2d248b745cd929745825ea7cd3f32496_JaffaCakes118

General

Target

2d248b745cd929745825ea7cd3f32496_JaffaCakes118
Size

16.9MB
MD5

2d248b745cd929745825ea7cd3f32496
SHA1

44f5bbb20c8a03c6b464632ff6b701655186e05e
SHA256

2fd8424dcf9854cec3a16d4e599af015b23b49e8cbbc037b731edd60415aa32c
SHA512

c5d45822222cdf968869ece0da0572a7536c6d87e3be5ede1f22b356b1b6793579de52b03812e0a6cec7b1b95a9c0aa7a3452cb70998d47b154ec0435a348ef1
SSDEEP

393216:SbKS5kCz9TJmx3TioMY3N/ZOYJ2VVUBoAjVLtquwEXFWvhrW:Sb/nRdWTiO3NUjPUBfVZ9X+hy

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

2d248b745cd929745825ea7cd3f32496_JaffaCakes118
.apk android arch:arm

me.hypertext.local.jiong2

.MainActivity

Activities

.MainActivity

android.intent.action.MAIN

Permissions

android.permission.VIBRATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.WRITE_SETTINGS
alipay_plugin_20130621msp.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED
com.alipay.android.app.gphone.SHARE

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService

Android Permissions

2d248b745cd929745825ea7cd3f32496_JaffaCakes118

Permissions

android.permission.VIBRATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.GET_TASKS

android.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

me.hypertext.local.jiong2

.MainActivity

Activities

.MainActivity

Permissions

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

.AlixService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

2d248b745cd929745825ea7cd3f32496_JaffaCakes118