468a4f49ea6f77915fa5094a51cd0e90_JaffaCakes118

General

Target

468a4f49ea6f77915fa5094a51cd0e90_JaffaCakes118
Size

18.1MB
MD5

468a4f49ea6f77915fa5094a51cd0e90
SHA1

c8be29dade66671825578c729c66a1ba56fc08e3
SHA256

265ffca3f4426760141c5fd5ac93992237bec99a955a798c79b31682bf23d832
SHA512

55b52951dfc1eff70160a88c42a5edb2fb89476bce2029c48a4d226f96d5db961cbc8d5448a09cab03d3ebc9e066983eae9b2b0f64ac348dd2c9de61d557fb67
SSDEEP

393216:g81if5a8MW0CVkzuZVuzkk4KLyMuZVu6J14KLe4f2q6pvuhFmYwQ:gaif5a870nzXzB4KLnX6T4KLypIFmYj

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

468a4f49ea6f77915fa5094a51cd0e90_JaffaCakes118
.apk android arch:arm

com.mobcb.wondercity

com.mobcb.wondercity.activity.SplashActivity

Activities

com.mobcb.wondercity.activity.SplashActivity

android.intent.action.MAIN

com.mobcb.wondercity.activity.MainActivity

android.intent.action.VIEW

cn.sharesdk.framework.ShareSDKUIShell

android.intent.action.VIEW

Permissions

android.permission.READ_LOGS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.CAMERA
android.permission.WRITE_SETTINGS
android.permission.CALL_PHONE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.PROCESS_OUTGOING_CALLS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECORD_AUDIO

Receivers

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.mobcb.wondercity.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

Services

com.umeng.message.UmengService

com.mobcb.wondercity.intent.action.START
com.mobcb.wondercity.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2

com.baidu.location.f

com.baidu.location.service_v2.2
BaiduNaviSDK_Resource_v1_0_0.png
.apk android

com.baidu.navisdk

com.baidu.navi.api.MainActivity

Activities

com.baidu.navi.api.MainActivity

android.intent.action.MAIN

Android Permissions

468a4f49ea6f77915fa5094a51cd0e90_JaffaCakes118

Permissions

android.permission.READ_LOGS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.CAMERA

android.permission.WRITE_SETTINGS

android.permission.CALL_PHONE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.GET_TASKS

android.permission.PROCESS_OUTGOING_CALLS

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RECORD_AUDIO

Sharing

General

Malware Config

Signatures

Files

com.mobcb.wondercity

com.mobcb.wondercity.activity.SplashActivity

Activities

com.mobcb.wondercity.activity.SplashActivity

com.mobcb.wondercity.activity.MainActivity

cn.sharesdk.framework.ShareSDKUIShell

Permissions

Receivers

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

com.baidu.location.f

com.baidu.navisdk

com.baidu.navi.api.MainActivity

Activities

com.baidu.navi.api.MainActivity

Android Permissions

468a4f49ea6f77915fa5094a51cd0e90_JaffaCakes118