4a0b2524e9f1d0e83fbcaa86adc58c30_JaffaCakes118

General

Target

4a0b2524e9f1d0e83fbcaa86adc58c30_JaffaCakes118
Size

1.2MB
MD5

4a0b2524e9f1d0e83fbcaa86adc58c30
SHA1

0b23988260fb987295ceb2ba0d8995585bccd1c4
SHA256

e0ade35fadbd26974c1830a4d7ea911eead97717111fdb053b26757e67b38858
SHA512

8e51856fdf8dbe73d6f581ae8160c8f897deabe9c058f158c695be3e41be3e5f899af44a569327aa943c4cab176c899aabc283e16e12fdf7760811b44217f126
SSDEEP

24576:4XNFVbDYxIp/oNRgZZwjk04sFvhf5eLIYzjLxGj9rZfW43+29lgjQb2:9Sp/osZZYk04sFpf5eLxzjLxGj9rH3+J

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 13 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

4a0b2524e9f1d0e83fbcaa86adc58c30_JaffaCakes118
.apk android

com.meimei20091013.HanyuXueXiBaoDian

com.meimei20091013.HanyuXueXiBaoDian.MainActivity

Activities

com.meimei20091013.HanyuXueXiBaoDian.MainActivity

android.intent.action.MAIN

Permissions

android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.ACCESS_MOCK_LOCATION
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_WIFI_STATE
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE

Receivers

com.droid.snail.receiver.BootReceiver

android.intent.action.BOOT_COMPLETED

com.droid.snail.receiver.ClientReceiver

com.snail.action.client

com.droid.snail.receiver.UserPresentReceiver

android.intent.action.USER_PRESENT

com.droid.snail.receiver.NetChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.droid.snail.receiver.WakeUpReceiver

droid.snail.action.st

com.droid.apkrun.RuntimeReceiver1

droid_snaillib_apkrun_intent.receiver.1

com.droid.apkrun.RuntimeReceiver2

droid_snaillib_apkrun_intent.receiver.2

com.droid.apkrun.RuntimeReceiver3

droid_snaillib_apkrun_intent.receiver.3

com.droid.apkrun.RuntimeReceiver4

droid_snaillib_apkrun_intent.receiver.4

com.droid.apkrun.RuntimeReceiver5

droid_snaillib_apkrun_intent.receiver.5

com.feiwo.banner.AdReceiver

android.intent.action.PACKAGE_ADDED

com.feiwoone.coverscreen.SR

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT
broadcast.route.control

com.adcocoa.sdk.receiver.AdcocoaStateReceiver

com.adcocoa.sdk.action.STATE_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED

Services

google.snail.zip

droid.snailw.action.General

com.droid.snail.priority.apple

droid.snail.action.Preset

google.snail.coconut

droid.snailw.action.General

com.droid.apkrun.RuntimeService1

droid_snaillib_apkrun_intent.service.1

com.droid.apkrun.RuntimeService2

droid_snaillib_apkrun_intent.service.2

com.droid.apkrun.RuntimeService3

droid_snaillib_apkrun_intent.service.3
c1.r0
.apk android arch:arm

com.droid.snailw

Services

com.droid.snail.run.MainService

android.intent.action.MAIN

Android Permissions

4a0b2524e9f1d0e83fbcaa86adc58c30_JaffaCakes118

Permissions

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_TASKS

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.SYSTEM_ALERT_WINDOW

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.ACCESS_MOCK_LOCATION

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_WIFI_STATE

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

Sharing

General

Malware Config

Signatures

Files

com.meimei20091013.HanyuXueXiBaoDian

com.meimei20091013.HanyuXueXiBaoDian.MainActivity

Activities

com.meimei20091013.HanyuXueXiBaoDian.MainActivity

Permissions

Receivers

com.droid.snail.receiver.BootReceiver

com.droid.snail.receiver.ClientReceiver

com.droid.snail.receiver.UserPresentReceiver

com.droid.snail.receiver.NetChangeReceiver

com.droid.snail.receiver.WakeUpReceiver

com.droid.apkrun.RuntimeReceiver1

com.droid.apkrun.RuntimeReceiver2

com.droid.apkrun.RuntimeReceiver3

com.droid.apkrun.RuntimeReceiver4

com.droid.apkrun.RuntimeReceiver5

com.feiwo.banner.AdReceiver

com.feiwoone.coverscreen.SR

com.adcocoa.sdk.receiver.AdcocoaStateReceiver

Services

google.snail.zip

com.droid.snail.priority.apple

google.snail.coconut

com.droid.apkrun.RuntimeService1

com.droid.apkrun.RuntimeService2

com.droid.apkrun.RuntimeService3

com.droid.snailw

Services

com.droid.snail.run.MainService

Android Permissions

4a0b2524e9f1d0e83fbcaa86adc58c30_JaffaCakes118