5cb3ddd9f55885249f662637ec27b745_JaffaCakes118

General

Target

5cb3ddd9f55885249f662637ec27b745_JaffaCakes118
Size

20.1MB
MD5

5cb3ddd9f55885249f662637ec27b745
SHA1

7297af651927d3eca48d4f081eafeb22f5bafc7c
SHA256

d61690f996808336c56bfaf3b1c3b2d607a40a2230ef74478eef6ef25136d412
SHA512

81370822d69ce802065aa38702ce94b54013a01064e4ead940fa5182e2beb0d5010e42dbfc59dfbbe6d34653e31e2c6bab4797513c713701f11653e1b460a3a3
SSDEEP

393216:7Q4vt35dN4ISdT/ZOXFa5euWViAjvCKVcjZmmC0QaYiPdR58/bA3Ci:Nvt3zm9TZOVa5c7qw4C0BYC

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

Files

5cb3ddd9f55885249f662637ec27b745_JaffaCakes118
.apk android arch:arm

com.duokan.reader

com.duokan.reader.DkReaderActivity

Activities

com.duokan.reader.DkReaderActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.SEARCH
mi.quicksearch.intent.action.RETRIEVE

com.duokan.reader.ui.general.ServerSettingActivity

android.intent.action.VIEW

com.duokan.reader.DkPushActivity

com.duokan.reader.748ED6F8
com.duokan.reader.21337DA7
com.duokan.reader.BCDF212E
com.duokan.reader.3F0517EB
com.duokan.reader.58EBF0E6
com.duokan.reader.7E273086
com.duokan.reader.BD420C38
com.duokan.reader.17E8035B
com.duokan.reader.36DE8F7D
com.duokan.reader.713171D1
com.duokan.reader.0054FB5D
com.duokan.reader.E0E70907
com.duokan.reader.38CE29EF
com.duokan.reader.C78F8E13
com.duokan.reader.DA45DF81
com.duokan.reader.2D970DBF

com.xiaomi.payment.CommonEntryActivity

android.intent.action.VIEW

com.xiaomi.passport.ui.LoginActivity

com.xiaomi.account.action.XIAOMI_ACCOUNT_WELCOME
com.xiaomi.account.action.XIAOMI_ACCOUNT_LOGIN

com.xiaomi.passport.ui.QuickLoginActivity

com.xiaomi.account.action.XIAOMI_ACCOUNT_QUICK_LOGIN

com.xiaomi.passport.ui.RegisterAccountActivity

com.xiaomi.account.action.XIAOMI_ACCOUNT_REG

com.xiaomi.passport.ui.AreaCodePickerActivity

com.xiaomi.account.action.XIAOMI_ACCOUNT_AREA_CODE

com.xiaomi.passport.ui.AccountUnactivatedActivity

com.xiaomi.account.action.XIAOMI_ACCOUNT_UNACTIVATED

com.xiaomi.passport.ui.LicenseActivity

com.xiaomi.account.action.VIEW_LICENSE

com.xiaomi.passport.LocalFeatures.GetStsUrlActivity

com.xiaomi.account.action.XIAOMI_STS_URL

Permissions

com.duokan.reader.permission.MIPUSH_RECEIVE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REORDER_TASKS
com.xiaomi.xmsf.permission.PAYMENT
android.permission.CAMERA
android.permission.GET_TASKS
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.BLUETOOTH
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_DOWNLOAD_MANAGER
com.xiaomi.vip.permission.SERVICE
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.INTERACT_ACROSS_USERS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.MANAGE_USERS
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.CHANGE_NETWORK_STATE
com.xiaomi.passport.permission.PASSPORT_UI_CONTROLLER_SERVICE
com.xiaomi.permission.CLOUD_MANAGER

