63d3e0588dbb6ecd09706786d76ac056_JaffaCakes118

General

Target

63d3e0588dbb6ecd09706786d76ac056_JaffaCakes118
Size

17.1MB
MD5

63d3e0588dbb6ecd09706786d76ac056
SHA1

d3497ab8f9d098c29c1669c52e81d0d3da5884c5
SHA256

eb40eb2932f8bbcb5c9903a7bbbeb4d9f1a432914f3a6a24a2a1f182552089ed
SHA512

4946c64a5a01a552c0ead0e4327f96dd0540afbe948696655c7613dd0b27c0537a7a4324eb7722694f7f7c7a5598d73bc31ae3ca8c59b13f1a7e324929a2e93c
SSDEEP

393216:xEv4O0M6iEYWDwCF+GUjvB7ObhnFGaLR2tzuM/DxwPaEsjV:xEvXgYWEoyvdenFGaLR2tRdwzsR

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

Processes:

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

Files

63d3e0588dbb6ecd09706786d76ac056_JaffaCakes118
.apk android arch:arm arch:x86

com.cardlink

com.cardlink.ui.StartPageActivity

Activities

com.cardlink.ui.StartPageActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.mob.tools.MobUIShell

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

cn.sharesdk.tencent.qq.ReceiveActivity

android.intent.action.VIEW

Permissions

android.permission.READ_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
getui.permission.GetuiService.com.cardlink
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.PACKAGE_USAGE_STATS
android.permission.BLUETOOTH
android.permission.RECEIVE_SMS

Receivers

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

Services

com.igexin.sdk.PushService

com.igexin.sdk.action.service.message

63d3e0588dbb6ecd09706786d76ac056_JaffaCakes118

Permissions

android.permission.READ_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.VIBRATE

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

getui.permission.GetuiService.com.cardlink

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.PACKAGE_USAGE_STATS

android.permission.BLUETOOTH

android.permission.RECEIVE_SMS

Sharing

General

Malware Config

Signatures

Files

com.cardlink

com.cardlink.ui.StartPageActivity

Activities

com.cardlink.ui.StartPageActivity

com.mob.tools.MobUIShell

cn.sharesdk.tencent.qq.ReceiveActivity

Permissions

Receivers

com.igexin.sdk.PushReceiver

Services

com.igexin.sdk.PushService

Android Permissions

63d3e0588dbb6ecd09706786d76ac056_JaffaCakes118