7011741ad31b163aceee9a99dad0d964_JaffaCakes118

General

Target

7011741ad31b163aceee9a99dad0d964_JaffaCakes118
Size

14.4MB
MD5

7011741ad31b163aceee9a99dad0d964
SHA1

b8768df85a76309afeefac6706dac34ef2642906
SHA256

bc9786ede6e73fc80461f099224d36bbf8e6a7b614c15eed57714fb7abd0c5be
SHA512

2ea0530558ed9597fc0a62a8344df0c95f3f1919ff275b58f76f4892815a06185ef4b75ebe93bdae513a9b60da3d81b2334d3bea693991335f89b6a044b1a225
SSDEEP

393216:tbWb8Xcp0/HnV3ym9qZPuLl3e+Mp0s5OtJi2nRm91OsGSyxz1a:tbYdmfV3dYmZ3e+MpjYPgYz1a

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

7011741ad31b163aceee9a99dad0d964_JaffaCakes118
.apk android arch:arm arch:x86

com.sxiaoao.egame.farmTD3

.LogActivity

Activities

.LogActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.SEND_SMS
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.VIBRATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.GET_TASKS
android.permission.DISABLE_KEYGUARD

Receivers

com.sxiaoao.egame.farmTD3.BootReceiver

android.intent.action.BOOT_COMPLETED

cn.play.dserv.DsReceiver

cn.play.dservice
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED

Services

com.xiaoao.sdk.Xservice

com.xiaoao.sdk.XserviceStartd711bdc3bb

com.xiaoao.sdk.download.DownloadService

com.xiaoao.sdk.download.DownloadServiced711bdc3bb
alipay_v3.5.2.0425.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService

Android Permissions

7011741ad31b163aceee9a99dad0d964_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.SEND_SMS

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.VIBRATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_SETTINGS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.GET_TASKS

android.permission.DISABLE_KEYGUARD

Sharing

General

Malware Config

Signatures

Files

com.sxiaoao.egame.farmTD3

.LogActivity

Activities

.LogActivity

Permissions

Receivers

com.sxiaoao.egame.farmTD3.BootReceiver

cn.play.dserv.DsReceiver

Services

com.xiaoao.sdk.Xservice

com.xiaoao.sdk.download.DownloadService

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

.AlixService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

7011741ad31b163aceee9a99dad0d964_JaffaCakes118