5c9dddc8697b3ae2a6d12d5a628d8c98_JaffaCakes118

General

Target

5c9dddc8697b3ae2a6d12d5a628d8c98_JaffaCakes118
Size

2.7MB
MD5

5c9dddc8697b3ae2a6d12d5a628d8c98
SHA1

4f5cdec739b375723b62f824e1097ba1d7f27e41
SHA256

d1f0ce889e4bc2fcbbd751f0fb35664ead7451b2d946c0300536f58b7abd0a27
SHA512

9185ffd13b2746095feefc68e35dc6b6c498ea7dcf2d1a9b3a912bfb8c8010a231307ce10cba1dc0319fdc58f41e49b6945cfb50f2f5520c3d3ef98dac40ffe0
SSDEEP

49152:bAuvX7WHDHRtxrHnCbUV3KW6+yj19obgDsOHlKNLrKBebYw+Wr3izt:bAuvX0x3CbmKWCj19ogDsgKJu4T+WuZ

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

5c9dddc8697b3ae2a6d12d5a628d8c98_JaffaCakes118
.apk android arch:arm

xzrjdfp.xajh

.AppActivity

Activities

.AppActivity

android.intent.action.MAIN

mm.purchasesdk.iapservice.BillingLayoutActivity

xzrjdfp.xajh.com.mmiap.activity

safiap.framework.ui.UpdateHintActivity

safiap.framework.ACTION_TO_INSTALL
safiap.framework.ACTION_TO_INSTALL_IAP
safiap.framework.ACTION_TO_INSTALL_IAP
safiap.framework.ACTION_NETWORK_ERROR_IAP
safiap.framework.ACTION_NETWORK_ERROR_FRAMEWORK

Permissions

rockchip.permission.FULL_SCREEN
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.READ_LOGS
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Receivers

com.umeng.common.CheckinReceiver

android.net.wifi.STATE_CHANGE
android.net.supplicant.wifi.STATE_CHANGE
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT

safiap.framework.CheckUpdateReceiver

safiap.framework.ACTION_CANCEL_NOTIFICATION
safiap.GET_SHARED_DATA
safiap.framework.ACTION_SET_TIMER

me.gall.tinybee.LoggerManager$NetworkStateChangeReceiver

android.net.wifi.STATE_CHANGE
android.net.supplicant.wifi.STATE_CHANGE
android.net.conn.CONNECTIVITY_CHANGE

Services

mm.purchasesdk.iapservice.PurchaseService

com.aspire.purchaseservice.BIND
android.intent.action.MAIN

safiap.framework.SafFrameworkManager

safiap.framework.sdk.ISAFFramework
safiap.framework.ACTION_CHECK_UPDATE

Android Permissions

5c9dddc8697b3ae2a6d12d5a628d8c98_JaffaCakes118

Permissions

rockchip.permission.FULL_SCREEN

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.READ_LOGS

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Sharing

General

Malware Config

Signatures

Files

xzrjdfp.xajh

.AppActivity

Activities

.AppActivity

mm.purchasesdk.iapservice.BillingLayoutActivity

safiap.framework.ui.UpdateHintActivity

Permissions

Receivers

com.umeng.common.CheckinReceiver

safiap.framework.CheckUpdateReceiver

me.gall.tinybee.LoggerManager$NetworkStateChangeReceiver

Services

mm.purchasesdk.iapservice.PurchaseService

safiap.framework.SafFrameworkManager

Android Permissions

5c9dddc8697b3ae2a6d12d5a628d8c98_JaffaCakes118