4b662f72379708137c8f8a1aad23b394_JaffaCakes118

General

Target

4b662f72379708137c8f8a1aad23b394_JaffaCakes118
Size

9.7MB
MD5

4b662f72379708137c8f8a1aad23b394
SHA1

e3b9cfd8d62e8f28bd71d79dddc5974049100354
SHA256

1cf888ce5c3b0443f921efea2db74bb15e36008fe35709a1a04430426f6bb480
SHA512

b5c870f0291f68720191e0406b767a1bc29791fbeb6becc80675034f6e5a2208f0d25a2c8b8c642db30621d99a3b61c5ed9eac000fb69f3023b47d80e85dcb15
SSDEEP

196608:9/OrpvLTpLv+vbC+Fbu4LImTwsyiRgJYQcLznLgYzLGUuMtV0:9/OrpvPd4bC+Fbu4MWpRSViznLgYzLGn

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 12 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

Files

4b662f72379708137c8f8a1aad23b394_JaffaCakes118
.apk android

com.chinaunicom.wocloud

com.unicom.wocloud.activity.WoCloudSetupIndexActivity

Activities

com.unicom.wocloud.activity.WoCloudSetupIndexActivity

android.intent.action.MAIN

com.funambol.android.activities.AndroidLoginScreen

android.accounts.AccountAuthenticator

com.funambol.android.activities.AndroidSignupScreen

android.accounts.AccountAuthenticator

com.funambol.android.edit_contact.AndroidEditContact

android.intent.action.EDIT
android.intent.action.INSERT

com.unicom.wocloud.activity.WoCloudInstanceActivity

android.intent.action.MAIN

com.unicom.wocloud.activity.WoCloudShareWeiboActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.funambol.android.activities.AndroidMediaActivity

com.funambol.android.AndroidMediaView

com.funambol.android.activities.AndroidVideoViewActivity

com.funambol.android.AndroidVideoView

com.funambol.android.activities.AndroidFileViewActivity

com.funambol.android.AndroidFileView

com.funambol.android.activities.AndroidMusicViewActivity

com.funambol.android.AndroidMusicView

com.funambol.android.activities.AndroidViewPictureActivity

com.funambol.android.AndroidViewPictureActivity

com.unicom.notes.ui.NotesListActivity

com.funambol.android.AndroidNotesView

com.unicom.notes.ui.NoteEditActivity

android.intent.action.VIEW
android.intent.action.INSERT_OR_EDIT
android.intent.action.SEARCH

com.chinaunicom.wocloud.ShortMessageBackupActivity

android.intent.action.SEND
android.intent.action.SENDTO

com.chinaunicom.wocloud.WocloudLoginRegisterActivity

android.intent.action.VIEW

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_OWNER_DATA
android.permission.WRITE_OWNER_DATA
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_CALENDAR
android.permission.WRITE_CALENDAR
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.READ_SYNC_SETTINGS
android.permission.WRITE_SYNC_SETTINGS
android.permission.READ_SYNC_STATS
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.SEND
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
android.permission.VIBRATE
android.permission.CAMERA
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS

Receivers

com.funambol.android.source.media.MediaIntentReceiver

android.intent.action.MEDIA_MOUNTED

com.chinaunicom.wocloud.service.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

com.funambol.android.StartupIntentReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.PACKAGE_REPLACED

com.funambol.android.ConnectivityIntentReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.chinaunicom.wocloud.receiver.SmsReceiver

android.provider.Telephony.SMS_DELIVER

com.chinaunicom.wocloud.receiver.MmsReceiver

android.provider.Telephony.WAP_PUSH_DELIVER

com.funambol.android.AndroidAccountManager

android.accounts.LOGIN_ACCOUNTS_CHANGED

com.funambol.android.services.SynchronizationTask

com.funambol.android.AUTO_SYNC

Services

com.chinaunicom.wocloud.service.PicBackupService

com.chinaunicom.wocloud.service.PicBackupService

com.chinaunicom.wocloud.service.VideoBackupService

com.chinaunicom.wocloud.service.VideoBackupService

com.funambol.android.services.AutoSyncService

com.funambol.android.services.AutoSyncService

com.chinaunicom.wocloud.service.MessageNotifyService

com.chinaunicom.wocloud.service.MessageNotifyService

com.funambol.android.services.FunambolAccountsAuthenticator

android.accounts.AccountAuthenticator

com.chinaunicom.wocloud.service.HeadlessSmsSendService

android.intent.action.RESPOND_VIA_MESSAGE

Android Permissions

4b662f72379708137c8f8a1aad23b394_JaffaCakes118

Permissions

android.permission.SYSTEM_ALERT_WINDOW

android.permission.READ_OWNER_DATA

android.permission.WRITE_OWNER_DATA

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.READ_CALENDAR

android.permission.WRITE_CALENDAR

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.GET_ACCOUNTS

android.permission.MANAGE_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.READ_SYNC_SETTINGS

android.permission.WRITE_SYNC_SETTINGS

android.permission.READ_SYNC_STATS

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.SEND

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

android.permission.VIBRATE

android.permission.CAMERA

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_SMS

Sharing

General

Malware Config

Signatures

Files

com.chinaunicom.wocloud

com.unicom.wocloud.activity.WoCloudSetupIndexActivity

Activities

com.unicom.wocloud.activity.WoCloudSetupIndexActivity

com.funambol.android.activities.AndroidLoginScreen

com.funambol.android.activities.AndroidSignupScreen

com.funambol.android.edit_contact.AndroidEditContact

com.unicom.wocloud.activity.WoCloudInstanceActivity

com.unicom.wocloud.activity.WoCloudShareWeiboActivity

com.tencent.tauth.AuthActivity

com.funambol.android.activities.AndroidMediaActivity

com.funambol.android.activities.AndroidVideoViewActivity

com.funambol.android.activities.AndroidFileViewActivity

com.funambol.android.activities.AndroidMusicViewActivity

com.funambol.android.activities.AndroidViewPictureActivity

com.unicom.notes.ui.NotesListActivity

com.unicom.notes.ui.NoteEditActivity

com.chinaunicom.wocloud.ShortMessageBackupActivity

com.chinaunicom.wocloud.WocloudLoginRegisterActivity

Permissions

Receivers

com.funambol.android.source.media.MediaIntentReceiver

com.chinaunicom.wocloud.service.BootBroadcastReceiver

com.funambol.android.StartupIntentReceiver

com.funambol.android.ConnectivityIntentReceiver

com.chinaunicom.wocloud.receiver.SmsReceiver

com.chinaunicom.wocloud.receiver.MmsReceiver

com.funambol.android.AndroidAccountManager

com.funambol.android.services.SynchronizationTask

Services

com.chinaunicom.wocloud.service.PicBackupService

com.chinaunicom.wocloud.service.VideoBackupService

com.funambol.android.services.AutoSyncService

com.chinaunicom.wocloud.service.MessageNotifyService

com.funambol.android.services.FunambolAccountsAuthenticator

com.chinaunicom.wocloud.service.HeadlessSmsSendService

Android Permissions

4b662f72379708137c8f8a1aad23b394_JaffaCakes118