68bf4cd2ba41bde56a4076065f1ab605_JaffaCakes118

General

Target

68bf4cd2ba41bde56a4076065f1ab605_JaffaCakes118
Size

30.4MB
MD5

68bf4cd2ba41bde56a4076065f1ab605
SHA1

ffccc0cc5a67d7087ad93249be630810344058ee
SHA256

fba0479b77bf2314875ca21896792f0d8a177c9594a501c08179c25d3bb7834d
SHA512

d4f529d4be7a8f0b584fa4252a86cef579873c84f575137ccd8a3b2be98425c0401ad4d4343941408741948f8ef2669569db576c5e20f94e25b259b2680d5057
SSDEEP

786432:7gO6Lk2xcmHN5bIg3qkMW5DffH96p+sUZzg/J:UNVxpL7T5rfcuze

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

Processes:

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS

Files

68bf4cd2ba41bde56a4076065f1ab605_JaffaCakes118
.apk android arch:arm

com.gamelion.MonsterShooter

com.idreamsky.gamecenter.ui.SkynetSplashActivity

Activities

com.idreamsky.gamecenter.ui.SkynetSplashActivity

android.intent.action.MAIN
android.intent.action.CHINAMOBILE_OMS_GAME

Permissions

android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.VIBRATE
com.android.vending.BILLING
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.SEND_SMS

Receivers

com.gamelion.inapp.google.BillingReceiver

com.android.vending.billing.IN_APP_NOTIFY
com.android.vending.billing.RESPONSE_CODE
com.android.vending.billing.PURCHASE_STATE_CHANGED

Services
com.alipay.android.app.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

68bf4cd2ba41bde56a4076065f1ab605_JaffaCakes118

Permissions

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.VIBRATE

com.android.vending.BILLING

android.permission.ACCESS_WIFI_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.SEND_SMS

Sharing

General

Malware Config

Signatures

Files

com.gamelion.MonsterShooter

com.idreamsky.gamecenter.ui.SkynetSplashActivity

Activities

com.idreamsky.gamecenter.ui.SkynetSplashActivity

Permissions

Receivers

com.gamelion.inapp.google.BillingReceiver

Services

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

.AlixReceiver

Services

.AlixService

Android Permissions

68bf4cd2ba41bde56a4076065f1ab605_JaffaCakes118