4f9391d36669859f5f52bda82fa62f00_JaffaCakes118

General

Target

4f9391d36669859f5f52bda82fa62f00_JaffaCakes118
Size

18.0MB
MD5

4f9391d36669859f5f52bda82fa62f00
SHA1

de6e239c566fc0ea08aa30f37daafc4009a2b682
SHA256

2593d0fe9ae620081596e33d61cb942fa62cc2f30ac729a664b169ad91f627a6
SHA512

17359a2610d616eca54e768a7c5da54acfa06c60ab79dddf94bd52478fa0203d49bdeae24349b719ca403119274d213abaf0b92f7a5bace187d29139b04ca8dd
SSDEEP

393216:nklYC2jkYs7lRlAJ32RMG8aV5jIvQboLItt:nLCokYsRUJ3MMG8s5MYFt

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

4f9391d36669859f5f52bda82fa62f00_JaffaCakes118
.apk android arch:arm

com.qiyi.video.child

com.qiyi.video.child.WelcomeActivity

Activities

com.qiyi.video.child.WelcomeActivity

android.intent.action.MAIN

org.iqiyi.video.activity.PlayerActivity

android.intent.action.qiyivideo.player
android.intent.action.qiyivideo.player
android.intent.action.VIEW

com.qiyi.video.child.activity.CommonWebViewActivity

com.qiyi.video.CommonWebView

com.qiyi.video.child.user.AccountActivityNew

android.intent.action.qiyivideo.phone.fortk.account.com.qiyi.video.child

com.qiyi.video.child.activity.PresentActivity

com.qiyi.video.Presenter

com.qiyi.video.child.activity.UserInfoEditActivity

com.qiyi.video.child.UserInfoEdit

Permissions

android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_SETTINGS
android.permission.GET_TASKS
android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.RECORD_AUDIO
android.permission.BROADCAST_STICKY
android.permission.CALL_PHONE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
com.fihtdc.AccountProxy.permission.account
android.permission.BLUETOOTH
android.permission.CHANGE_WIFI_STATE
android.permission.VIBRATE
android.permission.FLASHLIGHT

Services

com.iqiyi.video.download.QiyiDownloadCenterService

com.iqiyi.video.download.IQiyiDownloadCenter.com.qiyi.video.sdk

Android Permissions

4f9391d36669859f5f52bda82fa62f00_JaffaCakes118

Permissions

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_SETTINGS

android.permission.GET_TASKS

android.permission.WAKE_LOCK

android.permission.CAMERA

android.permission.RECORD_AUDIO

android.permission.BROADCAST_STICKY

android.permission.CALL_PHONE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

com.fihtdc.AccountProxy.permission.account

android.permission.BLUETOOTH

android.permission.CHANGE_WIFI_STATE

android.permission.VIBRATE

android.permission.FLASHLIGHT

Sharing

General

Malware Config

Signatures

Files

com.qiyi.video.child

com.qiyi.video.child.WelcomeActivity

Activities

com.qiyi.video.child.WelcomeActivity

org.iqiyi.video.activity.PlayerActivity

com.qiyi.video.child.activity.CommonWebViewActivity

com.qiyi.video.child.user.AccountActivityNew

com.qiyi.video.child.activity.PresentActivity

com.qiyi.video.child.activity.UserInfoEditActivity

Permissions

Services

com.iqiyi.video.download.QiyiDownloadCenterService

Android Permissions

4f9391d36669859f5f52bda82fa62f00_JaffaCakes118