3bf70fc43434cd08ef2b51c10abba213_JaffaCakes118

General

Target

3bf70fc43434cd08ef2b51c10abba213_JaffaCakes118
Size

4.6MB
MD5

3bf70fc43434cd08ef2b51c10abba213
SHA1

ff4277bd0e9f69e59ab69ac4394b18fe7df37f3b
SHA256

04160e57cfa09c2b38d6e94f56b33091d23a5d0afddea44274f7f1157d2ee83f
SHA512

37e5bbc25a5c9e7680fff73f164100fd2d035b783489a2a596e371f4943891b65b1594ec0630280172d23a3aea737cf8c6451257451c5c2bce06d2de95c90d45
SSDEEP

98304:vO4+noN8g2ds5Dizf2UDzOg/euVENYUX15w4oAdIESSDq2gsn5EEXPT6BPfGl:LnRYgA2Jg/eVtLlIEr55EE/TV

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

3bf70fc43434cd08ef2b51c10abba213_JaffaCakes118
.apk android arch:arm arch:x86

com.tongbanjie.android

.TBJWelcomeActivity

Activities

.TBJWelcomeActivity

android.intent.action.MAIN
android.intent.action.VIEW

cn.sharesdk.framework.ShareSDKUIShell

android.intent.action.VIEW

Permissions

android.permission.WRITE_SECURE_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.RECORD_AUDIO
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.INTERNET
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.VIBRATE
android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.RECEIVE_SMS
android.permission.BATTERY_STATS
android.permission.BLUETOOTH
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_UPDATES
getui.permission.GetuiService.com.tongbanjie.android
com.tongbanjie.android.permission.MIPUSH_RECEIVE

Receivers

com.tongbanjie.android.receiver.TBJNetWorkChangeBroadcastReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.tongbanjie.android.receiver.IGeTuiMsgReceiver

com.igexin.sdk.action.qv7WZtHCpCACHHpUoAYIiA

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls

com.igexin.sdk.PushManagerReceiver

com.igexin.sdk.action.pushmanager

com.igexin.getuiext.service.PayloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.qv7WZtHCpCACHHpUoAYIiA

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.tongbanjie.android.receiver.MiTuiMsgReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

Services

com.tongbanjie.android.business.MessageService

com.tongbanjie.android.getMsg
com.tongbanjie.android.getActivityMsg

Android Permissions

3bf70fc43434cd08ef2b51c10abba213_JaffaCakes118

Permissions

android.permission.WRITE_SECURE_SETTINGS

android.permission.WRITE_SETTINGS

android.permission.RECORD_AUDIO

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.INTERNET

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.VIBRATE

android.permission.READ_LOGS

android.permission.CALL_PHONE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECEIVE_USER_PRESENT

android.permission.RECEIVE_SMS

android.permission.BATTERY_STATS

android.permission.BLUETOOTH

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_UPDATES

getui.permission.GetuiService.com.tongbanjie.android

com.tongbanjie.android.permission.MIPUSH_RECEIVE

Sharing

General

Malware Config

Signatures

Files

com.tongbanjie.android

.TBJWelcomeActivity

Activities

.TBJWelcomeActivity

cn.sharesdk.framework.ShareSDKUIShell

Permissions

Receivers

com.tongbanjie.android.receiver.TBJNetWorkChangeBroadcastReceiver

com.tongbanjie.android.receiver.IGeTuiMsgReceiver

com.igexin.sdk.PushReceiver

com.igexin.sdk.PushManagerReceiver

com.igexin.getuiext.service.PayloadReceiver

com.igexin.download.DownloadReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.tongbanjie.android.receiver.MiTuiMsgReceiver

Services

com.tongbanjie.android.business.MessageService

Android Permissions

3bf70fc43434cd08ef2b51c10abba213_JaffaCakes118