5c59e1463975142f9120b030d8d8421a_JaffaCakes118

General

Target

5c59e1463975142f9120b030d8d8421a_JaffaCakes118
Size

9.8MB
MD5

5c59e1463975142f9120b030d8d8421a
SHA1

64dadca167159189e3792c505cfe0dcf3ad1bcdd
SHA256

379bd3e4844efd414db6758e8535e04bca0000837ba418ad06164286a7f6621a
SHA512

541f4462376567658e40edcceffd33352368a6b1135cb8d8f4971cffd36ed41eb366b3be0603c1bd830bc816a357f5c28cc805118115e61bcdca698ae71a9d67
SSDEEP

196608:s+NN+mKALjqTLQDCDgAFXq6fh3YCkStL16688AnD3+O+:s+f+mDLjqTLQDogAF6Ch3pZte1D3+O+

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS

Files

5c59e1463975142f9120b030d8d8421a_JaffaCakes118
.apk android arch:mips arch:arm arch:x86

com.ktouch.reader

com.qq.reader.activity.SplashActivityOld

Activities

com.qq.reader.widget.picbrowser.PictureActivity

android.intent.action.MAIN

com.qq.reader.activity.SplashActivityOld

android.intent.action.MAIN

com.qq.reader.TypeContext

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.qq.reader.activity.MainActivity

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.RESTART_PACKAGES
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.CHANGE_CONFIGURATION
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.RECEIVE_USER_PRESENT
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.GET_TASKS
android.permission.READ_LOGS
android.permission.READ_SMS
android.permission.SEND_SMS

Receivers

com.qq.reader.cservice.bookfollow.FollowBroadcastReceiver

com.qq.reader.notification

com.qq.reader.common.readertask.NetworkStateForConfig

android.net.conn.CONNECTIVITY_ACTION
android.net.conn.CONNECTIVITY_CHANGE

com.qq.reader.plugin.audiobook.core.MediaButtonIntentReceiver

android.media.AUDIO_BECOMING_NOISY

com.qq.reader.plugin.wps.WPSReceiver

cn.wps.moffice.file.close

com.qq.reader.cservice.download.chapter.ChapterDownloadReceiver

com.qq.reader.chapter.download

com.qq.reader.common.receiver.AppCategoryGotoAllReceiver

com.qq.reader.mark.appcategorygotoallreceiver

com.qq.reader.common.receiver.DBMarkReceiver

com.qq.reader.dbupdate

Services

com.qq.reader.plugin.tts.TtsFakeService

com.qq.reader.tts.ITtsFakeService

com.qq.reader.plugin.audiobook.core.QQPlayerService

com.qq.reader.plugin.audiobook.core.IQQPlayerService

Android Permissions

5c59e1463975142f9120b030d8d8421a_JaffaCakes118

Permissions

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.RESTART_PACKAGES

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.CHANGE_CONFIGURATION

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.RECEIVE_USER_PRESENT

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.GET_TASKS

android.permission.READ_LOGS

android.permission.READ_SMS

android.permission.SEND_SMS

Sharing

General

Malware Config

Signatures

Files

com.ktouch.reader

com.qq.reader.activity.SplashActivityOld

Activities

com.qq.reader.widget.picbrowser.PictureActivity

com.qq.reader.activity.SplashActivityOld

com.qq.reader.TypeContext

com.qq.reader.activity.MainActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.qq.reader.cservice.bookfollow.FollowBroadcastReceiver

com.qq.reader.common.readertask.NetworkStateForConfig

com.qq.reader.plugin.audiobook.core.MediaButtonIntentReceiver

com.qq.reader.plugin.wps.WPSReceiver

com.qq.reader.cservice.download.chapter.ChapterDownloadReceiver

com.qq.reader.common.receiver.AppCategoryGotoAllReceiver

com.qq.reader.common.receiver.DBMarkReceiver

Services

com.qq.reader.plugin.tts.TtsFakeService

com.qq.reader.plugin.audiobook.core.QQPlayerService

Android Permissions

5c59e1463975142f9120b030d8d8421a_JaffaCakes118