65dcb4917f171da21e4673a9add0e55b_JaffaCakes118

General

Target

65dcb4917f171da21e4673a9add0e55b_JaffaCakes118
Size

30.4MB
MD5

65dcb4917f171da21e4673a9add0e55b
SHA1

d22aa0897b8d70522d44dd091505a7c6c45f692e
SHA256

38f254aebefd53bd13f520fd509058bd80edfdff557e1717c11aa5d22a04fe4a
SHA512

d04d86a40cd84ad858800e38736617ac9179e971f399ca582ef30f13f7f18100429c28ab0dd0d50dbfba5d31cce3b72c0f4ddd1d1d906758b522637dbe4f080a
SSDEEP

786432:phJnx5+kyBOt1TWZQowhqklzz1FgZQe5U/KL/O67E:pLx0AFWy6Uzz1Fbe5i6A

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

Processes:

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

65dcb4917f171da21e4673a9add0e55b_JaffaCakes118
.apk android arch:arm

com.shuqi.controller

com.shuqi.activity.SplashActivity

Activities

com.shuqi.activity.SplashActivity

android.intent.action.MAIN

com.shuqi.checkin.CheckInActivity

android.intent.action.VIEW
android.intent.action.NAV.ACTION

com.shuqi.service.external.SchemeActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.uc.browser.competeincsdk.BaiduActivity

com.uc.baidu.v1.action.SHORTCUT

com.shuqi.controller.WBShareActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.shuqi.payment.recharge.service.qqwalletpay.RechargeQQWalletActivity

