6cb8700b959e537cec3a31ed10cb424d_JaffaCakes118

General

Target

6cb8700b959e537cec3a31ed10cb424d_JaffaCakes118
Size

4.1MB
MD5

6cb8700b959e537cec3a31ed10cb424d
SHA1

577416a6cd68439cb1ab233a586aa473551789d5
SHA256

2b073ecb7bd5bb4b6ab64ca010b08694367a5a83deb210a133c0ba48901325c0
SHA512

b54084ad0207c777942bbc41c7304a2e1dc69f5f62baa1da8fdbe86f5d6e2aa238e645fe8b5599f28ae08b16353867d2da1ff42e3fe90fea533018fdc6730585
SSDEEP

98304:Kh+PY6PxT1v5EJbqq7GUzZfAnpR7aU4lqJRMn5fgrsh2D:AqY6PxThuJbTCKZf4pR7aFqPe5orshQ

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

Processes:

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

6cb8700b959e537cec3a31ed10cb424d_JaffaCakes118
.apk android arch:arm

com.yidian.health

com.yidian.health.ui.guide.UserGuideActivity

Activities

com.yidian.health.ui.guide.UserGuideActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
android.permission.REORDER_TASKS
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.VIBRATE
com.xiaomi.permission.AUTH_SERVICE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.RECORD_AUDIO
com.android.launcher.permission.READ_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.READ_LOGS
com.yidian.health.permission.MIPUSH_RECEIVE

Receivers

com.yidian.health.HipuReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.DOWNLOAD_COMPLETE

com.yidian.health.push.YdPushMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

Services

6cb8700b959e537cec3a31ed10cb424d_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.GET_TASKS

android.permission.REORDER_TASKS

android.permission.GET_ACCOUNTS

android.permission.MANAGE_ACCOUNTS

android.permission.VIBRATE

com.xiaomi.permission.AUTH_SERVICE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.RECORD_AUDIO

com.android.launcher.permission.READ_SETTINGS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.READ_LOGS

com.yidian.health.permission.MIPUSH_RECEIVE

Sharing

General

Malware Config

Signatures

Files

com.yidian.health

com.yidian.health.ui.guide.UserGuideActivity

Activities

com.yidian.health.ui.guide.UserGuideActivity

Permissions

Receivers

com.yidian.health.HipuReceiver

com.yidian.health.push.YdPushMessageReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

Services

Android Permissions

6cb8700b959e537cec3a31ed10cb424d_JaffaCakes118