission.MESSAGE

com.meizu.c2dm.permission.RECEIVE

com.abb.news.permission.C2D_MESSAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

Sharing

General

Malware Config

Signatures

Files

com.abb.news

com.abb.news.ui.home.SplashActivity

Activities

com.abb.news.ui.home.SplashActivity

com.tencent.tauth.AuthActivity

com.abb.news.ui.ThirdOpenActivity

Permissions

Receivers

org.android.agoo.xiaomi.MiPushBroadcastReceiver

org.android.agoo.huawei.HuaWeiReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

Services

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

0c46ea9e12ff2cc03df7431d6f2e6798_JaffaCakes118