68dd8da01f595c5af5114c9fbc6c8fbd_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

68dd8da01f595c5af5114c9fbc6c8fbd_JaffaCakes118
Size

9.6MB
MD5

68dd8da01f595c5af5114c9fbc6c8fbd
SHA1

4fd585284ed5e77c48e6ecbc60d66f2d20be3a65
SHA256

70c6d251a723e78f154939a7e2cdf5cd9016d6f7c55e4f2ce491410643d09a7e
SHA512

44c4129ec58e5bcc828e26f9878268e2ac9077eab61ce4c4d580e5c1fe33ce00b35ea1dcaf4fdfe3fede94ae14c28579be2eba1755e02d485fd2fabbdfcfb9ab
SSDEEP

196608:zXRvmn2F5F1IuE4ZuTMfbF323RDCmpyOOuLN9cxDKCvRUE+xPnQVRBIXdJzkhM:zhvc2F5F1IuE4uMDMhDxyOhhqdSNnQO9

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

Processes:

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 10 IoCs

Processes:

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

68dd8da01f595c5af5114c9fbc6c8fbd_JaffaCakes118
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.luyun.quicklygrab

com.luyun.quicklygrab.ui.SplashActivity

Activities

com.luyun.quicklygrab.ui.SplashActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.luyun.quicklygrab.ui.WeiboShareActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.alibaba.alibclinkpartner.ui.ALPEntranceActivity

com.alibaba.intent.action.GETWAY

com.alibaba.baichuan.android.trade.ui.AlibcWebViewActivity

COM_TAOBAO_TAE_SDK_TRADE_WEB_VIEW_ACTION

com.alibaba.baichuan.android.trade.ui.AlibcBackActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.CHANGE_WIFI_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.READ_LOGS
android.permission.DISABLE_KEYGUARD
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.WRITE_SETTINGS
android.permission.READ_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.BLUETOOTH
android.permission.READ_SETTINGS
android.permission.CHANGE_CONFIGURATION
android.permission.RUN_INSTRUMENTATION

Receivers

com.luyun.quicklygrab.receiver.DownloadBroadcatReceiver

android.intent.action.DOWNLOAD_COMPLETE

com.alibaba.sdk.android.feedback.impl.NetworkChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

Services

com.luyun.quicklygrab.service.QHBService

android.accessibilityservice.AccessibilityService

anetwork.channel.aidl.NetworkService

anetwork.channel.aidl.IRemoteNetworkGetter

mtopsdk.xstate.XStateService

mtopsdk.xstate.aidl.IXState
BannerPlugin-3.4.apk
.apk android

com.alimama.mobile.sdk.banner
CommonPlugin-5.0.apk
.apk android

com.taobao.munion.plugin.cm
WelcomePlugin-3.6.apk
.apk android

com.alimama.mobile.sdk.welcome
gdtadv2.jar
.apk android

Android Permissions

68dd8da01f595c5af5114c9fbc6c8fbd_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.CHANGE_WIFI_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.READ_LOGS

android.permission.DISABLE_KEYGUARD

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.WRITE_SETTINGS

android.permission.READ_EXTERNAL_STORAGE

android.permission.GET_TASKS

android.permission.BLUETOOTH

android.permission.READ_SETTINGS

android.permission.CHANGE_CONFIGURATION

android.permission.RUN_INSTRUMENTATION

Sharing

General

Malware Config

Signatures

Files

com.luyun.quicklygrab

com.luyun.quicklygrab.ui.SplashActivity

Activities

com.luyun.quicklygrab.ui.SplashActivity

com.tencent.tauth.AuthActivity

com.luyun.quicklygrab.ui.WeiboShareActivity

com.alibaba.alibclinkpartner.ui.ALPEntranceActivity

com.alibaba.baichuan.android.trade.ui.AlibcWebViewActivity

com.alibaba.baichuan.android.trade.ui.AlibcBackActivity

Permissions

Receivers

com.luyun.quicklygrab.receiver.DownloadBroadcatReceiver

com.alibaba.sdk.android.feedback.impl.NetworkChangeReceiver

Services

com.luyun.quicklygrab.service.QHBService

anetwork.channel.aidl.NetworkService

mtopsdk.xstate.XStateService

com.alimama.mobile.sdk.banner

com.taobao.munion.plugin.cm

com.alimama.mobile.sdk.welcome

Android Permissions

68dd8da01f595c5af5114c9fbc6c8fbd_JaffaCakes118