1307fa5324354e46e58877784b76c3a9_JaffaCakes118

General

Target

1307fa5324354e46e58877784b76c3a9_JaffaCakes118
Size

6.5MB
MD5

1307fa5324354e46e58877784b76c3a9
SHA1

be34bd209e30c9909f7759342ff0cfb0deb23de2
SHA256

bfdf60c91ced2c5b7b8cd68a44bc894ee4fd871f1004ff2551213669dfb1c709
SHA512

731ad73d66650c92348af3f3cdb26c40feacfecc17051b4566b5c9a9d4e682d8c93cf5d6051e6dfb921ebc3bcadd0985b9c2847c7e41d824e3746acdf92c655a
SSDEEP

98304:P21NfmDF60ZOznBgYU0ig7SlYxomkPrW0LcAFaL8D7Uzrl1gKAhPXIMJ:SfmDY7BKlQSUjALZaLwAzrl1gKYJ

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device.	android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

Requests dangerous framework permissions 5 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

1307fa5324354e46e58877784b76c3a9_JaffaCakes118
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.newageproductions.financialcalculators.free

helper.newageproductions.financialcalculators.ui.activity.SActivity

Activities

helper.newageproductions.financialcalculators.ui.activity.SActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.EXPAND_STATUS_BAR
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_WIFI_STATE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.GET_TASKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.FOREGROUND_SERVICE
android.permission.READ_LOGS
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

helper.newageproductions.financialcalculators.receiver.SystemReceiver

action.flashlight

helper.newageproductions.financialcalculators.receiver.AppReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.net.wifi.WIFI_STATE_CHANGED
android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.STATE_CHANGE

helper.newageproductions.financialcalculators.receiver.InstallReceiver

com.android.vending.INSTALL_REFERRER

Services

helper.newageproductions.financialcalculators.service.FLNotificationListenerService

android.service.notification.NotificationListenerService

com.talkingdata.sdk.TDAntiCheatingService

com.talkingdata.sdk.TDAntiCheatingService

Android Permissions

1307fa5324354e46e58877784b76c3a9_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.EXPAND_STATUS_BAR

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_WIFI_STATE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.GET_TASKS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.FOREGROUND_SERVICE

android.permission.READ_LOGS

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Sharing

General

Malware Config

Signatures

Files

com.newageproductions.financialcalculators.free

helper.newageproductions.financialcalculators.ui.activity.SActivity

Activities

helper.newageproductions.financialcalculators.ui.activity.SActivity

Permissions

Receivers

helper.newageproductions.financialcalculators.receiver.SystemReceiver

helper.newageproductions.financialcalculators.receiver.AppReceiver

helper.newageproductions.financialcalculators.receiver.InstallReceiver

Services

helper.newageproductions.financialcalculators.service.FLNotificationListenerService

com.talkingdata.sdk.TDAntiCheatingService

Android Permissions

1307fa5324354e46e58877784b76c3a9_JaffaCakes118