4b82896b3e232f7196c15934b0200ee7_JaffaCakes118

General

Target

4b82896b3e232f7196c15934b0200ee7_JaffaCakes118
Size

17.5MB
MD5

4b82896b3e232f7196c15934b0200ee7
SHA1

798bf91d89e25c229a9d7ecc884e36957a2cdcff
SHA256

d3f8326136f3a4a6ca1e3d553dbb07e509b806eb4635e36efb13355d58bcf824
SHA512

7431c4d787c2083b451ac66e30220975644df4977e9a9f1ec2d2333c0e234febfacfd082888d209c47b19cd4e836fa8c0f351ebccd95e670f0f9a23468d81de1
SSDEEP

393216:dn47JJa7AD4iRFthFxnHiBuhWh19eZ59VTKfX7Y5:dn0JJ3/tIuWh19eZ59kK

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by input method services to bind with the system. Allows apps to provide custom input methods (keyboards).	android.permission.BIND_INPUT_METHOD

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

4b82896b3e232f7196c15934b0200ee7_JaffaCakes118
.apk android arch:arm arch:mips arch:x86

com.ziipin.softkeyboard.kazakh

com.ziipin.softkeyboard.WelcomeActivity

Activities

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.ziipin.softkeyboard.GuideActivity

com.ziipin.softkeyboard.GuideActivity

com.ziipin.softkeyboard.WelcomeActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_LOGS
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.REORDER_TASKS
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS

Receivers

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.ziipin.softkeyboard.kazakh.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

com.ziipin.common.util.AlarmReceiver4SaveFrequency

Savingfrequency

com.ziipin.common.util.AlarmReceiver4SendUserHabits

SendUserHabits

com.ziipin.common.util.AlarmReceiver4GetLexiconInformation

GetLexiconInformation

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED

Services

com.umeng.message.UmengService

com.ziipin.softkeyboard.kazakh.intent.action.START
com.ziipin.softkeyboard.kazakh.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2

com.ziipin.ime.pinyin.PinyinDecoderService

com.ziipin.ime.pinyin.Decoder_Service

com.ziipin.softkeyboard.SoftKeyboard

android.view.InputMethod

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2
market.mp3
.apk android arch:arm

com.badam.softcenter.kz

com.badam.softcenter.common.ui.SplashActivity

Activities

com.badam.softcenter.common.ui.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.READ_LOGS
com.mozillaonline.permission.ACCESS_DOWNLOAD_MANAGER
com.mozillaonline.permission.ACCESS_DOWNLOAD_MANAGER_ADVANCED
com.mozillaonline.permission.SEND_DOWNLOAD_COMPLETED_INTENTS
com.mozillaonline.permission.DOWNLOAD_WITHOUT_NOTIFICATION
com.mozillaonline.permission.ACCESS_ALL_DOWNLOADS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
android.permission.GET_PACKAGE_SIZE
android.permission.GET_TASKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE

Receivers

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.badam.softcenter.kz.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

Services

com.umeng.message.UmengService

com.badam.softcenter.kz.intent.action.START
com.badam.softcenter.kz.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2

Android Permissions

4b82896b3e232f7196c15934b0200ee7_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_LOGS

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.REORDER_TASKS

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.ziipin.softkeyboard.kazakh

com.ziipin.softkeyboard.WelcomeActivity

Activities

com.tencent.tauth.AuthActivity

com.ziipin.softkeyboard.GuideActivity

com.ziipin.softkeyboard.WelcomeActivity

Permissions

Receivers

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

com.ziipin.common.util.AlarmReceiver4SaveFrequency

com.ziipin.common.util.AlarmReceiver4SendUserHabits

com.ziipin.common.util.AlarmReceiver4GetLexiconInformation

com.umeng.message.RegistrationReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

com.ziipin.ime.pinyin.PinyinDecoderService

com.ziipin.softkeyboard.SoftKeyboard

org.android.agoo.service.ElectionService

com.badam.softcenter.kz

com.badam.softcenter.common.ui.SplashActivity

Activities

com.badam.softcenter.common.ui.SplashActivity

Permissions

Receivers

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

Android Permissions

4b82896b3e232f7196c15934b0200ee7_JaffaCakes118