4f0aa4d67f4d5949fef542ba02b78515_JaffaCakes118

General

Target

4f0aa4d67f4d5949fef542ba02b78515_JaffaCakes118
Size

16.2MB
MD5

4f0aa4d67f4d5949fef542ba02b78515
SHA1

e9e55a66d294f63f7bb136ee708598bfc3211184
SHA256

ede407662343593dca919c183acf097f0a0be633050207f30068f10e8e851d0b
SHA512

59742555f9e42f73f479eb3fec8e6b4cc44502dc8dfc10903e5028406c80ba5fb7053f1e8cf91146ac4dc7ea048b73a8ea7af33405516ffd87edc5e3507dac80
SSDEEP

393216:01wcrIox3MSUsLpgrRtYFy9fQw37yt7gnQFR/+q7O5A8NcqMpA8NcqCQ:mHrNx8SUsdgrUA9f5rQvx7fwfwF

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

4f0aa4d67f4d5949fef542ba02b78515_JaffaCakes118
.apk android arch:arm64 arch:arm arch:x86

com.gc.fengdu

com.gc.fengdu.act.ActLauch

Activities

com.gc.fengdu.act.ActLauch

android.intent.action.MAIN

.act.AgFrame

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.RECEIVE_USER_PRESENT
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_NETWORK_STATE
android.permission.ACCESS_MOCK_LOCATION
android.permission.ACCESS_GPS
com.android.launcher.permission.READ_SETTINGS
android.permission.GET_TASKS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.WRITE_CONTACTS
android.permission.READ_LOGS
android.permission.SET_DEBUG_APP
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.CALL_PHONE

Receivers

Services
plugin-deploy.jar
.apk android

Android Permissions

4f0aa4d67f4d5949fef542ba02b78515_JaffaCakes118

Permissions

android.permission.RECEIVE_USER_PRESENT

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_MOCK_LOCATION

android.permission.ACCESS_GPS

com.android.launcher.permission.READ_SETTINGS

android.permission.GET_TASKS

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.WRITE_CONTACTS

android.permission.READ_LOGS

android.permission.SET_DEBUG_APP

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.CALL_PHONE

Sharing

General

Malware Config

Signatures

Files

com.gc.fengdu

com.gc.fengdu.act.ActLauch

Activities

com.gc.fengdu.act.ActLauch

.act.AgFrame

com.tencent.tauth.AuthActivity

Permissions

Receivers

Services

Android Permissions

4f0aa4d67f4d5949fef542ba02b78515_JaffaCakes118