12242af3f523006dac8af5cc5de60ade_JaffaCakes118

General

Target

12242af3f523006dac8af5cc5de60ade_JaffaCakes118
Size

7.1MB
MD5

12242af3f523006dac8af5cc5de60ade
SHA1

430766335ba72f60eecb90109478b068de9d2f9f
SHA256

c458b290f61c9b078b9fac17c9717297d89a602b6944464c684045f5522bd77f
SHA512

9cb834eb66536fa04422cab42bb92600728878ec71c99f215fe59f5a496eb768d8ea4efebfb649f74629f3f0811471c4d5816e17ecce4bc757595edbd858b5a2
SSDEEP

196608:dTUJG/fzZKBAGFyAEfByYoJf+koB5VGoraYUK388n1U66f7vBDj4:N/fzmrBxYIfKBe3YUZ2D

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

12242af3f523006dac8af5cc5de60ade_JaffaCakes118
.apk android arch:arm arch:x86

com.appfactory.universaltools

com.appfactory.universaltools.ui.activity.MainActivity

Activities

com.appfactory.universaltools.ui.activity.MainActivity

android.intent.action.MAIN

Permissions

android.permission.READ_LOGS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.ACCESS_NETWORK_STATE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.CAMERA
android.permission.CLEAR_APP_CACHE
android.permission.GET_PACKAGE_SIZE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.FLASHLIGHT
android.permission.RECORD_AUDIO
android.permission.WAKE_LOCK
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE

Receivers

com.appfactory.universaltools.receiver.AppReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED

com.appfactory.universaltools.screenshot.ScreenShotService$ScreenReceiver

android.intent.action.SCREEN_OFF
android.intent.action.SCREEN_ON

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.appfactory.universaltools.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

Services

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action

Android Permissions

12242af3f523006dac8af5cc5de60ade_JaffaCakes118

Permissions

android.permission.READ_LOGS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.ACCESS_NETWORK_STATE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.CAMERA

android.permission.CLEAR_APP_CACHE

android.permission.GET_PACKAGE_SIZE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.FLASHLIGHT

android.permission.RECORD_AUDIO

android.permission.WAKE_LOCK

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

Sharing

General

Malware Config

Signatures

Files

com.appfactory.universaltools

com.appfactory.universaltools.ui.activity.MainActivity

Activities

com.appfactory.universaltools.ui.activity.MainActivity

Permissions

Receivers

com.appfactory.universaltools.receiver.AppReceiver

com.appfactory.universaltools.screenshot.ScreenShotService$ScreenReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

Services

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

12242af3f523006dac8af5cc5de60ade_JaffaCakes118