4e43ac894fa9b2808ba60cc96a700dfc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4e43ac894fa9b2808ba60cc96a700dfc_JaffaCakes118
Size

23.6MB
MD5

4e43ac894fa9b2808ba60cc96a700dfc
SHA1

79e3f0f6c9a4b15fb8d1bdd568380922e6cb8b83
SHA256

cfb233911e3a70396e2cdedda8d86bc5925a6c51f5ec5004c4128e208a8684fc
SHA512

790190a5e9dd3a1d1e40dbf8d4f873a80ffddeaff118fcbb1b52c1cc7979e1e17b9feb9d90546870f5426076513cd5d7a4866e86ec68910815b59a4aafb3baf8
SSDEEP

393216:nMldS53feaKGpKu4u0f2xeyRsz3qNA+fQehCnUOC9MVJQXE43K030ZgdU:nOI53yOaewyqz3qDQYcuMTyE4a80ZoU

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

4e43ac894fa9b2808ba60cc96a700dfc_JaffaCakes118
.apk android

com.mango.sanguo15.hgfy.cmge

com.mango.sanguo.SanGuoActivity

Activities

com.mango.sanguo.SanGuoActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.RESTART_PACKAGES
android.permission.SEND_SMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_EXTERNAL_STORAGE

Receivers

cn.douwan.sdk.download.DownApkInstallReciver

android.intent.action.PACKAGE_ADDED

Services
alipay_plugin223_0309.apk
.apk android

com.alipay.android.app

.Cashier

Activities

.Cashier

android.intent.action.MAIN

.Alerter

android.intent.action.MAIN

.Welcome

android.intent.action.MAIN

.Updater

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_COARSE_LOCATION

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay
alipay_plugin_20120428msp.apk
.apk android

com.alipay.android.app

.Cashier

Activities

.Cashier

android.intent.action.MAIN

.Alerter

android.intent.action.MAIN

.Welcome

android.intent.action.MAIN

.Updater

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_COARSE_LOCATION
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

Android Permissions

4e43ac894fa9b2808ba60cc96a700dfc_JaffaCakes118

Permissions

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_LOGS

android.permission.READ_PHONE_STATE

android.permission.RESTART_PACKAGES

android.permission.SEND_SMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.mango.sanguo15.hgfy.cmge

com.mango.sanguo.SanGuoActivity

Activities

com.mango.sanguo.SanGuoActivity

Permissions

Receivers

cn.douwan.sdk.download.DownApkInstallReciver

Services

com.alipay.android.app

.Cashier

Activities

.Cashier

.Alerter

.Welcome

.Updater

Permissions

Services

.AlixService

com.alipay.android.app

.Cashier

Activities

.Cashier

.Alerter

.Welcome

.Updater

Permissions

Receivers

.AlixReceiver

Services

.AlixService

Android Permissions

4e43ac894fa9b2808ba60cc96a700dfc_JaffaCakes118