8b795dbb9e495d81c6b6bd50e8598e50_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8b795dbb9e495d81c6b6bd50e8598e50_JaffaCakes118
Size

11.7MB
MD5

8b795dbb9e495d81c6b6bd50e8598e50
SHA1

a328c7e50a3be7e13247e6d0c28b25ca0c4beee5
SHA256

b5212e2fe8e78bbe3c3cb498f0a91cefb7f35fea3cbc8557e4eb8614c598bf41
SHA512

ea7069e17ac05f93e276be1ce35860727afc1e77b7fe8f5234af6a6931752eeb9206fee0e418fea53f96758f953565f5f5ffd31a481d34ddb46c10d71366a8db
SSDEEP

196608:QUeW22IwunYMwqrQ6IO4QX1tfVoMnqqbigs0jF58lsEtwu+942A7uZNkwZCTfB:WJnYMwqrQ6IO4QX13o7qbvxmlHShptN0

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

8b795dbb9e495d81c6b6bd50e8598e50_JaffaCakes118
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

com.cmi.jegotrip

com.cmi.jegotrip.ui.LauncherActivity

Activities

com.cmi.jegotrip.ui.LauncherActivity

android.intent.action.MAIN

com.cmi.jegotrip.ui.BottomTabsActivity

action.intent.jegotrip.ACTIVITY_MAIN

com.cmi.jegotrip.ui.CountryCodeList

action.com.cmi.jegotrip.COUNTRY_CODE_LIST

com.cmi.jegotrip.ui.AboutActivity

action.com.cmi.jegotrip.ABOUT

com.cmi.jegotrip.ui.CountrySearchListActivity

action.com.cmi.jegotrip.COUNTRY_SEARCH_LIST

com.cmi.jegotrip.ui.PriceActivity

action.com.cmi.jegotrip.PRICE

com.cmi.jegotrip.ui.HelperActivity

action.com.cmi.jegotrip.HELPER

com.cmi.jegotrip.ui.MyHelperActivity

action.com.cmi.jegotrip.MYHELPER

com.cmi.jegotrip.ui.HelperDetailActivity

action.com.cmi.jegotrip.HELPER_DETAIL

com.cmi.jegotrip.ui.CalcActivity

action.com.cmi.jegotrip.CALC

com.cmi.jegotrip.ui.RoamingAreaListActivity

action.com.cmi.jegotrip.ROAMING_AREA_LIST

com.cmi.jegotrip.ui.TrafficPackageIntroActivity

action.com.cmi.jegotrip.TRAFFIC_PACKAGE_INTRODUCTION

com.cmi.jegotrip.ui.LegalNoticeActivity

action.com.cmi.jegotrip.LEGAL_NOTICE

com.cmi.jegotrip.ui.RoamingTrafficActivity

action.com.cmi.jegotrip.ROAMING_TRAFFIC

com.cmi.jegotrip.ui.HistoryListActivity

action.com.cmi.jegotrip.HISTORY_LIST

com.cmi.jegotrip.ui.HistoryReportActivity

action.com.cmi.jegotrip.HISTORY_REPORT

com.cmi.jegotrip.ui.SharePopupWindow

action.com.cmi.jegotrip.SHARE

com.cmi.jegotrip.ui.SettingActivity

action.com.cmi.jegotrip.SETTING

com.cmi.jegotrip.ui.LoginHomeActivity

action.com.cmi.jegotrip.LOGIN_HOME

com.cmi.jegotrip.ui.LoginByUserNameActivity

action.com.cmi.jegotrip.LOGIN_BY_USERNAME

com.cmi.jegotrip.ui.RegisterByPhoneActivity

action.com.cmi.jegotrip.REGISTER_BY_PHONE

com.cmi.jegotrip.ui.FoundPWOnPhoneActivity

action.com.cmi.jegotrip.FOUND_PASSWORD_BY_PHONE

com.cmi.jegotrip.ui.FoundPWOnEmailActivity

action.com.cmi.jegotrip.FOUND_PASSWORD_BY_EMAIL

com.cmi.jegotrip.ui.SetPasswordActivity

action.com.cmi.jegotrip.PASSWORD_SETTING

com.cmi.jegotrip.ui.AlertPasswordOnSettActivity

action.com.cmi.jegotrip.ALERT_PASSWORD_NORMAL

com.cmi.jegotrip.ui.SetPasswordOnSettActivity

action.com.cmi.jegotrip.SET_PASSWORD_NORMAL

com.cmi.jegotrip.ui.AlertUserNameActivity

