31d204f580e01f8439cf87e815f6d143_JaffaCakes118

General

Target

31d204f580e01f8439cf87e815f6d143_JaffaCakes118
Size

30.8MB
MD5

31d204f580e01f8439cf87e815f6d143
SHA1

a59921eb65bef582c9e420be59fbd88cd11858bf
SHA256

d2830c8e0c3f2896cdd4e685256883ea95077ca3cb7a54e942622b8a714fa6f5
SHA512

7863a3152a0b92f60ab2063250bc66491ce07260c24935903b58d8383fbc16168a32cb0999e566b5ba6fe124236ced46bf80d48a7ef3cd6abc3560c11834b514
SSDEEP

786432:sIThbMVx+FRLUU7ZiaJ0LrW4YlxXlzmyQcIYrTPZCEytL:LbQ+FR4U7om0LrWVvN3Sx

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

31d204f580e01f8439cf87e815f6d143_JaffaCakes118
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

main.opalyer

main.opalyer.SplashActivity

Activities

main.opalyer.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

main.opalyer.qqapi.QQPayCallBackActivity

android.intent.action.VIEW

com.mob.tools.MobUIShell

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

cn.sharesdk.tencent.qq.ReceiveActivity

android.intent.action.VIEW

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

com.alipay.sdk.app.AlipayResultActivity

android.intent.action.VIEW

cn.sharesdk.tencent.qq.ReceiveActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.BROADCAST_STICKY
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.GET_ACCOUNTS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WAKE_LOCK
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.RESTART_PACKAGES
android.permission.CAMERA
android.permission.REQUEST_INSTALL_PACKAGES
main.opalyer.permission.MIPUSH_RECEIVE
com.meizu.c2dm.permission.RECEIVE
main.opalyer.permission.C2D_MESSAGE
main.opalyer.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_NETWORK_STATE
android.permission.BLUETOOTH

Receivers

main.opalyer.Root.Notification.NotificationBroadcastReceiver

notification_cancelled

com.tendcloud.appcpa.ReferralReceiver

com.android.vending.INSTALL_REFERRER

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

main.opalyer.push.jpush.OrgJpushReceiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.CONNECTION

main.opalyer.push.jpush.MyJPushMessageReceiver

cn.jpush.android.intent.RECEIVE_MESSAGE

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

cn.jpush.android.service.PluginXiaomiPlatformsReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.huawei.hms.support.api.push.PushEventReceiver

com.huawei.intent.action.PUSH

cn.jpush.android.service.PluginHuaweiPlatformsReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

cn.jpush.android.service.PluginMeizuPlatformsReceiver

com.meizu.flyme.push.intent.MESSAGE
com.meizu.flyme.push.intent.REGISTER.FEEDBACK
com.meizu.flyme.push.intent.UNREGISTER.FEEDBACK
com.meizu.c2dm.intent.REGISTRATION
com.meizu.c2dm.intent.RECEIVE

main.opalyer.localnotify.localtimer.OgAlarmReceiver

main.opalyer.business.localtimer.TIMER_ACTION_REPEATING

com.meizu.cloud.pushsdk.SystemReceiver

com.meizu.cloud.pushservice.action.PUSH_SERVICE_START

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

cn.jpush.android.service.DaemonService

cn.jpush.android.intent.DaemonService

Android Permissions

31d204f580e01f8439cf87e815f6d143_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.BROADCAST_STICKY

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.GET_ACCOUNTS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WAKE_LOCK

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.RESTART_PACKAGES

android.permission.CAMERA

android.permission.REQUEST_INSTALL_PACKAGES

main.opalyer.permission.MIPUSH_RECEIVE

com.meizu.c2dm.permission.RECEIVE

main.opalyer.permission.C2D_MESSAGE

main.opalyer.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.BLUETOOTH

Sharing

General

Malware Config

Signatures

Files

main.opalyer

main.opalyer.SplashActivity

Activities

main.opalyer.SplashActivity

main.opalyer.qqapi.QQPayCallBackActivity

com.mob.tools.MobUIShell

cn.sharesdk.tencent.qq.ReceiveActivity

cn.jpush.android.ui.PushActivity

com.alipay.sdk.app.AlipayResultActivity

cn.sharesdk.tencent.qq.ReceiveActivity

Permissions

Receivers

main.opalyer.Root.Notification.NotificationBroadcastReceiver

com.tendcloud.appcpa.ReferralReceiver

cn.jpush.android.service.PushReceiver

main.opalyer.push.jpush.OrgJpushReceiver

main.opalyer.push.jpush.MyJPushMessageReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

cn.jpush.android.service.PluginXiaomiPlatformsReceiver

com.huawei.hms.support.api.push.PushEventReceiver

cn.jpush.android.service.PluginHuaweiPlatformsReceiver

cn.jpush.android.service.PluginMeizuPlatformsReceiver

main.opalyer.localnotify.localtimer.OgAlarmReceiver

com.meizu.cloud.pushsdk.SystemReceiver

Services

cn.jpush.android.service.PushService

cn.jpush.android.service.DaemonService

Android Permissions

31d204f580e01f8439cf87e815f6d143_JaffaCakes118