203856a5dc301dc52a0e5eabeac9f4c3_JaffaCakes118

General

Target

203856a5dc301dc52a0e5eabeac9f4c3_JaffaCakes118
Size

11.9MB
MD5

203856a5dc301dc52a0e5eabeac9f4c3
SHA1

f5295b9b22ef6b338e966185aebf757c6f9476cd
SHA256

d6e4be800f6375ece5e3b2e92528212c616b35c8bf15506fdb228fb005f3a4b9
SHA512

61d2cc3594da7e7e27f8ea587ce1bf630e1bbaa40add9e48167768b116c0e53bd20fa76cea4364e7e9b36b271202534174140900ef0efd97724917fc00e030ff
SSDEEP

196608:ShyzOAUTzVfGn7oGN2CyZIwhPNzLbohK5CrJ+2bK01mX1YJmhadVrdl2bibYBjFC:ShyzOAB7oW25NhPluK09+dP1cmE9dl2w

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

203856a5dc301dc52a0e5eabeac9f4c3_JaffaCakes118
.apk android arch:arm arch:x86

cn.silence795.meitian

cn.silence795.meitian.activity.SplashActivity

Activities

cn.silence795.meitian.activity.SplashActivity

android.intent.action.MAIN

com.tencent.smtt.sdk.VideoActivity

com.tencent.smtt.tbs.video.PLAY

cn.sharesdk.tencent.qq.ReceiveActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.BLUETOOTH
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.INSTALL_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.BATTERY_STATS
android.permission.WAKE_LOCK
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.VIBRATE
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.FOREGROUND_SERVICE

Receivers

Services

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote
gdtadv2.jar
.apk android arch:arm arch:arm64

Android Permissions

203856a5dc301dc52a0e5eabeac9f4c3_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.GET_TASKS

android.permission.BLUETOOTH

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.INSTALL_PACKAGES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.BATTERY_STATS

android.permission.WAKE_LOCK

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.VIBRATE

android.permission.CHANGE_WIFI_MULTICAST_STATE

android.permission.FOREGROUND_SERVICE

Sharing

General

Malware Config

Signatures

Files

cn.silence795.meitian

cn.silence795.meitian.activity.SplashActivity

Activities

cn.silence795.meitian.activity.SplashActivity

com.tencent.smtt.sdk.VideoActivity

cn.sharesdk.tencent.qq.ReceiveActivity

Permissions

Receivers

Services

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

Android Permissions

203856a5dc301dc52a0e5eabeac9f4c3_JaffaCakes118