489cd818432a66cd11de652e48fcbee8_JaffaCakes118

General

Target

489cd818432a66cd11de652e48fcbee8_JaffaCakes118
Size

8.1MB
MD5

489cd818432a66cd11de652e48fcbee8
SHA1

169f00fac69b6c1f51d4708d627d227bd11c45cf
SHA256

050fe728f6f43e5a58e8ad28b582b64fd361d8abb75ce40a185b646280c456e5
SHA512

6dc3fa8ee800d194efe5d98482d5b20d83f539e2b220eba4e0b0882ba0cff4e3c23162f6a57cd329eb47763331c2d37ee66dfe88f33380811ff31cddd3c5426f
SSDEEP

196608:0nuG5hwyHq3aw0LIrzRp4Z+YOxs6Clq0qAJGGEPMtC:O57nwRpMQstEPAC

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access location in the background.	android.permission.ACCESS_BACKGROUND_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

489cd818432a66cd11de652e48fcbee8_JaffaCakes118
.apk android arch:arm

com.yueyou.adreader

com.yueyou.adreader.activity.MainActivity

Activities

com.yueyou.adreader.activity.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.oppopush

Permissions

android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.VIBRATE
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.webkit.permission.PLUGIN
android.permission.REORDER_TASKS
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_SETTINGS
android.permission.ACCESS_FINE_LOCATION
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.GET_TASKS
android.permission.WAKE_LOCK
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_LOGS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.REQUEST_INSTALL_PACKAGES
com.yueyou.adreader.permission.PROCESS_PUSH_MSG
android.permission.READ_EXTERNAL_STORAGE
com.yueyou.adreader.permission.MIPUSH_RECEIVE
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
getui.permission.GetuiService.com.yueyou.adreader
android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Receivers

com.igexin.sdk.HmsPushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH_DELAY_NOTIFY

com.igexin.sdk.HmsPushSubReceiver

com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

com.igexin.sdk.MiuiPushReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.igexin.sdk.VivoPushMessageReceiver

com.vivo.pushclient.action.RECEIVE

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

Services

com.huawei.hms.support.api.push.service.HmsMsgService

com.huawei.push.msg.NOTIFY_MSG
com.huawei.push.msg.PASSBY_MSG

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote

com.igexin.sdk.OppoPushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.igexin.sdk.PushService

com.igexin.sdk.action.service.message
bdxadsdk.jar
.apk android
gdtadv2.jar
.apk android arch:arm64 arch:arm

Android Permissions

489cd818432a66cd11de652e48fcbee8_JaffaCakes118

Permissions

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.VIBRATE

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.webkit.permission.PLUGIN

android.permission.REORDER_TASKS

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.READ_SETTINGS

android.permission.ACCESS_FINE_LOCATION

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.GET_TASKS

android.permission.WAKE_LOCK

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_LOGS

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.ACCESS_BACKGROUND_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.REQUEST_INSTALL_PACKAGES

com.yueyou.adreader.permission.PROCESS_PUSH_MSG

android.permission.READ_EXTERNAL_STORAGE

com.yueyou.adreader.permission.MIPUSH_RECEIVE

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

getui.permission.GetuiService.com.yueyou.adreader

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Sharing

General

Malware Config

Signatures

Files

com.yueyou.adreader

com.yueyou.adreader.activity.MainActivity

Activities

com.yueyou.adreader.activity.MainActivity

Permissions

Receivers

com.igexin.sdk.HmsPushReceiver

com.igexin.sdk.HmsPushSubReceiver

com.igexin.sdk.MiuiPushReceiver

com.igexin.sdk.VivoPushMessageReceiver

com.igexin.sdk.PushReceiver

Services

com.huawei.hms.support.api.push.service.HmsMsgService

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.igexin.sdk.OppoPushService

com.igexin.sdk.PushService

Android Permissions

489cd818432a66cd11de652e48fcbee8_JaffaCakes118