action.com.cmi.jegotrip.USERNAME_ALERT

com.cmi.jegotrip.ui.BindPhoneActivity

action.com.cmi.jegotrip.BIND_PHONE

com.cmi.jegotrip.ui.BindEmailActivity

action.com.cmi.jegotrip.BIND_EMAIL

com.cmi.jegotrip.ui.ServiceContractActivity

action.com.cmi.jegotrip.SERVICE_CONTRACT

com.cmi.jegotrip.ui.DialerActivity

action.com.cmi.jegotrip.DIALER

com.cmi.jegotrip.ui.PackageDetailActivity

action.com.cmi.jegotrip.PACKAGE_DETAIL

com.cmi.jegotrip.ui.OrderConfirmationActivity

action.com.cmi.jegotrip.ORDER_CONFIRMATION

com.cmi.jegotrip.ui.OrderDetailActivity

action.com.cmi.jegotrip.ORDER_DETAIL

com.cmi.jegotrip.ui.FlowWorldActivity

action.com.cmi.jegotrip.FLOW_WORLD

com.cmi.jegotrip.ui.UserMessageFlowActivity

action.com.cmi.jegotrip.USER_MESSAGE_FLOW

com.cmi.jegotrip.ui.AddBackCardActivity

action.com.cmi.jegotrip.ADD_BANK_CARD

com.cmi.jegotrip.ui.ValidateBankInfoActivity

action.com.cmi.jegotrip.VALIDATE_BANKCARD_INFO

com.cmi.jegotrip.ui.PayDealActivity

action.com.cmi.jegotrip.PAY_DEAL_ACTIVITY

com.cmi.jegotrip.ui.PayFinishActivity

action.com.cmi.jegotrip.PAY_FINISH_ACTIVITY

com.cmi.jegotrip.ui.FlowChartActivity

action.com.cmi.jegotrip.FLOW_CHART_ACTIVITY

com.cmi.jegotrip.ui.SupportBankActivity

action.com.cmi.jegotrip.SUPPORT_BANK_ACTIVITY

com.cmi.jegotrip.ui.InstructionManualActivity

action.com.cmi.jegotrip.INSTRUCTION_MANUAL_ACTIVITY

com.cmi.jegotrip.ui.TransWebViewActivity

action.com.cmi.jegotrip.INSTRUCTION_TRANS_WEBVIEW

com.cmi.jegotrip.ui.MyRoamingDataActivity

action.com.cmi.jegotrip.MY_ROAMING_DATA_ACTIVITY

com.cmi.jegotrip.ui.LoadWebOutActivity

action.com.cmi.jegotrip.LOADWEB_OUT_ACTIVITY

Permissions

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_LOGS
android.permission.READ_CONTACTS
android.permission.CALL_PHONE
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_SETTINGS
android.permission.GET_TASKS

Receivers

com.cmi.jegotrip.util.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.cmi.jegotrip.transation.DataReceiver

android.intent.action.BOOT_COMPLETED
com.cmi.jegotrip.transaction.IMPORT_DATA

com.cmi.jegotrip.recevier.NetStateReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.cmi.jegotrip.recevier.TabSelectReceiver

android.intent.action.TAB_SELECT

com.cmi.jegotrip.recevier.PaySuccessReceiver

android.intent.action.PAY_SUCCESS

com.umeng.message.SystemReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.MessageReceiver

org.agoo.android.intent.action.RECEIVE

com.umeng.message.ElectionReceiver

org.agoo.android.intent.action.ELECTION_RESULT_V4

com.umeng.message.RegistrationReceiver

com.cmi.jegotrip.intent.action.COMMAND

com.umeng.message.UmengMessageBootReceiver

android.intent.action.BOOT_COMPLETED

com.cmi.jegotrip.recevier.AddMessageToDB

android.intent.action.ADD_MESSAGE_DB

Services

com.umeng.message.UmengService

com.cmi.jegotrip.intent.action.START
com.cmi.jegotrip.intent.action.COCKROACH
org.agoo.android.intent.action.PING_V4

