4e0b3b8e2f46330d711d1db6fc57b969_JaffaCakes118

General

Target

4e0b3b8e2f46330d711d1db6fc57b969_JaffaCakes118
Size

27.6MB
MD5

4e0b3b8e2f46330d711d1db6fc57b969
SHA1

0451173c0fffdb9fa7dce984fc3458d4798ec73b
SHA256

e99f6186ff888605439795d63968b1a210f1166c61f150a0dac078c4d0015c41
SHA512

38bae88b173c8e5cd7917af30cae70ccc3064aeab6e48e8e3166faa38f65c3436d8d27f20577f77b9641262bc5402f2f16ae6f77dc4a856c9cfd5a289cc3387c
SSDEEP

786432:7V7STRDZj7t9YQJDMrz1kYbpMsbz2WWOw:7V76RljBikDMrz1THzG

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by input method services to bind with the system. Allows apps to provide custom input methods (keyboards).	android.permission.BIND_INPUT_METHOD

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

4e0b3b8e2f46330d711d1db6fc57b969_JaffaCakes118
.apk android arch:arm arch:x86

com.dada.inputmethod

com.dada.indiana.activity.LogoActivity

Activities

com.dada.indiana.activity.LogoActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.dada.indiana.activity.DaDaAppLinkActivity

android.intent.action.VIEW

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

Permissions

android.permission.VIBRATE
android.permission.INTERNET
android.permission.READ_USER_DICTIONARY
android.permission.WRITE_USER_DICTIONARY
android.permission.READ_CONTACTS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.CALL_PHONE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.FLASHLIGHT
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_SETTINGS

Receivers

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.dada.inputmethod.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

Services

com.dada.indiana.MyInputMethod

android.view.InputMethod

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action

Android Permissions

4e0b3b8e2f46330d711d1db6fc57b969_JaffaCakes118

Permissions

android.permission.VIBRATE

android.permission.INTERNET

android.permission.READ_USER_DICTIONARY

android.permission.WRITE_USER_DICTIONARY

android.permission.READ_CONTACTS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.READ_PHONE_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.CALL_PHONE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.FLASHLIGHT

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.dada.inputmethod

com.dada.indiana.activity.LogoActivity

Activities

com.dada.indiana.activity.LogoActivity

com.tencent.tauth.AuthActivity

com.dada.indiana.activity.DaDaAppLinkActivity

com.sina.weibo.sdk.share.WbShareTransActivity

Permissions

Receivers

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

Services

com.dada.indiana.MyInputMethod

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

4e0b3b8e2f46330d711d1db6fc57b969_JaffaCakes118