3ffb009d59817f163925d636ca518f47_JaffaCakes118

General

Target

3ffb009d59817f163925d636ca518f47_JaffaCakes118
Size

19.4MB
MD5

3ffb009d59817f163925d636ca518f47
SHA1

6831507b0cad26e6a30079dae1f8c2b73a9317b3
SHA256

c3e83e9b6e194e40765300bc2ff3499bbd0ac1e0b50742fdf77a5dd43b4d9fc8
SHA512

0b5dbff8cd3460012066ed205dcc68b999388019848ff2b09a97e33a1643ba9fabfefcb7697267e3de8193f731633d8a96bfd487406bc1a2d6e35a7e5e6f4dfb
SSDEEP

393216:j/LkQzqbN+b96nA+Y97RmQ2zEndYOcMyj4aZfCvxug1mdbQskh3T0FrGcYkyZZff:j/w1A+YlmidclcQIugr5xTEvYTZpf

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 18 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Required to be able to access the camera device.	android.permission.CAMERA
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

3ffb009d59817f163925d636ca518f47_JaffaCakes118
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.dc.bobaoge

com.dc.bbg.activity.ActionActivity

Activities

com.dc.bbg.activity.ActionActivity

android.intent.action.MAIN

com.dc.bbg.fragment.HomePageFragmentActivity

android.intent.action.VIEW

com.mob.tools.MobUIShell

android.intent.action.VIEW
com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

Permissions

android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_LOGS
android.permission.GET_TASKS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.AUTHENTICATE_ACCOUNTS
com.android.launcher.permission.READ_SETTINGS
android.permission.BROADCAST_STICKY
com.dc.bobaoge.permission.JPUSH_MESSAGE
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.CALL_PHONE
android.permission.CAMERA
android.permission.GET_TASKS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.RECORD_AUDIO
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.WAKE_LOCK
android.permission.READ_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_COARSE_LOCATION
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_NETWORK_STATE
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
com.android.launcher.permission.READ_SETTINGS
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.BROADCAST_STICKY
android.permission.WRITE_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.REQUEST_INSTALL_PACKAGES

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.dc.bbg.jpushreceiver.Receiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.CONNECTION

com.dc.bbg.jpushreceiver.MyJPushMessageReceiver

cn.jpush.android.intent.RECEIVE_MESSAGE

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

cn.jpush.android.service.DaemonService

cn.jpush.android.intent.DaemonService

com.dc.bbg.service.ClockService

clock_service_actoin

Android Permissions

3ffb009d59817f163925d636ca518f47_JaffaCakes118

Permissions

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_LOGS

android.permission.GET_TASKS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.AUTHENTICATE_ACCOUNTS

com.android.launcher.permission.READ_SETTINGS

android.permission.BROADCAST_STICKY

com.dc.bobaoge.permission.JPUSH_MESSAGE

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.CALL_PHONE

android.permission.CAMERA

android.permission.GET_TASKS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.RECORD_AUDIO

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.WAKE_LOCK

android.permission.READ_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_COARSE_LOCATION

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

com.android.launcher.permission.READ_SETTINGS

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.dc.bobaoge

com.dc.bbg.activity.ActionActivity

Activities

com.dc.bbg.activity.ActionActivity

com.dc.bbg.fragment.HomePageFragmentActivity

com.mob.tools.MobUIShell

cn.jpush.android.ui.PushActivity

Permissions

Receivers

cn.jpush.android.service.PushReceiver

com.dc.bbg.jpushreceiver.Receiver

com.dc.bbg.jpushreceiver.MyJPushMessageReceiver

Services

cn.jpush.android.service.PushService

cn.jpush.android.service.DaemonService

com.dc.bbg.service.ClockService

Android Permissions

3ffb009d59817f163925d636ca518f47_JaffaCakes118