2ac79b96de89426f5b2528ebb6e1a18e_JaffaCakes118

General

Target

2ac79b96de89426f5b2528ebb6e1a18e_JaffaCakes118
Size

1.7MB
MD5

2ac79b96de89426f5b2528ebb6e1a18e
SHA1

4cec7e87428c37cafd3bbd6728937218c3198dde
SHA256

5f524bf9c24afb9571f6b550cb8a88858c0af033df8820befb1bdc4693c3c5f2
SHA512

007c783fa952563336e6d8da1d490024eddc602547a42d54b92a0b8516eafedad3e2c3274e88529b16b80cad5c2db4f16a0f3407b62ce7c5bb946aef3a6b8253
SSDEEP

24576:06djSpMg2oTRGRHHJ0UoSTJhaEX2Wc+SArjzjE9uOxjPmBDO2zRjU7pRL83L7y3K:5JgsRH5baEG7+SArjk9txjN7w3ClkQ+

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

2ac79b96de89426f5b2528ebb6e1a18e_JaffaCakes118
.apk android arch:arm

com.qmtiku.categoryId_69

com.qmtiku.activity.SplashActivity

Activities

com.qmtiku.activity.SplashActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.INTERNET
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.BROADCAST_STICKY
android.permission.WRITE_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.GET_TASKS
android.permission.READ_LOGS
android.permission.VIBRATE
com.qmtiku.categoryId_69.permission.MIPUSH_RECEIVE

Receivers

com.qmtiku.global.QMMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

Services
ps.db
.apk android

com.qmtiku.main

com.qmtiku.LoginActivity

Activities

com.qmtiku.QPayActivity

android.intent.action.VIEW

Android Permissions

2ac79b96de89426f5b2528ebb6e1a18e_JaffaCakes118

Permissions

android.permission.READ_PHONE_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.INTERNET

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.BROADCAST_STICKY

android.permission.WRITE_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.GET_TASKS

android.permission.READ_LOGS

android.permission.VIBRATE

com.qmtiku.categoryId_69.permission.MIPUSH_RECEIVE

Sharing

General

Malware Config

Signatures

Files

com.qmtiku.categoryId_69

com.qmtiku.activity.SplashActivity

Activities

com.qmtiku.activity.SplashActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.qmtiku.global.QMMessageReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

Services

com.qmtiku.main

com.qmtiku.LoginActivity

Activities

com.qmtiku.QPayActivity

Android Permissions

2ac79b96de89426f5b2528ebb6e1a18e_JaffaCakes118