481ea04c6fdefe6710a0e705f8cec1f3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

481ea04c6fdefe6710a0e705f8cec1f3_JaffaCakes118
Size

27.9MB
MD5

481ea04c6fdefe6710a0e705f8cec1f3
SHA1

4e504afc873212401971eda249a62617ea9b738b
SHA256

2c078d433af3933115dc4459ec7c5b43639683c6e88d65a0ec14d45c3880f5ac
SHA512

3c819964c1348988b6b1306829e708ac073491a44575e407582a43afd2292e89116e3110ce3f55866c05d5c17469d812123403c65a21b06d7aa84ee7045f8899
SSDEEP

786432:VPT/6ZSIlKmzAeSBkXr9ms0Vf41p0Yp13+MlS8omNhOOUplQrZV/V/:VUSsklkXP8W6Yp7leaAPlKZ9p

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 19 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

481ea04c6fdefe6710a0e705f8cec1f3_JaffaCakes118
.apk android arch:arm64 arch:arm arch:mips arch:x86 arch:x64

cn.emoney.pf

cn.emoney.aty.HomeAty

Activities

cn.emoney.aty.HomeAty

android.intent.action.MAIN
cn.emoney.android.appstock.stock.pf
30600
30400
android.intent.action.VIEW

cn.emoney.community.aty.SQHomeAty

210000

cn.emoney.community.aty.SQMengYouQuanAty

2000003

cn.emoney.choose.aty.ChooseHomeAty

80000

cn.emoney.choose.aty.ChooseTSXGAty

80200

cn.emoney.choose.aty.ChooseStockDetailAty

80300
80400
80500
80600
81100
81200
81300
81400
81500
89900

cn.emoney.choose.aty.ChooseYCDJAty

80700

cn.emoney.choose.aty.ChooseZDLHAty

80901

cn.emoney.choose.aty.ChooseZDLHAdvertiseAty

80899
80900

cn.emoney.choose.aty.ChooseZTHGAty

80800

cn.emoney.choose.aty.ChooseXTXGAty

81000

cn.emoney.choose.aty.ChooseRDBKAty

81900

cn.emoney.choose.aty.ChooseRDGAty

82000

cn.emoney.alert.aty.AlertHomeAty

50000
50100
50200
50300

cn.emoney.aty.QuoteAty

140000

cn.emoney.aty.GoodSearchAty

10100

cn.emoney.aty.HomeSettingsAty

150200

cn.emoney.aty.ActivitiesAty

180000

cn.emoney.aty.XGSGAty

220000

cn.emoney.aty.syst.LoginAty

162000

cn.emoney.aty.syst.UserManagerAty

161100

cn.emoney.aty.syst.FindPwdAty

161700

cn.emoney.aty.syst.RegistAty

130700

cn.emoney.aty.syst.SigninAty

160100

cn.emoney.aty.syst.RecommendFriendsAty

162400

cn.emoney.aty.syst.FeedbackAty

162300

cn.emoney.aty.syst.AppMsgAty

160400

cn.emoney.aty.syst.CheckDueAty

161800

cn.emoney.aty.syst.AppAboutAty

161000

cn.emoney.aty.syst.WhatsNewAty

190000

cn.emoney.aty.syst.ChangePWDAty

161800

cn.emoney.aty.syst.UpdateUserInfoAty

161200

cn.emoney.aty.syst.MyPrivilegeAty

160700
160200

cn.emoney.aty.syst.BrowserAty

android.intent.action.VIEW
1000000

cn.emoney.aty.mncg.MncgBshdAty

130400

cn.emoney.aty.mncg.MncgGameDemoAty

130500

cn.emoney.aty.mncg.MncgGsbAty

130300
131400
131300

cn.emoney.aty.mncg.MncgHjbAty

130900

cn.emoney.aty.mncg.MncgHomeAty

130000

cn.emoney.aty.mncg.MncgJygzAty

130200

cn.emoney.aty.mncg.MncgMyDetailAty

131500
131000
131100
131200

cn.emoney.aty.ZXGSettingAty

20300

cn.emoney.aty.mncg.MncgOtherDetailAty

130600

cn.emoney.aty.mncg.MncgFansListAty

130100

cn.emoney.shop.ShoppingAty

160300

cn.emoney.aty.TradeListAty

60000
60100

cn.emoney.aty.TradeTelAty

60300

cn.emoney.aty.CLSInfoAty

230100

cn.emoney.aty.fund.FundHomeAty

120000

cn.emoney.aty.DiagnoseAty

70000

cn.emoney.video.SZPXAty

110600
110100

cn.emoney.video.JxspAty

110300

cn.emoney.video.SzpxVipAty

119400

cn.emoney.video.ZbygAty

119500

cn.emoney.level2.TencentAuthAty

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

cn.emoney.askstock.aty.MyAnswerAty

240300

cn.emoney.askstock.aty.XGTWAty

240100

cn.emoney.askstock.aty.MJDPListAty

240200

Permissions

android.support.multidex.MultiDexApplication
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.READ_CONTACTS
android.permission.READ_PROFILE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.CHANGE_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.KILL_BACKGROUND_PROCESSES
android.webkit.permission.PLUGIN
com.tencent.mtt.extension.Player
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.UPDATE_DEVICE_STATS
android.permission.INSTALL_PACKAGES
android.permission.DELETE_PACKAGES
android.permission.RESTART_PACKAGES
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_LOGS
android.permission.SEND_SMS
android.permission.GET_TASKS
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.CAMERA
android.permission.RECORD_VIDEO
android.permission.RECORD_AUDIO
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.CHANGE_CONFIGURATION
android.permission.WRITE_SETTINGS
android.permission.READ_EXTERNAL_STORAGE
android.permission.NFC
android.permission.MODIFY_AUDIO_SETTINGS
org.simalliance.openmobileapi.SMARTCARD
android.permission.SYSTEM_ALERT_WINDOW

