3e1a3ff6091e8d86b75245a79449e250_JaffaCakes118

General

Target

3e1a3ff6091e8d86b75245a79449e250_JaffaCakes118
Size

13.9MB
MD5

3e1a3ff6091e8d86b75245a79449e250
SHA1

bc523abff353c4a90a14b0369f19285f5aa8e518
SHA256

c4aacc47daa31ab3fc3ddb4535b9897f3994ab9e4377631c5f1582ae85ac61d2
SHA512

d6b4a870d20e613deff654cd8360cc81d4bfe74d385c98f56ce2424b3ceebcd677ae90ead32ddb7f8e8dd0f087ac6e943bbd1688559feb8a5a1db6d27a842eb0
SSDEEP

393216:FTSvzbTG7KpXXpZArPJpOWV1jfI5mHeb/j:IbTG7QXwhsWVFIvL

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

3e1a3ff6091e8d86b75245a79449e250_JaffaCakes118
.apk android arch:arm

laizi.tvddz

.WelcomeActivity

Activities

.WelcomeActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.VIBRATE
android.permission.SEND_SMS
android.permission.WRITE_SMS
android.permission.READ_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
alipay_plugin_20120428msp.apk
.apk android

com.alipay.android.app

.Cashier

Activities

.Cashier

android.intent.action.MAIN

.Alerter

android.intent.action.MAIN

.Welcome

android.intent.action.MAIN

.Updater

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_COARSE_LOCATION
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay
laizi_hall.apk
.apk android

com.laizi.hall

com.laizi.main.Main

Activities

com.laizi.main.Main

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.RESTART_PACKAGES
android.permission.SEND_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.DISABLE_KEYGUARD

Receivers

com.laizi.broadcast.InstallBroadCast

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

Android Permissions

3e1a3ff6091e8d86b75245a79449e250_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.VIBRATE

android.permission.SEND_SMS

android.permission.WRITE_SMS

android.permission.READ_SMS

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

Sharing

General

Malware Config

Signatures

Files

laizi.tvddz

.WelcomeActivity

Activities

.WelcomeActivity

Permissions

com.alipay.android.app

.Cashier

Activities

.Cashier

.Alerter

.Welcome

.Updater

Permissions

Receivers

.AlixReceiver

Services

.AlixService

com.laizi.hall

com.laizi.main.Main

Activities

com.laizi.main.Main

Permissions

Receivers

com.laizi.broadcast.InstallBroadCast

Android Permissions

3e1a3ff6091e8d86b75245a79449e250_JaffaCakes118