160e9b5dc7b13af4b9b9af0a1c0f0eed_JaffaCakes118

General

Target

160e9b5dc7b13af4b9b9af0a1c0f0eed_JaffaCakes118
Size

22.6MB
MD5

160e9b5dc7b13af4b9b9af0a1c0f0eed
SHA1

883a25cd4cf7a6665a49e6ff56405ab6525b28cc
SHA256

6d71b9d66ee58466a35217c05ee293ab1ccd29dc58b8e4360b208aaaf54c1f68
SHA512

a807e0f202380e6f4ad6c14e20e14e4eedf2cf14de22521a13dd51f1bc4611e33fcda7d084cb07a8c2a1377f4e901fd72c1925d11e9510c6766529aa313beba1
SSDEEP

393216:HrJJXP6QRPlZUusLzfNTOglrJIQBGXxHZNWL6jaU17X5ZNWL6jaU1D9lAOeGzy:HrrCClyusNTOg/FGVn4S7pn4SD9Bvy

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

160e9b5dc7b13af4b9b9af0a1c0f0eed_JaffaCakes118
.apk android arch:arm

cn.gov.hrss.tj

com.neusoft.tianjin.init.InitialActivity

Activities

com.neusoft.tianjin.init.InitialActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.WRITE_SETTINGS
android.permission.CALL_PHONE
android.permission.CAMERA
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.READ_PHONE_STATE
android.permission.CAMERA
android.permission.READ_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.BLUETOOTH
android.permission.BROADCAST_STICKY
android.hardware.camera.autofocus
android.permission.FLASHLIGHT

Receivers

Services

Android Permissions

160e9b5dc7b13af4b9b9af0a1c0f0eed_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.WRITE_SETTINGS

android.permission.CALL_PHONE

android.permission.CAMERA

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.READ_PHONE_STATE

android.permission.CAMERA

android.permission.READ_SETTINGS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.BLUETOOTH

android.permission.BROADCAST_STICKY

android.hardware.camera.autofocus

android.permission.FLASHLIGHT

Sharing

General

Malware Config

Signatures

Files

cn.gov.hrss.tj

com.neusoft.tianjin.init.InitialActivity

Activities

com.neusoft.tianjin.init.InitialActivity

Permissions

Receivers

Services

Android Permissions

160e9b5dc7b13af4b9b9af0a1c0f0eed_JaffaCakes118