0da2d05585b03e075b0079a8f6b8cdae_JaffaCakes118

General

Target

0da2d05585b03e075b0079a8f6b8cdae_JaffaCakes118
Size

16.3MB
MD5

0da2d05585b03e075b0079a8f6b8cdae
SHA1

480339058bd9213e6f05f5e62cb8cd46854a83b4
SHA256

ba6b8de50622de7911e9b7cbab172b3702b456475d3b1a0f8faaa118b3d5c133
SHA512

8ffc43eca23eb05a44d67479782f6c25cb03e1880f7f4fb818574fffd15ea9d26d2c366f10f48dfe1683abe337453a34ac70f83a9e70d3fda9e61b9cb3ea8b0d
SSDEEP

393216:uWE8daewtgoNX6WSfEHPreGube6H2q6Ub/wtxi/ByfKotjs/DAgNsPel:7EoaZgoBJzHDefbe6T6UDwi/WKotY/DH

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

0da2d05585b03e075b0079a8f6b8cdae_JaffaCakes118
.apk android arch:arm

com.aiyu.kaipanla

com.aiyu.kaipanla.splash.SplashActivity

Activities

com.aiyu.kaipanla.splash.SplashActivity

android.intent.action.MAIN

com.aiyu.kaipanla.wxapi.WXEntryActivity

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.aiyu.kaipanla.newindex.ui.web.ArticleActivity

android.intent.action.VIEW

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.sina.weibo.sdk.share.WbShareToStoryActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_STORY

com.cairh.app.sjkh.SchemeActivity

android.intent.action.VIEW

Permissions

android.permission.GET_TASKS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.DISABLE_KEYGUARD
android.permission.REORDER_TASKS
android.permission.VIBRATE
android.permission.USE_CREDENTIALS
android.permission.FOREGROUND_SERVICE
MediaStore.Images.Media.INTERNAL_CONTENT_URI
MediaStore.Images.Media.EXTERNAL_CONTENT_URI
android.permission.RECORD_AUDIO
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_CONTACTS
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
getui.permission.GetuiService.com.aiyu.kaipanla
android.permission.WRITE_SETTINGS
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
com.aiyu.kaipanla.permission.MIPUSH_RECEIVE
android.hardware.camera
android.permission.CALL_PHONE
android.permission.REQUEST_INSTALL_PACKAGES
android.hardware.camera.autofocus
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_LOGS

Receivers

com.aiyu.kaipanla.push.reciver.PushReciver

com.aiyu.kaipanla.push.PushReciver

com.aiyu.kaipanla.push.reciver.PushProcssReciver

com.aiyu.kaipanla.push.PushProcssReciver

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.aiyu.kaipanla.push.xiaomi.XiaoMiReciver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

Services

com.aiyu.kaipanla.often.CoreService

com.aiyu.kaipanla.splash.initdata
com.aiyu.kaipanla.splash.init.nouser.date
com.aiyu.kaipanla.get.user.browse.count

com.aiyu.kaipanla.push.KPLPushService

com.aiyu.kaipanla.push.service

com.aiyu.kaipanla.report.ReportService

com.aiyu.kaipanla.report.ReportService

com.igexin.sdk.PushService

com.igexin.sdk.action.service.message

com.taobao.sophix.aidl.DownloadService

com.taobao.hotfix.action

Android Permissions

0da2d05585b03e075b0079a8f6b8cdae_JaffaCakes118

Permissions

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.DISABLE_KEYGUARD

android.permission.REORDER_TASKS

android.permission.VIBRATE

android.permission.USE_CREDENTIALS

android.permission.FOREGROUND_SERVICE

MediaStore.Images.Media.INTERNAL_CONTENT_URI

MediaStore.Images.Media.EXTERNAL_CONTENT_URI

android.permission.RECORD_AUDIO

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_CONTACTS

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.CHANGE_WIFI_STATE

android.permission.WAKE_LOCK

getui.permission.GetuiService.com.aiyu.kaipanla

android.permission.WRITE_SETTINGS

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

com.aiyu.kaipanla.permission.MIPUSH_RECEIVE

android.hardware.camera

android.permission.CALL_PHONE

android.permission.REQUEST_INSTALL_PACKAGES

android.hardware.camera.autofocus

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_LOGS

Sharing

General

Malware Config

Signatures

Files

com.aiyu.kaipanla

com.aiyu.kaipanla.splash.SplashActivity

Activities

com.aiyu.kaipanla.splash.SplashActivity

com.aiyu.kaipanla.wxapi.WXEntryActivity

com.tencent.tauth.AuthActivity

com.aiyu.kaipanla.newindex.ui.web.ArticleActivity

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.share.WbShareToStoryActivity

com.cairh.app.sjkh.SchemeActivity

Permissions

Receivers

com.aiyu.kaipanla.push.reciver.PushReciver

com.aiyu.kaipanla.push.reciver.PushProcssReciver

com.igexin.sdk.PushReceiver

com.igexin.download.DownloadReceiver

com.aiyu.kaipanla.push.xiaomi.XiaoMiReciver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

Services

com.aiyu.kaipanla.often.CoreService

com.aiyu.kaipanla.push.KPLPushService

com.aiyu.kaipanla.report.ReportService

com.igexin.sdk.PushService

com.taobao.sophix.aidl.DownloadService

Android Permissions

0da2d05585b03e075b0079a8f6b8cdae_JaffaCakes118