3eb835f5472a3c144c8386b67f525725_JaffaCakes118

General

Target

3eb835f5472a3c144c8386b67f525725_JaffaCakes118
Size

32.0MB
MD5

3eb835f5472a3c144c8386b67f525725
SHA1

6c5ed1f199515b24b847433a117038dd4696e28d
SHA256

25174c818d6719cfaf66a81ed0f63de024e4409a08985be34049b3effea87739
SHA512

98d37ed20472b724b06ed5a4bdef5c5cfdc4dd327424c17bdfdaffee126ec9a4a231a7030891528d6aee56af451be056b70487cdc8b2a6a52e44f6d56e5e9cda
SSDEEP

786432:VkJdHtE52oVidNrWknUb2T5hx1A2Tsg/207g:SnL46N5xT9TfeN

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

3eb835f5472a3c144c8386b67f525725_JaffaCakes118
.apk android arch:arm64 arch:arm

com.lao1818

com.lao1818.common.other.SplashActivity

Activities

com.lao1818.common.other.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.CAMERA
android.permission.VIBRATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CHANGE_CONFIGURATION
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
org.simalliance.openmobileapi.SMARTCARD
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.CHANGE_NETWORK_STATE
android.permission.NFC
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.READ_LOGS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.WAKE_LOCK
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED

Receivers

com.tencent.qalsdk.QALBroadcastReceiver

com.tencent.qalsdk.broadcast.qal

com.tencent.qalsdk.core.NetConnInfoCenter

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED
com.tencent.qalsdk.service.TASK_REMOVED

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.lao1818.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

Services

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action

Android Permissions

3eb835f5472a3c144c8386b67f525725_JaffaCakes118

Permissions

android.permission.CAMERA

android.permission.VIBRATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CHANGE_CONFIGURATION

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

org.simalliance.openmobileapi.SMARTCARD

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.CHANGE_NETWORK_STATE

android.permission.NFC

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.READ_LOGS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.WAKE_LOCK

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

Sharing

General

Malware Config

Signatures

Files

com.lao1818

com.lao1818.common.other.SplashActivity

Activities

com.lao1818.common.other.SplashActivity

com.sina.weibo.sdk.share.WbShareTransActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.tencent.qalsdk.QALBroadcastReceiver

com.tencent.qalsdk.core.NetConnInfoCenter

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

Services

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

3eb835f5472a3c144c8386b67f525725_JaffaCakes118