5ee44e26c87adb776beb43e86532e7a7_JaffaCakes118

General

Target

5ee44e26c87adb776beb43e86532e7a7_JaffaCakes118
Size

4.3MB
MD5

5ee44e26c87adb776beb43e86532e7a7
SHA1

65461fab3d4993ee8c4d0c14c70fffcdde438a55
SHA256

ba4619bff257bb4fb0e989943c5e78792dba7501e01e6666920e265982cb7d26
SHA512

b58ba251f1ced619b5b7e18111e7a705f3e7ea33358142d0c263afa0a2eb6e6615cfb89b6b6fa1da403b1a02e2c5d913890abbb04558a5e221b995f2690b6a6f
SSDEEP

98304:e4i/vFwBb+JKzqvD7z+coau3coUQEN4VqgRTY4Wl9I32sp1cQKz:hWYzq77z+PqN+qgFY7vME

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

5ee44e26c87adb776beb43e86532e7a7_JaffaCakes118
.apk android arch:arm

com.zhiqupk.root.global

com.zhiqupk.root.NewSplashActivity

Activities

com.zhiqupk.root.NewSplashActivity

android.intent.action.MAIN

com.opda.actionpoint.MainDialogActivity

android.intent.action.VIEW

com.opda.actionpoint.MainDialogActivity2

android.intent.action.VIEW

com.opda.actionpoint.activity.PreAppUninstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.PreAppInstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.GameSaveActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.GameSaveDetailActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.AdKillerActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.BootStartAppManager

android.intent.action.VIEW

com.opda.actionpoint.activity.AppInstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.AppUninstallActivity

android.intent.action.VIEW

com.surplusclear.SurplusMainActivity

android.intent.action.MAIN

com.umeng.update.UmengHtmlwebActivity

android.intent.action.VIEW

Permissions

android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.ACCESS_MTK_MMHW
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.GET_TASKS
android.permission.RESTART_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.WRITE_SETTINGS
android.permission.GET_PACKAGE_SIZE
android.permission.CLEAR_APP_CACHE
android.permission.FLASHLIGHT
android.permission.READ_LOGS
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.RECEIVE_USER_PRESENT
android.permission.BROADCAST_STICKY
android.permission.DISABLE_KEYGUARD
android.permission.INTERACT_ACROSS_USERS_FULL

Receivers

com.zhiqupk.root.InstallAppReceiver

android.intent.action.PACKAGE_ADDED

com.zhiqupk.root.receiver.AppListenerReceiver

android.intent.action.PACKAGE_ADDED

com.surplusclear.SurplusAppListenerReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED

com.zhiqupk.root.VorboseEventReceiver

com.zhiqupk.root_vorbose.event

com.umeng.update.UmengInstallReceiver

android.intent.action.PACKAGE_ADDED

com.umeng.update.UmengNetBroadCast

android.net.conn.CONNECTIVITY_CHANGE

com.umeng.update.UmengUpdateReceiver

android.intent.action.USER_PRESENT

Services

com.opda.actionpoint.service.GameModifierService

com.opda.gamemodifier

com.opda.actionpoint.service.SpeedTimeService

com.opda.speedtime

Android Permissions

5ee44e26c87adb776beb43e86532e7a7_JaffaCakes118

Permissions

android.permission.WAKE_LOCK

android.permission.CAMERA

android.permission.ACCESS_MTK_MMHW

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.GET_TASKS

android.permission.RESTART_PACKAGES

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.WRITE_SETTINGS

android.permission.GET_PACKAGE_SIZE

android.permission.CLEAR_APP_CACHE

android.permission.FLASHLIGHT

android.permission.READ_LOGS

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.RECEIVE_USER_PRESENT

android.permission.BROADCAST_STICKY

android.permission.DISABLE_KEYGUARD

android.permission.INTERACT_ACROSS_USERS_FULL

Sharing

General

Malware Config

Signatures

Files

com.zhiqupk.root.global

com.zhiqupk.root.NewSplashActivity

Activities

com.zhiqupk.root.NewSplashActivity

com.opda.actionpoint.MainDialogActivity

com.opda.actionpoint.MainDialogActivity2

com.opda.actionpoint.activity.PreAppUninstallActivity

com.opda.actionpoint.activity.PreAppInstallActivity

com.opda.actionpoint.activity.GameSaveActivity

com.opda.actionpoint.activity.GameSaveDetailActivity

com.opda.actionpoint.activity.AdKillerActivity

com.opda.actionpoint.activity.BootStartAppManager

com.opda.actionpoint.activity.AppInstallActivity

com.opda.actionpoint.activity.AppUninstallActivity

com.surplusclear.SurplusMainActivity

com.umeng.update.UmengHtmlwebActivity

Permissions

Receivers

com.zhiqupk.root.InstallAppReceiver

com.zhiqupk.root.receiver.AppListenerReceiver

com.surplusclear.SurplusAppListenerReceiver

com.zhiqupk.root.VorboseEventReceiver

com.umeng.update.UmengInstallReceiver

com.umeng.update.UmengNetBroadCast

com.umeng.update.UmengUpdateReceiver

Services

com.opda.actionpoint.service.GameModifierService

com.opda.actionpoint.service.SpeedTimeService

Android Permissions

5ee44e26c87adb776beb43e86532e7a7_JaffaCakes118