Receivers

cn.emoney.level2.service.BootReceiver

android.intent.action.BOOT_COMPLETED

Services

cn.emoney.level2.service.YMAlertPush

cn.emoney.pf.service.YMAlertPush

cn.emoney.level2.service.YMUpdateLocalStocksService

cn.emoney.pf.YMUpdateLocalStocksService

Android Permissions

481ea04c6fdefe6710a0e705f8cec1f3_JaffaCakes118

Permissions

android.support.multidex.MultiDexApplication

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.CALL_PHONE

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.READ_CONTACTS

android.permission.READ_PROFILE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.CHANGE_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.KILL_BACKGROUND_PROCESSES

android.webkit.permission.PLUGIN

com.tencent.mtt.extension.Player

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.CALL_PHONE

android.permission.UPDATE_DEVICE_STATS

android.permission.INSTALL_PACKAGES

android.permission.DELETE_PACKAGES

android.permission.RESTART_PACKAGES

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_LOGS

android.permission.SEND_SMS

android.permission.GET_TASKS

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.CAMERA

android.permission.RECORD_VIDEO

android.permission.RECORD_AUDIO

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.CHANGE_CONFIGURATION

android.permission.WRITE_SETTINGS

android.permission.READ_EXTERNAL_STORAGE

android.permission.NFC

Sharing

General

Malware Config

Signatures

Files

cn.emoney.pf

cn.emoney.aty.HomeAty

Activities

cn.emoney.aty.HomeAty

cn.emoney.community.aty.SQHomeAty

cn.emoney.community.aty.SQMengYouQuanAty

cn.emoney.choose.aty.ChooseHomeAty

cn.emoney.choose.aty.ChooseTSXGAty

cn.emoney.choose.aty.ChooseStockDetailAty

cn.emoney.choose.aty.ChooseYCDJAty

cn.emoney.choose.aty.ChooseZDLHAty

cn.emoney.choose.aty.ChooseZDLHAdvertiseAty

cn.emoney.choose.aty.ChooseZTHGAty

cn.emoney.choose.aty.ChooseXTXGAty

cn.emoney.choose.aty.ChooseRDBKAty

cn.emoney.choose.aty.ChooseRDGAty

cn.emoney.alert.aty.AlertHomeAty

cn.emoney.aty.QuoteAty

cn.emoney.aty.GoodSearchAty

cn.emoney.aty.HomeSettingsAty

cn.emoney.aty.ActivitiesAty

cn.emoney.aty.XGSGAty

cn.emoney.aty.syst.LoginAty

cn.emoney.aty.syst.UserManagerAty

cn.emoney.aty.syst.FindPwdAty

cn.emoney.aty.syst.RegistAty

cn.emoney.aty.syst.SigninAty

cn.emoney.aty.syst.RecommendFriendsAty

cn.emoney.aty.syst.FeedbackAty

cn.emoney.aty.syst.AppMsgAty

cn.emoney.aty.syst.CheckDueAty

cn.emoney.aty.syst.AppAboutAty

cn.emoney.aty.syst.WhatsNewAty

cn.emoney.aty.syst.ChangePWDAty

cn.emoney.aty.syst.UpdateUserInfoAty

cn.emoney.aty.syst.MyPrivilegeAty

cn.emoney.aty.syst.BrowserAty

cn.emoney.aty.mncg.MncgBshdAty

cn.emoney.aty.mncg.MncgGameDemoAty

cn.emoney.aty.mncg.MncgGsbAty

cn.emoney.aty.mncg.MncgHjbAty

cn.emoney.aty.mncg.MncgHomeAty

cn.emoney.aty.mncg.MncgJygzAty

cn.emoney.aty.mncg.MncgMyDetailAty

cn.emoney.aty.ZXGSettingAty

cn.emoney.aty.mncg.MncgOtherDetailAty

cn.emoney.aty.mncg.MncgFansListAty

cn.emoney.shop.ShoppingAty

cn.emoney.aty.TradeListAty

cn.emoney.aty.TradeTelAty

cn.emoney.aty.CLSInfoAty

cn.emoney.aty.fund.FundHomeAty

cn.emoney.aty.DiagnoseAty

cn.emoney.video.SZPXAty

cn.emoney.video.JxspAty

cn.emoney.video.SzpxVipAty

cn.emoney.video.ZbygAty

cn.emoney.level2.TencentAuthAty

com.tencent.tauth.AuthActivity

cn.emoney.askstock.aty.MyAnswerAty

cn.emoney.askstock.aty.XGTWAty

cn.emoney.askstock.aty.MJDPListAty

Permissions

Receivers

cn.emoney.level2.service.BootReceiver

Services

cn.emoney.level2.service.YMAlertPush

cn.emoney.level2.service.YMUpdateLocalStocksService

Android Permissions

481ea04c6fdefe6710a0e705f8cec1f3_JaffaCakes118