243b7099a52c48c730c5f8673dc11bc7_JaffaCakes118

General

Target

243b7099a52c48c730c5f8673dc11bc7_JaffaCakes118
Size

4.7MB
MD5

243b7099a52c48c730c5f8673dc11bc7
SHA1

bae66804729268b21071386693dd545db3ddabcc
SHA256

0c65ffc15af6c7c8f98c7d35d34acf4c405a07ba49e46584de93f963d034cf1d
SHA512

4f770c4fbb2fd4eacd249ed86d5a2df983bd8e02aac28a476ddfdd578f5828d2d918328fa83192615e84b0219f7584c76299692cb5a15c0821e4dcea5dbcc0ff
SSDEEP

98304:Md7RKReXssAFjRCr9y2murgTgyaiCwUI8hCVK7RccMdrEXbu8:Hu+RYvzT5hQVK7RccY4LH

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

243b7099a52c48c730c5f8673dc11bc7_JaffaCakes118
.apk android arch:arm

cn.betatown.mobile.mplaza

.activity.splash.SplashActivity

Activities

.activity.splash.SplashActivity

android.intent.action.MAIN

.activity.home.HomeTabActivity

cn.betatown.product.mobile.activity.home.HomeTabActivity

Permissions

android.permission.INTERNET
android.permission.CAMERA
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.CALL_PHONE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.BAIDU_LOCATION_SERVICE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCES_MOCK_LOCATION
android.permission.ACCESS_FINE_LOCATION
com.android.launcher.permission.READ_SETTINGS
android.permission.WAKE_LOCK
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_GPS
android.permission.GET_TASKS
android.permission.BROADCAST_STICKY
android.permission.PROCESS_OUTGOING_CALLS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECORD_AUDIO

Services
alipay_msp.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED
com.alipay.android.app.gphone.SHARE

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService
plugin-deploy.jar
.apk android

Android Permissions

243b7099a52c48c730c5f8673dc11bc7_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.CAMERA

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.CALL_PHONE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.BAIDU_LOCATION_SERVICE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCES_MOCK_LOCATION

android.permission.ACCESS_FINE_LOCATION

com.android.launcher.permission.READ_SETTINGS

android.permission.WAKE_LOCK

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_GPS

android.permission.GET_TASKS

android.permission.BROADCAST_STICKY

android.permission.PROCESS_OUTGOING_CALLS

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RECORD_AUDIO

Sharing

General

Malware Config

Signatures

Files

cn.betatown.mobile.mplaza

.activity.splash.SplashActivity

Activities

.activity.splash.SplashActivity

.activity.home.HomeTabActivity

Permissions

Services

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

.AlixService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

243b7099a52c48c730c5f8673dc11bc7_JaffaCakes118