17db63b43c15e0cb7e75ed42a743c59e_JaffaCakes118

General

Target

17db63b43c15e0cb7e75ed42a743c59e_JaffaCakes118
Size

28.6MB
MD5

17db63b43c15e0cb7e75ed42a743c59e
SHA1

359a9d5dcd3ec4b40daac3eee09ccc6ec428bb58
SHA256

e85abe8229d013991788e67f041d4c72f5e8796ed72bf9f640e11ccf84e10cb2
SHA512

a52b05d9bc90d393455993508ddae1462ff4e073826635d7ce817d33b32ff0abff8becd2e89102571a7e0310cfbafad95261ac3b5d295f8512adc0b01a37c313
SSDEEP

786432:68xzqHyZSZgqQqNVqRWT57nQaVzuFBkR/sJTA5YmDG:zSZ9xVbT5ULkxDumDG

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

17db63b43c15e0cb7e75ed42a743c59e_JaffaCakes118
.apk android arch:arm

com.coco.entertainment.immortalracer

com.ege.android.AndroidActivity

Activities

com.ege.android.AndroidActivity

android.intent.action.MAIN

com.alipay.android.mini.window.sdk.MiniLaucherActivity

com.alipay.mobilepay.android

com.alipay.android.mini.window.sdk.MiniPayActivity

android.intent.action.MAIN

com.alipay.android.mini.window.sdk.MiniWebActivity

android.intent.action.MAIN

com.shenzhoufu.android.mobilegamerechargemain.MobileGameRechargeMain

com.shenzhoufu.android.mobilegamerechargemain.MobileGameRechargeMain

Permissions

android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_SMS
android.permission.ACCESS_FINE_LOCATION
com.ut.permission.DEVICE_STATE
android.permission.WRITE_SETTINGS
android.permission.READ_SETTINGS
android.permission.INSTALL_PACKAGES
android.permission.READ_CONTACTS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Receivers

com.ut.device.BQueryWhoHasOne

UT.QueryWhoHasOne

com.ut.device.BFoundIt

UT.FoundIT

mm.sms.purchasesdk.sms.SMSReceiver

aspire.iap.SMS_SEND_ACTIOIN
aspire.iap.SMS_DELIVERED_ACTION

Services
GH.data
.apk android

cn.emagsoftware.gamehall

.GameHallShowcase

Activities

.GameHallShowcase

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.GET_TASKS
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CALL_PHONE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.CHANGE_NETWORK_STATE
android.permission.RECORD_AUDIO
android.permission.WRITE_SETTINGS

Receivers

.service.ServiceReceiver

android.intent.action.USER_PRESENT

Services

Android Permissions

17db63b43c15e0cb7e75ed42a743c59e_JaffaCakes118

Permissions

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.SEND_SMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.DISABLE_KEYGUARD

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_SMS

android.permission.ACCESS_FINE_LOCATION

com.ut.permission.DEVICE_STATE

android.permission.WRITE_SETTINGS

android.permission.READ_SETTINGS

android.permission.INSTALL_PACKAGES

android.permission.READ_CONTACTS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Sharing

General

Malware Config

Signatures

Files

com.coco.entertainment.immortalracer

com.ege.android.AndroidActivity

Activities

com.ege.android.AndroidActivity

com.alipay.android.mini.window.sdk.MiniLaucherActivity

com.alipay.android.mini.window.sdk.MiniPayActivity

com.alipay.android.mini.window.sdk.MiniWebActivity

com.shenzhoufu.android.mobilegamerechargemain.MobileGameRechargeMain

Permissions

Receivers

com.ut.device.BQueryWhoHasOne

com.ut.device.BFoundIt

mm.sms.purchasesdk.sms.SMSReceiver

Services

cn.emagsoftware.gamehall

.GameHallShowcase

Activities

.GameHallShowcase

Permissions

Receivers

.service.ServiceReceiver

Services

Android Permissions

17db63b43c15e0cb7e75ed42a743c59e_JaffaCakes118