android.intent.action.VIEW

com.alibaba.wireless.security.framework.SGProxyActivity

com.wireless.security.open.framework.DLProxyActivity.VIEW

com.shuqi.live.LiveSettingActivity

android.intent.action.VIEW
android.intent.action.NAV.ACTION

com.shuqi.live.LiveChannelActivity

android.intent.action.VIEW
android.intent.action.NAV.ACTION

com.shuqi.live.LiveRePlayActivity

android.intent.action.VIEW
android.intent.action.NAV.ACTION

com.shuqi.live.LiveListActivity

android.intent.action.VIEW
android.intent.action.NAV.ACTION

com.shuqi.live.LiveDJPurchaseHistoryActivity

android.intent.action.VIEW
android.intent.action.NAV.ACTION

com.shuqi.live.LivingAwardActivity

android.intent.action.VIEW
android.intent.action.NAV.ACTION

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SETTINGS
android.permission.EXPAND_STATUS_BAR
android.permission.VIBRATE
com.htc.launcher.permission.READ_SETTINGS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
com.sonyericsson.home.permission.BROADCAST_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
com.google.android.launcher.permission.READ_SETTINGS
com.google.android.launcher.permission.WRITE_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.htc.launcher.permission.WRITE_SETTINGS
com.sec.android.app.twlauncher.WRITE_SETTINGS
com.sec.android.app.twlauncher.READ_SETTINGS
org.adw.launcher.permission.READ_SETTINGS
org.adw.launcher.permission.WRITE_SETTINGS
org.adwfreak.launcher.permission.READ_SETTINGS
org.adwfreak.launcher.permission.WRITE_SETTINGS
com.gau.go.launcherex.permission.READ_SETTINGS
com.gau.go.launcherex.permission.WRITE_SETTINGS
com.fede.launcher.permission.READ_SETTINGS
com.fede.launcher.permission.WRITE_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
com.nd.android.launcher.permission.READ_SETTINGS
com.nd.android.launcher.permission.WRITE_SETTINGS
com.android.mylauncher.permission.READ_SETTINGS
com.android.mylauncher.permission.WRITE_SETTINGS
com.huawei.launcher.permission.READ_SETTINGS
com.huawei.launcher.permission.WRITE_SETTINGS
com.mx.launcher.permission.READ_SETTINGS
com.mx.launcher.permission.WRITE_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
com.aliyun.homeshell.permission.WRITE_SETTINGS
com.aliyun.homeshell.permission.READ_SETTINGS
com.lenovo.launcher.permission.READ_SETTINGS
com.lenovo.launcher.permission.WRITE_SETTINGS
com.bbk.launcher2.permission.READ_SETTINGS
com.bbk.launcher2.permission.WRITE_SETTINGS
com.iLoong.permission.WRITE_SETTINGS
com.iLoong.permission.READ_SETTINGS
cn.nubia.launcher.permission.WRITE_SETTINGS
cn.nubia.launcher.permission.READ_SETTINGS
com.smartisanos.launcher.WRITE_DATABASE
com.smartisanos.launcher.READ_DATABASE
com.smartisanos.launcher.data.ExportDataProvider
com.anddoes.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.WRITE_SETTINGS
com.teslacoilsw.launcher.permission.WRITE_SETTINGS
com.teslacoilsw.launcher.permission.READ_SETTINGS
com.meizu.flyme.launcher.permission.READ_SETTINGS
com.meizu.flyme.launcher.permission.WRITE_SETTINGS
com.ktouch.launcher.permission.WRITE_SETTINGS
com.ktouch.launcher.permission.READ_SETTINGS
com.ztemt.launcher.permission.WRITE_SETTINGS
com.zte.lqsoft.launcher.permission.READ_SETTINGS
com.zte.lqsoft.launcher.permission.WRITE_SETTINGS
com.ztemt.launcher.permission.READ_SETTINGS
com.baoruan.launcher2.permission.WRITE_SETTINGS
com.baoruan.launcher2.permission.READ_SETTINGS
com.fineos.launcher.permission.READ_SETTINGS
com.fineos.launcher.permission.WRITE_SETTINGS
telecom.mdesk.permission.WRITE_SETTINGS
telecom.mdesk.permission.READ_SETTINGS
com.ibingo.launcher.permission.WRITE_SETTINGS
com.ibingo.launcher.permission.READ_SETTINGS
com.zui.launcher.permission.WRITE_SETTINGS
com.qihoo360.screenlock.permission.READ_LOCAL_THEME
com.zui.launcher.permission.READ_SETTINGS
com.qihoo360.screenlock.permission.WRITE_LOCAL_THEME
com.zte.mifavor.launcher.permission.WRITE_SETTINGS
com.nokia.homescreen.permission.FASTLANE
com.qihoo360.launcher.permission.READ_SETTINGS
com.qihoo360.launcher.permission.WRITE_SETTINGS
com.zte.mifavor.launcher.permission.READ_SETTINGS
com.lo.launcher.permission.READ_SETTINGS
com.lo.launcher.permission.WRITE_SETTINGS
com.android.tpwlauncher2.permission.WRITE_SETTINGS
com.android.sprdlauncher1.permission.READ_SETTINGS
com.android.tpwlauncher2.permission.READ_SETTINGS
com.android.sprdlauncher1.permission.WRITE_SETTINGS
com.s.launcher.permission.WRITE_SETTINGS
com.s.launcher.permission.READ_SETTINGS
com.zte.mobile.ZteLauncher3D.permission.READ_SETTINGS
com.android.launcher23.permission.READ_SETTINGS
com.mgyun.permission.READ_SETTINGS
com.asus.launcher3.permission.READ_SETTINGS
com.tsf.shell.permission.READ_SETTINGS
com.mgyun.permission.WRITE_SETTINGS
com.zte.mobile.ZteLauncher3D.permission.WRITE_SETTINGS
com.asus.launcher3.permission.WRITE_SETTINGS
com.tsf.shell.permission.WRITE_SETTINGS
com.android.launcher23.permission.WRITE_SETTINGS
com.tul.aviate.permission.READ_SETTINGS
com.lenovo.launcherhdmarket.permission.READ_SETTINGS
com.hola.launcher.permission.READ_SETTINGS
com.qihoo360.home.permission.WRITE_SETTINGS
com.slim.slimlauncher.permission.READ_SETTINGS
com.tul.aviate.permission.WRITE_SETTINGS
com.huaqin.launcherEx.permission.WRITE_SETTINGS
com.hola.launcher.permission.WRITE_SETTINGS
com.huaqin.launcherEx.permission.READ_SETTINGS
com.epic.launcher.tw.permission.WRITE_SETTINGS
com.slim.slimlauncher.permission.WRITE_SETTINGS
com.epic.launcher.tw.permission.READ_SETTINGS
com.android.lewalauncher.permission.READ_SETTINGS
com.qihoo360.home.permission.READ_SETTINGS
com.lenovo.launcherhdmarket.permission.WRITE_SETTINGS
com.android.lewalauncher.permission.WRITE_SETTINGS
com.Dean.launcher.permission.READ_SETTINGS
app.cobo.launcher.permission.WRITE_SETTINGS
com.alphalp.launcher.permission.WRITE_SETTINGS
com.lollipop.launcher.permission.READ_SETTINGS
com.l.launcher.permission.READ_SETTINGS
com.dlto.atom.launcher.permission.READ_SETTINGS
com.lge.launcher.permission.READ_SETTINGS
com.android.sprdlauncher2.permission.WRITE_SETTINGS
com.konka.launcher2.permission.READ_SETTINGS
com.alphalp.launcher.permission.READ_SETTINGS
com.mycheering.launcher.permission.WRITE_SETTINGS
com.microsoft.launcher.permission.READ_SETTINGS
com.dlto.atom.launcher.permission.WRITE_SETTINGS
com.l.launcher.permission.WRITE_SETTINGS
com.Dean.launcher.permission.WRITE_SETTINGS
com.nicelauncher.lolauncher.permission.READ_SETTINGS
com.nicelauncher.lolauncher.permission.WRITE_SETTINGS
com.konka.launcher2.permission.WRITE_SETTINGS
com.mycheering.launcher.permission.READ_SETTINGS
com.android.sprdlauncher2.permission.READ_SETTINGS
com.lollipop.launcher.permission.WRITE_SETTINGS
com.microsoft.launcher.permission.WRITE_SETTINGS
com.jui.launcher3.permission.READ_SETTINGS
com.jui.launcher3.permission.WRITE_SETTINGS
app.cobo.launcher.permission.READ_SETTINGS
android.permission.GET_ACCOUNTS
android.permission.CAMERA
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_LOGS
android.permission.RECORD_AUDIO
android.permission.READ_SYNC_STATS
android.permission.READ_SYNC_SETTINGS
android.permission.WRITE_SYNC_SETTINGS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.INTERACT_ACROSS_USERS
android.permission.CALL_PHONE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.SET_DEBUG_APP
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
com.shuqi.controller.permission.MIPUSH_RECEIVE
android.permission.CHANGE_WIFI_STATE
android.permission.BLUETOOTH
android.permission.READ_SETTINGS

