230d22f02001bc3eb9b493e5bd3b5eab_JaffaCakes118

General

Target

230d22f02001bc3eb9b493e5bd3b5eab_JaffaCakes118
Size

18.8MB
MD5

230d22f02001bc3eb9b493e5bd3b5eab
SHA1

ea281ff9758548ed7383f58fb5d48ca7754afb00
SHA256

4bf27812a1b1073271c1369c7e8878377d26594b7fd46657ddee77ccb73f30e2
SHA512

dc8f0a6ef0744635b8707322f27b99f22ee69c11cb57dc8da21fd4ccd750df400368a6ea84a83c96e709359c8c181c8b25173c868cce0f19ea5ad6e884dfe0be
SSDEEP

393216:u91sLh2Il9VwOBsD4TufGqBOIzBT+FEOVkKAWdd8Am+CnMgYVjkkorZ7BslX:u91sLh2IjV16D5OqdzBTEPkKtd9c8jb9

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by remote views services to bind with the system. Allows apps to share and display views across different processes.	android.permission.BIND_REMOTEVIEWS

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

230d22f02001bc3eb9b493e5bd3b5eab_JaffaCakes118
.apk android arch:arm64 arch:arm arch:x86

ru.ntv.client

ru.ntv.client.ui.activities.ActivitySplash

Activities

ru.ntv.client.ui.activities.ActivitySplash

android.intent.action.MAIN
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.VIBRATE
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
ru.ntv.client.permission.C2D_MESSAGE

Receivers

ru.ntv.client.ui.widget.WidgetMain

android.appwidget.action.APPWIDGET_UPDATE
android.net.conn.CONNECTIVITY_CHANGE

com.my.tracker.campaign.CampaignReceiver

com.android.vending.INSTALL_REFERRER

com.yandex.metrica.MetricaEventHandler

com.android.vending.INSTALL_REFERRER

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

ru.ntv.client.model.push.GcmService

com.google.firebase.MESSAGING_EVENT

ru.ntv.client.model.push.IDListenerService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.yandex.metrica.MetricaService

com.yandex.metrica.IMetricaService

com.yandex.metrica.ConfigurationService

com.yandex.metrica.configuration.ACTION_START

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

230d22f02001bc3eb9b493e5bd3b5eab_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.VIBRATE

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

ru.ntv.client.permission.C2D_MESSAGE

Sharing

General

Malware Config

Signatures

Files

ru.ntv.client

ru.ntv.client.ui.activities.ActivitySplash

Activities

ru.ntv.client.ui.activities.ActivitySplash

Permissions

Receivers

ru.ntv.client.ui.widget.WidgetMain

com.my.tracker.campaign.CampaignReceiver

com.yandex.metrica.MetricaEventHandler

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

ru.ntv.client.model.push.GcmService

ru.ntv.client.model.push.IDListenerService

com.google.firebase.messaging.FirebaseMessagingService

com.yandex.metrica.MetricaService

com.yandex.metrica.ConfigurationService

com.google.firebase.iid.FirebaseInstanceIdService

Android Permissions

230d22f02001bc3eb9b493e5bd3b5eab_JaffaCakes118