Receivers

com.duokan.reader.domain.account.SystemAccountLogoutReceiver

android.accounts.LOGIN_ACCOUNTS_POST_CHANGED

com.duokan.reader.domain.cloud.push.DkPushMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.xiaomi.assemble.control.HmsPushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

com.huawei.hms.support.api.push.PushEventReceiver

com.huawei.intent.action.PUSH

com.duokan.reader.domain.ad.AppInstallReceiver

android.intent.action.PACKAGE_INSTALL
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.duokan.reader.domain.ad.AppDownloadReceiver

com.xiaomi.market.DOWNLOAD_INSTALL_RESULT

Services

com.duokan.reader.domain.cloud.push.DkPushService

com.xiaomi.xmsf.push.SCAN

com.duokan.reader.DkPushSDKService

com.duokan.reader.B59C777C
com.duokan.reader.4DE0E45F
com.duokan.reader.E133825C
com.duokan.reader.FAD62258
com.duokan.reader.3169CF54
com.duokan.reader.0236A2DE
com.duokan.reader.0089E776
com.duokan.reader.4C874B41
com.duokan.reader.CC8E9876
com.duokan.reader.E924B022
com.duokan.reader.96DE44E9
com.duokan.reader.C45DE8DD
com.duokan.reader.2349EB31
com.duokan.reader.AC882BF7
com.duokan.reader.2C1EF09C
com.duokan.reader.BA12C19F

com.xiaomi.payment.PaymentService

miuipub.intent.action.PAYMENT

com.xiaomi.passport.MiPassportUIControllerService

com.xiaomi.account.action.UI_CONTROLLER_SERVICE

com.xiaomi.passport.accountmanager.MiAuthenticatorService

com.xiaomi.accounts.AccountAuthenticator
unicom_channel_resource.dat
.apk android

com.xiaowo.resourcepro

Android Permissions

5cb3ddd9f55885249f662637ec27b745_JaffaCakes118

Permissions

com.duokan.reader.permission.MIPUSH_RECEIVE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REORDER_TASKS

com.xiaomi.xmsf.permission.PAYMENT

android.permission.CAMERA

android.permission.GET_TASKS

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.BLUETOOTH

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_DOWNLOAD_MANAGER

com.xiaomi.vip.permission.SERVICE

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.INTERACT_ACROSS_USERS

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.MANAGE_USERS

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.CHANGE_NETWORK_STATE

com.xiaomi.passport.permission.PASSPORT_UI_CONTROLLER_SERVICE

com.xiaomi.permission.CLOUD_MANAGER

Sharing

General

Malware Config

Signatures

Files

com.duokan.reader

com.duokan.reader.DkReaderActivity

Activities

com.duokan.reader.DkReaderActivity

com.duokan.reader.ui.general.ServerSettingActivity

com.duokan.reader.DkPushActivity

com.xiaomi.payment.CommonEntryActivity

com.xiaomi.passport.ui.LoginActivity

com.xiaomi.passport.ui.QuickLoginActivity

com.xiaomi.passport.ui.RegisterAccountActivity

com.xiaomi.passport.ui.AreaCodePickerActivity

com.xiaomi.passport.ui.AccountUnactivatedActivity

com.xiaomi.passport.ui.LicenseActivity

com.xiaomi.passport.LocalFeatures.GetStsUrlActivity

Permissions

Receivers

com.duokan.reader.domain.account.SystemAccountLogoutReceiver

com.duokan.reader.domain.cloud.push.DkPushMessageReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.assemble.control.HmsPushReceiver

com.huawei.hms.support.api.push.PushEventReceiver

com.duokan.reader.domain.ad.AppInstallReceiver

com.duokan.reader.domain.ad.AppDownloadReceiver

Services

com.duokan.reader.domain.cloud.push.DkPushService

com.duokan.reader.DkPushSDKService

com.xiaomi.payment.PaymentService

com.xiaomi.passport.MiPassportUIControllerService

com.xiaomi.passport.accountmanager.MiAuthenticatorService

com.xiaowo.resourcepro

Android Permissions

5cb3ddd9f55885249f662637ec27b745_JaffaCakes118