Receivers

com.taobao.atlas.update.AwoPatchReceiver

com.taobao.atlas.intent.PATCH_APP
com.taobao.atlas.intent.DEX_PATCH_APP
com.taobao.atlas.intent.ROLLBACK_PATCH
com.taobao.atlas.intent.ROLLBACK_DEX_PATCH

com.shuqi.service.ConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.shuqi.service.AlarmManagerReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.shuqi.service.PushAppEventReceiver

com.shuqi.pushApp.action.CLEAR
com.shuqi.pushApp.action.CLICK

com.shuqi.y4.voice.manager.MediaButtonReceiver

android.intent.action.MEDIA_BUTTON

com.shuqi.service.push.PushClickReceiver

com.broadcast.action.clear
com.broadcast.action.click

com.shuqi.service.push.PushMessageReceiver

com.shuqi.push.receiver

com.shuqi.push.NotifyPushReceive

com.shuqi.push.action.start
com.shuqi.push.action.starttask
com.shuqi.push.action.startwatch

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.shuqi.controller.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

org.android.agoo.xiaomi.MiPushBroadcastReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

org.android.agoo.huawei.HuaWeiReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH
com.huawei.intent.action.PUSH_STATE

com.uc.browser.competeincsdk.UCInstallReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.shuqi.live.QALConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.tencent.qalsdk.QALBroadcastReceiver

com.tencent.qalsdk.broadcast.qal

com.tencent.qalsdk.core.NetConnInfoCenter

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

Services

com.taobao.atlas.dexmerge.DexMergeService

com.taobao.atlas.dexmerge.DexMergeService

com.shuqi.controller.TaobaoIntentService

org.agoo.android.intent.action.RECEIVE

com.shuqi.push.sync.AuthenticationService

android.accounts.AccountAuthenticator

com.shuqi.push.sync.SyncService

android.content.SyncAdapter
com.shuqi.task

com.taobao.agoo.TaobaoMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.taobao.android.sso.internal.AuthenticationService

