3785ae27238a9077c7ae040d9b3c6f9a_JaffaCakes118

General

Target

3785ae27238a9077c7ae040d9b3c6f9a_JaffaCakes118
Size

31.1MB
MD5

3785ae27238a9077c7ae040d9b3c6f9a
SHA1

42fc60c760991bfbdc1306cfb4e5a0af694d35ab
SHA256

16a1abdf29bbdeccc554ae3b54b916efc728990a54f696c72649419fde763687
SHA512

89a0174523c4b4041e18d22cdc4793ac2854c2266943b99fc22fbb177d7e077952cfb0959d29095416213bbfe04e396a53e0e9f076efa80e81b2a27c3e6c7e0b
SSDEEP

786432:T9sc1EZLZLGZycRqDMiw0wWJo7MZglkkjfxNkV0seJCfOKPM8eV:T9UZLZGZ5qDlwRWJCrjfH1MNPMl

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

3785ae27238a9077c7ae040d9b3c6f9a_JaffaCakes118
.apk android arch:arm64 arch:arm arch:mips arch:x86 arch:x64

com.bipolarsolutions.vasya

com.bipolarsolutions.vasya.activity.SplashActivity

Activities

com.bipolarsolutions.vasya.activity.SplashActivity

android.intent.action.MAIN

Permissions

com.android.vending.BILLING
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECORD_AUDIO
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
com.android.alarm.permission.SET_ALARM
android.permission.RECEIVE_BOOT_COMPLETED
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.bipolarsolutions.vasya.permission.C2D_MESSAGE

Receivers

com.bipolarsolutions.vasya.reminder.RebootReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.MY_PACKAGE_REPLACED

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.yandex.metrica.MetricaEventHandler

com.android.vending.INSTALL_REFERRER

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.bipolarsolutions.vasya.service.VsFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.bipolarsolutions.vasya.service.VsFirebaseInstanceIDService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.yandex.metrica.MetricaService

com.yandex.metrica.IMetricaService

com.yandex.metrica.ConfigurationService

com.yandex.metrica.configuration.ACTION_INIT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

3785ae27238a9077c7ae040d9b3c6f9a_JaffaCakes118

Permissions

com.android.vending.BILLING

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.RECORD_AUDIO

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

com.android.alarm.permission.SET_ALARM

android.permission.RECEIVE_BOOT_COMPLETED

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.bipolarsolutions.vasya.permission.C2D_MESSAGE

Sharing

General

Malware Config

Signatures

Files

com.bipolarsolutions.vasya

com.bipolarsolutions.vasya.activity.SplashActivity

Activities

com.bipolarsolutions.vasya.activity.SplashActivity

Permissions

Receivers

com.bipolarsolutions.vasya.reminder.RebootReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.yandex.metrica.MetricaEventHandler

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.bipolarsolutions.vasya.service.VsFirebaseMessagingService

com.bipolarsolutions.vasya.service.VsFirebaseInstanceIDService

com.google.firebase.messaging.FirebaseMessagingService

com.yandex.metrica.MetricaService

com.yandex.metrica.ConfigurationService

com.google.firebase.iid.FirebaseInstanceIdService

Android Permissions

3785ae27238a9077c7ae040d9b3c6f9a_JaffaCakes118