73d4575b007eabcb946b77c54ed08691_JaffaCakes118

General

Target

73d4575b007eabcb946b77c54ed08691_JaffaCakes118
Size

14.0MB
MD5

73d4575b007eabcb946b77c54ed08691
SHA1

9d9df783d50fa05da7025cfe4bb1f4d72f4d27bd
SHA256

3cebe90c223b693e68d328b218ff4685aedb2367e8c4e803439612d36d7e2002
SHA512

3b6e82b48c96f3f3a30cb942c95f457a5b605d8815af24caa5c213181357428c74d23d3184f769d75cf121240ceeb8dc7fb391b33ea6cbd212652028cede44fe
SSDEEP

393216:MYW+o6RG8SD9UTp+4rNBzaszM4VGSdFdWLPC8+2RIWc:MyG5D9UTbvbd7+75IV

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

73d4575b007eabcb946b77c54ed08691_JaffaCakes118
.apk android arch:arm arch:mips arch:mips64 arch:x86

in.huohua.Yuki

in.huohua.Yuki.app.SplashActivity

Activities

in.huohua.Yuki.app.SplashActivity

android.intent.action.MAIN

in.huohua.Yuki.app.SchemaActivity

android.intent.action.VIEW

in.huohua.Yuki.app.WebViewActivity

android.intent.action.VIEW

in.huohua.Yuki.widget.ShareableWebView

android.intent.action.VIEW

in.huohua.Yuki.share.weibo.WeiboApp

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.REORDER_TASKS
android.permission.INTERNET
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.RECORD_AUDIO
getui.permission.GetuiService
android.permission.CHANGE_CONFIGURATION
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
in.huohua.Yuki.VISIT_ACTIVITY
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT

Receivers

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
com.igexin.sdk.action.pushmanager

com.igexin.getuiext.service.PayloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.etVyv7RHJ28BqN3KKCtKJ6

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

in.huohua.Yuki.receiver.PushReceiver

com.igexin.sdk.action.0TRgi9xE5j5L3ScZLP4GH8

in.huohua.Yuki.receiver.PhoneCallStateBroadcastReceiver

android.intent.action.PHONE_STATE

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
in.huohua.Yuki.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

Services

com.umeng.message.UmengService

in.huohua.Yuki.intent.action.START
in.huohua.Yuki.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2

Android Permissions

73d4575b007eabcb946b77c54ed08691_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.READ_LOGS

android.permission.READ_PHONE_STATE

android.permission.REORDER_TASKS

android.permission.INTERNET

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.RECORD_AUDIO

getui.permission.GetuiService

android.permission.CHANGE_CONFIGURATION

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

com.sec.android.provider.badge.permission.READ

com.sec.android.provider.badge.permission.WRITE

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.UPDATE_SHORTCUT

com.sonyericsson.home.permission.BROADCAST_BADGE

com.anddoes.launcher.permission.UPDATE_COUNT

in.huohua.Yuki.VISIT_ACTIVITY

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

in.huohua.Yuki

in.huohua.Yuki.app.SplashActivity

Activities

in.huohua.Yuki.app.SplashActivity

in.huohua.Yuki.app.SchemaActivity

in.huohua.Yuki.app.WebViewActivity

in.huohua.Yuki.widget.ShareableWebView

in.huohua.Yuki.share.weibo.WeiboApp

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.igexin.sdk.PushReceiver

com.igexin.getuiext.service.PayloadReceiver

com.igexin.download.DownloadReceiver

in.huohua.Yuki.receiver.PushReceiver

in.huohua.Yuki.receiver.PhoneCallStateBroadcastReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

Android Permissions

73d4575b007eabcb946b77c54ed08691_JaffaCakes118