android.accounts.AccountAuthenticator

com.taobao.android.sso.internal.AlipayAuthenticationService

android.accounts.AccountAuthenticator

com.shuqi.live.LiveRemoteService

com.action.shuqi.live
gdtadv2.jar
.apk android
skin.apk
.apk android

com.shuqi.skin

Android Permissions

65dcb4917f171da21e4673a9add0e55b_JaffaCakes118

Permissions

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.READ_EXTERNAL_STORAGE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_SETTINGS

android.permission.EXPAND_STATUS_BAR

android.permission.VIBRATE

com.htc.launcher.permission.READ_SETTINGS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

com.sonyericsson.home.permission.BROADCAST_BADGE

com.huawei.android.launcher.permission.CHANGE_BADGE

com.huawei.android.launcher.permission.READ_SETTINGS

com.huawei.android.launcher.permission.WRITE_SETTINGS

com.google.android.launcher.permission.READ_SETTINGS

com.google.android.launcher.permission.WRITE_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

com.htc.launcher.permission.WRITE_SETTINGS

com.sec.android.app.twlauncher.WRITE_SETTINGS

com.sec.android.app.twlauncher.READ_SETTINGS

org.adw.launcher.permission.READ_SETTINGS

org.adw.launcher.permission.WRITE_SETTINGS

org.adwfreak.launcher.permission.READ_SETTINGS

org.adwfreak.launcher.permission.WRITE_SETTINGS

com.gau.go.launcherex.permission.READ_SETTINGS

com.gau.go.launcherex.permission.WRITE_SETTINGS

com.fede.launcher.permission.READ_SETTINGS

com.fede.launcher.permission.WRITE_SETTINGS

com.oppo.launcher.permission.READ_SETTINGS

com.oppo.launcher.permission.WRITE_SETTINGS

com.nd.android.launcher.permission.READ_SETTINGS

com.nd.android.launcher.permission.WRITE_SETTINGS

com.android.mylauncher.permission.READ_SETTINGS

com.android.mylauncher.permission.WRITE_SETTINGS

com.huawei.launcher.permission.READ_SETTINGS

com.huawei.launcher.permission.WRITE_SETTINGS

com.mx.launcher.permission.READ_SETTINGS

com.mx.launcher.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.shuqi.controller

com.shuqi.activity.SplashActivity

Activities

com.shuqi.activity.SplashActivity

com.shuqi.checkin.CheckInActivity

com.shuqi.service.external.SchemeActivity

com.uc.browser.competeincsdk.BaiduActivity

com.shuqi.controller.WBShareActivity

com.tencent.tauth.AuthActivity

com.shuqi.payment.recharge.service.qqwalletpay.RechargeQQWalletActivity

com.alibaba.wireless.security.framework.SGProxyActivity

com.shuqi.live.LiveSettingActivity

com.shuqi.live.LiveChannelActivity

com.shuqi.live.LiveRePlayActivity

com.shuqi.live.LiveListActivity

com.shuqi.live.LiveDJPurchaseHistoryActivity

com.shuqi.live.LivingAwardActivity

Permissions

Receivers

com.taobao.atlas.update.AwoPatchReceiver

com.shuqi.service.ConnectionChangeReceiver

com.shuqi.service.AlarmManagerReceiver

com.shuqi.service.PushAppEventReceiver

com.shuqi.y4.voice.manager.MediaButtonReceiver

com.shuqi.service.push.PushClickReceiver

com.shuqi.service.push.PushMessageReceiver

com.shuqi.push.NotifyPushReceive

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

org.android.agoo.xiaomi.MiPushBroadcastReceiver

org.android.agoo.huawei.HuaWeiReceiver

com.uc.browser.competeincsdk.UCInstallReceiver

com.shuqi.live.QALConnectionChangeReceiver

com.tencent.qalsdk.QALBroadcastReceiver

com.tencent.qalsdk.core.NetConnInfoCenter

Services

com.taobao.atlas.dexmerge.DexMergeService

com.shuqi.controller.TaobaoIntentService

com.shuqi.push.sync.AuthenticationService

com.shuqi.push.sync.SyncService

com.taobao.agoo.TaobaoMessageIntentReceiverService

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.taobao.android.sso.internal.AuthenticationService

com.taobao.android.sso.internal.AlipayAuthenticationService

com.shuqi.live.LiveRemoteService

com.shuqi.skin

Android Permissions

65dcb4917f171da21e4673a9add0e55b_JaffaCakes118