2ff4be5b7568610b2a0776600f31abdc_JaffaCakes118

General

Target

2ff4be5b7568610b2a0776600f31abdc_JaffaCakes118
Size

7.4MB
MD5

2ff4be5b7568610b2a0776600f31abdc
SHA1

a129c140446021494a1721074d66c780f3f87f66
SHA256

ec4fe63e685844df33cd222391828b6217c785fe7648df1fe0e4703a54c72871
SHA512

2ef69e239366bb3fc36d86bd9d5bfe028d59e646d728e6fdac18131e1034b528b728bfeda403557b68d4ffdc6787fa799b0c74f35bad56f24fde0f936c232684
SSDEEP

196608:yJr5wlBslJZoV04Oiqroc98Rd76WmWUDb8:yJr1hfKABM7zU8

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

2ff4be5b7568610b2a0776600f31abdc_JaffaCakes118
.apk android arch:arm

com.skype.raider

.ui.SplashScreenActivity

Activities

.ui.SplashScreenActivity

android.intent.action.MAIN

.ui.startup.TermsAndConditions

com.skype.raider.ui.startup.TERMS_AND_CONDITIONS

.ui.startup.SyncSettingsActivity

com.skype.raider.ui.startup.SYNC_SETTINGS

.ui.startup.FeatureTourActivity

com.skype.raider.ui.startup.FEATURETOUR

.ui.NavigationBarActivity

com.skype.raider.ui.NAVIGATIONBAR

.ui.startup.SignInActivity

com.skype.raider.ui.startup.SIGN_IN

.ui.contacts.SearchActivity

android.intent.action.SEARCH

.ui.call.IncomingCallActivity

com.skype.raider.ui.call.INCOMINGCALLACTIVITY

.ui.contacts.ContactProfileActivity

com.skype.raider.ui.contacts.CONTACTPROFILEACTIVITY

.ui.call.CallActivity

com.skype.raider.ui.call.CALLACTIVITY

.ui.call.SkypeOutCallActivity

com.skype.raider.ui.call.SKYPEOUTCALLACTIVITY

.ui.call.ConferenceCallActivity

com.skype.raider.ui.call.CONFERENCECALLACTIVITY

.ui.chat.ChatActivity

com.skype.raider.ui.chat.CHATACTIVITY

.contactsync.ContactCallStartActivity

android.intent.action.VIEW

.contactsync.ContactChatStartActivity

android.intent.action.VIEW

.contactsync.ContactSkypeOutCallStartActivity

android.intent.action.CALL_PRIVILEGED

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.DISABLE_KEYGUARD
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.GET_ACCOUNTS
android.permission.READ_CONTACTS
android.permission.ACCESS_NETWORK_STATE
android.permission.VIBRATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECORD_AUDIO
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.GET_TASKS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.READ_SYNC_SETTINGS
android.permission.WRITE_SYNC_SETTINGS
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.WRITE_SETTINGS
android.permission.WRITE_SECURE_SETTINGS
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_SYNC_STATS
android.permission.WRITE_EXTERNAL_STORAGE

Receivers

.receiver.StartupManager

android.intent.action.BOOT_COMPLETED

.ui.update.UpdateReceiver

com.skype.raider.MANDATORY_UPDATE
com.skype.raider.OPTIONAL_UPDATE

.contactsync.SyncAlarmReceiver

com.skype.raider.intent.action.request_sync

.receiver.SkypeCallStateReceiver

com.skype.raider.INCOMING_GSM_CALL
com.skype.raider.ON_GSM_CALL

Services

.service.SkypeServiceController

com.skype.raider.service.ISkypeService

.service.SyncAuthenticatorService

android.accounts.AccountAuthenticator

.service.SyncProviderService

android.content.SyncAdapter

Android Permissions

2ff4be5b7568610b2a0776600f31abdc_JaffaCakes118

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.DISABLE_KEYGUARD

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.GET_ACCOUNTS

android.permission.READ_CONTACTS

android.permission.ACCESS_NETWORK_STATE

android.permission.VIBRATE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RECORD_AUDIO

android.permission.READ_PHONE_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.GET_TASKS

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.MANAGE_ACCOUNTS

android.permission.READ_SYNC_SETTINGS

android.permission.WRITE_SYNC_SETTINGS

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.WRITE_SETTINGS

android.permission.WRITE_SECURE_SETTINGS

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.READ_SYNC_STATS

android.permission.WRITE_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.skype.raider

.ui.SplashScreenActivity

Activities

.ui.SplashScreenActivity

.ui.startup.TermsAndConditions

.ui.startup.SyncSettingsActivity

.ui.startup.FeatureTourActivity

.ui.NavigationBarActivity

.ui.startup.SignInActivity

.ui.contacts.SearchActivity

.ui.call.IncomingCallActivity

.ui.contacts.ContactProfileActivity

.ui.call.CallActivity

.ui.call.SkypeOutCallActivity

.ui.call.ConferenceCallActivity

.ui.chat.ChatActivity

.contactsync.ContactCallStartActivity

.contactsync.ContactChatStartActivity

.contactsync.ContactSkypeOutCallStartActivity

Permissions

Receivers

.receiver.StartupManager

.ui.update.UpdateReceiver

.contactsync.SyncAlarmReceiver

.receiver.SkypeCallStateReceiver

Services

.service.SkypeServiceController

.service.SyncAuthenticatorService

.service.SyncProviderService

Android Permissions

2ff4be5b7568610b2a0776600f31abdc_JaffaCakes118