6551fdd141385bae94b32d079e0de37d_JaffaCakes118

General

Target

6551fdd141385bae94b32d079e0de37d_JaffaCakes118
Size

2.9MB
MD5

6551fdd141385bae94b32d079e0de37d
SHA1

51f2f238b0288d1023349d6125dfdb7160d0479f
SHA256

84b446853556d562392a444843f44f046c28d32294bad8ed13d74bf63c60cfc5
SHA512

da9cfd2d9a0b0db82b1a2cae1d015ab0b0aab556d270f7414d43ba508e9da7bbfb55f4a2b903892a1edf7a9845e8ee0dbdcf2a367248841ba65c3852b1c36285
SSDEEP

49152:7AlHrZQWU/KcvuYel0L+ROwfCHskE29XFMB6qjO4MXj/w2GUg6NF5x7fWNAJZ5uA:7gVQWUnvuYZL+FfCH6mFMxbMXjG8x7ft

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

6551fdd141385bae94b32d079e0de37d_JaffaCakes118
.apk android arch:arm

cn.ninegame.game9

.activity.UserGuideActivity

Activities

.activity.UserGuideActivity

android.intent.action.MAIN

.activity.MainActivity

android.intent.action.MAIN
com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

.UserGuideActivity

android.intent.action.MAIN

.MainActivity

android.intent.action.MAIN

.activity.MessageBoxActivity

android.intent.action.MAIN

.activity.AssistantActivity

android.intent.action.MAIN

.activity.LaunchMarketActivity

android.intent.action.VIEW

Permissions

com.android.browser.permission.READ_HISTORY_BOOKMARKS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_COARSE_UPDATES
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.BROADCAST_STICKY
android.permission.CAMERA
android.permission.CHANGE_WIFI_STATE
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.GET_PACKAGE_SIZE
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECORD_AUDIO
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.WRITE_SETTINGS
com.fede.launcher.permission.READ_SETTINGS
com.fede.launcher.permission.WRITE_SETTINGS
com.fx.launcher.permission.READ_SETTINGS
com.gau.go.launcherex.permission.READ_SETTINGS
com.gau.go.launcherex.permission.WRITE_SETTINGS
com.guiji.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.WRITE_SETTINGS
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
com.nd.android.launcher.permission.READ_SETTINGS
com.qihoo360.launcher.permission.READ_SETTINGS
com.qihoo360.launcher.permission.WRITE_SETTINGS
com.sec.android.app.twlauncher.READ_SETTINGS
com.sec.android.app.twlauncher.WRITE_SETTINGS
org.adw.launcher.permission.READ_SETTINGS
org.adw.launcher.permission.WRITE_SETTINGS
org.adwfreak.launcher.permission.READ_SETTINGS
org.adwfreak.launcher.permission.WRITE_SETTINGS

Receivers

.system.receiver.UninstallAutoDeletePacketReceiver

android.intent.action.PACKAGE_REMOVED

.system.service.CheckService

cn.ninegame.game9.system.service.CheckService

.system.receiver.BackProcessReceiver

android.intent.action.USER_PRESENT
android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.net.wifi.WIFI_STATE_CHANGED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.ANY_DATA_STATE
android.net.wifi.STATE_CHANGE
android.intent.action.PACKAGE_RESTARTED
android.intent.action.PACKAGE_DATA_CLEARED
android.intent.action.PACKAGE_REMOVED
android.intent.action.QUERY_PACKAGE_RESTART
android.intent.action.PACKAGE_INSTALL
android.intent.action.PACKAGE_REMOVED
android.intent.action.MEDIA_REMOVED
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_UNMOUNTABLE
android.intent.action.MEDIA_EJECT
android.intent.action.MEDIA_CHECKING
android.intent.action.CLOSE_SYSTEM_DIALOGS
cn.ninegame.game9.demo.finish.download

cn.ninegame.game9.module.alarm.AlarmReceiver

cn.ninegame.game9.alarm.action
cn.ninegame.game9.notify.action

cn.ninegame.game9.system.receiver.PromoteAppCompleteReceiver

android.intent.action.DOWNLOAD_COMPLETE
android.intent.action.DOWNLOAD_NOTIFICATION_CLICKED

code.widget.DownloadReceiver

android.intent.action.DOWNLOAD_COMPLETE

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
cn.ninegame.game9.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

Services

com.umeng.message.UmengService

cn.ninegame.game9.intent.action.START
cn.ninegame.game9.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2
dynamic.jar
.apk android
gdtad.jar
.apk android

Android Permissions

6551fdd141385bae94b32d079e0de37d_JaffaCakes118

Permissions

com.android.browser.permission.READ_HISTORY_BOOKMARKS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_COARSE_UPDATES

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.BROADCAST_STICKY

android.permission.CAMERA

android.permission.CHANGE_WIFI_STATE

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.GET_PACKAGE_SIZE

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.READ_LOGS

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECORD_AUDIO

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.WRITE_SETTINGS

com.fede.launcher.permission.READ_SETTINGS

com.fede.launcher.permission.WRITE_SETTINGS

com.fx.launcher.permission.READ_SETTINGS

com.gau.go.launcherex.permission.READ_SETTINGS

com.gau.go.launcherex.permission.WRITE_SETTINGS

com.guiji.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.WRITE_SETTINGS

com.huawei.android.launcher.permission.READ_SETTINGS

com.huawei.android.launcher.permission.WRITE_SETTINGS

com.nd.android.launcher.permission.READ_SETTINGS

com.qihoo360.launcher.permission.READ_SETTINGS

com.qihoo360.launcher.permission.WRITE_SETTINGS

com.sec.android.app.twlauncher.READ_SETTINGS

com.sec.android.app.twlauncher.WRITE_SETTINGS

org.adw.launcher.permission.READ_SETTINGS

org.adw.launcher.permission.WRITE_SETTINGS

org.adwfreak.launcher.permission.READ_SETTINGS

org.adwfreak.launcher.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

cn.ninegame.game9

.activity.UserGuideActivity

Activities

.activity.UserGuideActivity

.activity.MainActivity

.UserGuideActivity

.MainActivity

.activity.MessageBoxActivity

.activity.AssistantActivity

.activity.LaunchMarketActivity

Permissions

Receivers

.system.receiver.UninstallAutoDeletePacketReceiver

.system.service.CheckService

.system.receiver.BackProcessReceiver

cn.ninegame.game9.module.alarm.AlarmReceiver

cn.ninegame.game9.system.receiver.PromoteAppCompleteReceiver

code.widget.DownloadReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

Android Permissions

6551fdd141385bae94b32d079e0de37d_JaffaCakes118