237671068832200a3523fe7683b9c2a9_JaffaCakes118

General

Target

237671068832200a3523fe7683b9c2a9_JaffaCakes118
Size

16.1MB
MD5

237671068832200a3523fe7683b9c2a9
SHA1

7cf4a45c7ac2b1f3303849ec679e6a11152f2b34
SHA256

ef19d769538911a012991ed96fdd08c6b6effb621c127ebe3a4c4088cedb34a9
SHA512

0069b033e3640d9dcbcc8756b6ec1e0d066968c607ba543a69923d9b4c2eed0b5f0fe085f49a123751891016846681a2e688963fb09e64119841e051f4f35ff0
SSDEEP

393216:4fgFklHfyx05ZIAZm9/AfPCz7H/NPYfMvUTJGKC:4fyklwQZtZW/uqzD/KUvsLC

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

237671068832200a3523fe7683b9c2a9_JaffaCakes118
.apk android arch:arm arch:x86

com.epic.acxx

t.t.f.c.ad.GuideActivity

Activities

t.t.f.c.ad.GuideActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.BROADCAST_STICKY
android.permission.INTERNET
android.permission.REORDER_TASKS
android.permission.READ_PHONE_STATE
android.permission.CAMERA
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.USE_CREDENTIALS
android.permission.WRITE_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
com.android.launcher.permission.READ_SETTINGS
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.BLUETOOTH
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.CHANGE_NETWORK_STATE

Services

cn.woblog.android.downloader.DownloadService

cn.woblog.android.downloader.DOWNLOAD_SERVICE

com.didi.virtualapk.delegate.RemoteService

com.epic.acxx.intent.ACTION_DAEMON_SERVICE

Android Permissions

237671068832200a3523fe7683b9c2a9_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.BROADCAST_STICKY

android.permission.INTERNET

android.permission.REORDER_TASKS

android.permission.READ_PHONE_STATE

android.permission.CAMERA

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.GET_TASKS

android.permission.USE_CREDENTIALS

android.permission.WRITE_SETTINGS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

com.android.launcher.permission.READ_SETTINGS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.BLUETOOTH

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.CHANGE_NETWORK_STATE

Sharing

General

Malware Config

Signatures

Files

com.epic.acxx

t.t.f.c.ad.GuideActivity

Activities

t.t.f.c.ad.GuideActivity

Permissions

Services

cn.woblog.android.downloader.DownloadService

com.didi.virtualapk.delegate.RemoteService

Android Permissions

237671068832200a3523fe7683b9c2a9_JaffaCakes118