8acf306945cedc039fc569956740c8d1_JaffaCakes118

General

Target

8acf306945cedc039fc569956740c8d1_JaffaCakes118
Size

30.4MB
MD5

8acf306945cedc039fc569956740c8d1
SHA1

64a554489ddbc8663eb20a56cab3fc94de2e6e75
SHA256

55215f76c6bbeeb222db2233672d7342de02f3df22090c4aac3d7b69d033b743
SHA512

feae9232a45e6951ccb763f85f6393dce91b476b14494a26e0804449d5a379ab23c04895fa2bf0efaef369141fc0b1db2ae151016206ab66b09534598a0a6024
SSDEEP

786432:3ssk2xcmHN5bIg3qkMS5DffH96pOsUZ4FbTuuQCq3soRh:8SxpL7/5rfcSy2vHsG

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS

Files

8acf306945cedc039fc569956740c8d1_JaffaCakes118
.apk android arch:arm

com.gamelion.MonsterShooter

com.idreamsky.gamecenter.ui.SkynetSplashActivity

Activities

com.idreamsky.gamecenter.ui.SkynetSplashActivity

android.intent.action.MAIN
android.intent.action.CHINAMOBILE_OMS_GAME

Permissions

android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.VIBRATE
com.android.vending.BILLING
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.SEND_SMS

Receivers

com.gamelion.inapp.google.BillingReceiver

com.android.vending.billing.IN_APP_NOTIFY
com.android.vending.billing.RESPONSE_CODE
com.android.vending.billing.PURCHASE_STATE_CHANGED

Services
com.alipay.android.app.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

Android Permissions

8acf306945cedc039fc569956740c8d1_JaffaCakes118

Permissions

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.VIBRATE

com.android.vending.BILLING

android.permission.ACCESS_WIFI_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.SEND_SMS

Sharing

General

Malware Config

Signatures

Files

com.gamelion.MonsterShooter

com.idreamsky.gamecenter.ui.SkynetSplashActivity

Activities

com.idreamsky.gamecenter.ui.SkynetSplashActivity

Permissions

Receivers

com.gamelion.inapp.google.BillingReceiver

Services

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

.AlixReceiver

Services

.AlixService

Android Permissions

8acf306945cedc039fc569956740c8d1_JaffaCakes118