397643a0d927a04a74dc7b04a90a1a79_JaffaCakes118

General

Target

397643a0d927a04a74dc7b04a90a1a79_JaffaCakes118
Size

31.9MB
MD5

397643a0d927a04a74dc7b04a90a1a79
SHA1

c2b317d0225c90f57c907208477eecb694632e9f
SHA256

225664621168a1513ec1b87d5893fd1450c2d6c63e96e9ef1aa4d3964a490803
SHA512

fc4f41127704419b27a9fa7678b6f545ad6fbe6af2f0995dc5f174252408e06c104feb5f07b621704eb1d7cf5f7ca87a496916ef852c7d4f49ca23b5b560e755
SSDEEP

786432:u7iTRs4KtNgCAfv9kPJW6oKhA1/7f9Jg3hNK9jWS7sNPI:0iTRPKtNglurha/71JgRNcjWSQy

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

397643a0d927a04a74dc7b04a90a1a79_JaffaCakes118
.apk android arch:arm

it.rortos.extremelandingspro

com.unity3d.player.UnityPlayerActivity

Activities

com.unity3d.player.UnityPlayerActivity

android.intent.action.MAIN

com.unity.purchasing.googleplay.VRPurchaseActivity

com.google.vr.vrcore.ACTION_NONE

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
com.google.android.gms.permission.ACTIVITY_RECOGNITION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_EXTERNAL_STORAGE
com.android.vending.BILLING
android.permission.WAKE_LOCK
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.c2dm.permission.RECEIVE
android.permission.VIBRATE
android.permission.RECEIVE_BOOT_COMPLETED
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
it.rortos.extremelandingspro.permission.C2D_MESSAGE
com.android.vending.CHECK_LICENSE
android.permission.ACCESS_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW

Receivers

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.vungle.warren.NetworkProviderReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.fyber.fairbid.mediation.handler.LTVProviderReceiver

com.gameofwhales.action.Response

com.fyber.inneractive.sdk.mraid.IAMraidKit

com.fyber.inneractive.sdk.intent.action.REGISTER_KIT

com.fyber.inneractive.sdk.nativead.IANativeKit

com.fyber.inneractive.sdk.intent.action.REGISTER_KIT

com.fyber.inneractive.sdk.video.IAVideoKit

com.fyber.inneractive.sdk.intent.action.REGISTER_KIT

com.onesignal.BootUpReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

com.onesignal.UpgradeReceiver

android.intent.action.MY_PACKAGE_REPLACED

com.onesignal.GcmBroadcastReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Android Permissions

397643a0d927a04a74dc7b04a90a1a79_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

com.google.android.gms.permission.ACTIVITY_RECOGNITION

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_EXTERNAL_STORAGE

com.android.vending.BILLING

android.permission.WAKE_LOCK

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.c2dm.permission.RECEIVE

android.permission.VIBRATE

android.permission.RECEIVE_BOOT_COMPLETED

com.sec.android.provider.badge.permission.READ

com.sec.android.provider.badge.permission.WRITE

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.UPDATE_SHORTCUT

com.sonyericsson.home.permission.BROADCAST_BADGE

com.sonymobile.home.permission.PROVIDER_INSERT_BADGE

com.anddoes.launcher.permission.UPDATE_COUNT

com.majeur.launcher.permission.UPDATE_BADGE

com.huawei.android.launcher.permission.CHANGE_BADGE

com.huawei.android.launcher.permission.READ_SETTINGS

com.huawei.android.launcher.permission.WRITE_SETTINGS

android.permission.READ_APP_BADGE

com.oppo.launcher.permission.READ_SETTINGS

com.oppo.launcher.permission.WRITE_SETTINGS

me.everything.badger.permission.BADGE_COUNT_READ

me.everything.badger.permission.BADGE_COUNT_WRITE

it.rortos.extremelandingspro.permission.C2D_MESSAGE

com.android.vending.CHECK_LICENSE

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

Sharing

General

Malware Config

Signatures

Files

it.rortos.extremelandingspro

com.unity3d.player.UnityPlayerActivity

Activities

com.unity3d.player.UnityPlayerActivity

com.unity.purchasing.googleplay.VRPurchaseActivity

Permissions

Receivers

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.vungle.warren.NetworkProviderReceiver

com.fyber.fairbid.mediation.handler.LTVProviderReceiver

com.fyber.inneractive.sdk.mraid.IAMraidKit

com.fyber.inneractive.sdk.nativead.IANativeKit

com.fyber.inneractive.sdk.video.IAVideoKit

com.onesignal.BootUpReceiver

com.onesignal.UpgradeReceiver

com.onesignal.GcmBroadcastReceiver

Services

com.google.firebase.messaging.FirebaseMessagingService

Android Permissions

397643a0d927a04a74dc7b04a90a1a79_JaffaCakes118