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService
org.android.agoo.client.ElectionReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.unregistercallback.action
com.umeng.message.message.handler.action
com.umeng.message.autoupdate.handler.action

Android Permissions

8b795dbb9e495d81c6b6bd50e8598e50_JaffaCakes118

Permissions

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_LOGS

android.permission.READ_CONTACTS

android.permission.CALL_PHONE

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_SETTINGS

android.permission.GET_TASKS

Sharing

General

Malware Config

Signatures

Files

com.cmi.jegotrip

com.cmi.jegotrip.ui.LauncherActivity

Activities

com.cmi.jegotrip.ui.LauncherActivity

com.cmi.jegotrip.ui.BottomTabsActivity

com.cmi.jegotrip.ui.CountryCodeList

com.cmi.jegotrip.ui.AboutActivity

com.cmi.jegotrip.ui.CountrySearchListActivity

com.cmi.jegotrip.ui.PriceActivity

com.cmi.jegotrip.ui.HelperActivity

com.cmi.jegotrip.ui.MyHelperActivity

com.cmi.jegotrip.ui.HelperDetailActivity

com.cmi.jegotrip.ui.CalcActivity

com.cmi.jegotrip.ui.RoamingAreaListActivity

com.cmi.jegotrip.ui.TrafficPackageIntroActivity

com.cmi.jegotrip.ui.LegalNoticeActivity

com.cmi.jegotrip.ui.RoamingTrafficActivity

com.cmi.jegotrip.ui.HistoryListActivity

com.cmi.jegotrip.ui.HistoryReportActivity

com.cmi.jegotrip.ui.SharePopupWindow

com.cmi.jegotrip.ui.SettingActivity

com.cmi.jegotrip.ui.LoginHomeActivity

com.cmi.jegotrip.ui.LoginByUserNameActivity

com.cmi.jegotrip.ui.RegisterByPhoneActivity

com.cmi.jegotrip.ui.FoundPWOnPhoneActivity

com.cmi.jegotrip.ui.FoundPWOnEmailActivity

com.cmi.jegotrip.ui.SetPasswordActivity

com.cmi.jegotrip.ui.AlertPasswordOnSettActivity

com.cmi.jegotrip.ui.SetPasswordOnSettActivity

com.cmi.jegotrip.ui.AlertUserNameActivity

com.cmi.jegotrip.ui.BindPhoneActivity

com.cmi.jegotrip.ui.BindEmailActivity

com.cmi.jegotrip.ui.ServiceContractActivity

com.cmi.jegotrip.ui.DialerActivity

com.cmi.jegotrip.ui.PackageDetailActivity

com.cmi.jegotrip.ui.OrderConfirmationActivity

com.cmi.jegotrip.ui.OrderDetailActivity

com.cmi.jegotrip.ui.FlowWorldActivity

com.cmi.jegotrip.ui.UserMessageFlowActivity

com.cmi.jegotrip.ui.AddBackCardActivity

com.cmi.jegotrip.ui.ValidateBankInfoActivity

com.cmi.jegotrip.ui.PayDealActivity

com.cmi.jegotrip.ui.PayFinishActivity

com.cmi.jegotrip.ui.FlowChartActivity

com.cmi.jegotrip.ui.SupportBankActivity

com.cmi.jegotrip.ui.InstructionManualActivity

com.cmi.jegotrip.ui.TransWebViewActivity

com.cmi.jegotrip.ui.MyRoamingDataActivity

com.cmi.jegotrip.ui.LoadWebOutActivity

Permissions

Receivers

com.cmi.jegotrip.util.AppRegister

com.cmi.jegotrip.transation.DataReceiver

com.cmi.jegotrip.recevier.NetStateReceiver

com.cmi.jegotrip.recevier.TabSelectReceiver

com.cmi.jegotrip.recevier.PaySuccessReceiver

com.umeng.message.SystemReceiver

com.umeng.message.MessageReceiver

com.umeng.message.ElectionReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengMessageBootReceiver

com.cmi.jegotrip.recevier.AddMessageToDB

Services

com.umeng.message.UmengService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

8b795dbb9e495d81c6b6bd50e8598e50_JaffaCakes118