8f63cd4caf9d776951587a15f80df613_JaffaCakes118

General

Target

8f63cd4caf9d776951587a15f80df613_JaffaCakes118
Size

24.6MB
MD5

8f63cd4caf9d776951587a15f80df613
SHA1

8fffe363b1a2221eed72fc0fe87b1ac788e10eb3
SHA256

ad7402ce09a7dee878ecef9b0040d7b54ef87ee56a567d6460eff66cc808fb1e
SHA512

ab6772143f6e794d52a2ed143717f8240fcd972fa2f9bf6fa13f0e4925b75627c7a3dceaf8461a6f4417b58020138b0b23db5912e6a6d6ebb466d40f6e093d55
SSDEEP

393216:lBkYXSXJHX8mmIbxGo8CaZsZH131eo9qbScZEjIQte9YYkG1VdPPV7y8BF/tcX:8THfDNe9ZgV3tgtZ+IQtOYY3rdPNRdM

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

8f63cd4caf9d776951587a15f80df613_JaffaCakes118
.apk android arch:arm

br.com.tapps.treefortress2

com.ansca.corona.CoronaActivity

Activities

com.ansca.corona.CoronaActivity

android.intent.action.MAIN

com.playhaven.android.view.FullScreen

android.intent.action.VIEW
android.intent.action.VIEW

Permissions

com.android.vending.BILLING
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE

Receivers

com.amazon.inapp.purchasing.ResponseReceiver

com.amazon.inapp.purchasing.NOTIFY

com.ansca.corona.purchasing.GoogleStoreBroadcastReceiver

com.android.vending.billing.IN_APP_NOTIFY
com.android.vending.billing.RESPONSE_CODE
com.android.vending.billing.PURCHASE_STATE_CHANGED

com.ansca.corona.notifications.GoogleCloudMessagingBroadcastReceiver

com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.REGISTRATION

com.playhaven.android.push.PushReceiver

android.intent.action.VIEW

com.inmobi.commons.analytics.androidsdk.IMAdTrackerReceiver

com.android.vending.INSTALL_REFERRER

io.mobby.sdk.receiver.StartReceiver

cryopiggy.start

io.mobby.sdk.receiver.UnlockReceiver

android.intent.action.USER_PRESENT

io.mobby.sdk.receiver.BootReceiver

android.intent.action.BOOT_COMPLETED

io.mobby.sdk.receiver.SDCardMountedReceiver

android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE

com.inmobi.commons.core.utilities.uid.ImIdShareBroadCastReceiver

com.inmobi.share.id

io.mobby.sdk.receiver.AppUpdatedReceiver

android.intent.action.PACKAGE_REPLACED

Services

Android Permissions

8f63cd4caf9d776951587a15f80df613_JaffaCakes118

Permissions

com.android.vending.BILLING

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.GET_TASKS

android.permission.ACCESS_WIFI_STATE

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

Sharing

General

Malware Config

Signatures

Files

br.com.tapps.treefortress2

com.ansca.corona.CoronaActivity

Activities

com.ansca.corona.CoronaActivity

com.playhaven.android.view.FullScreen

Permissions

Receivers

com.amazon.inapp.purchasing.ResponseReceiver

com.ansca.corona.purchasing.GoogleStoreBroadcastReceiver

com.ansca.corona.notifications.GoogleCloudMessagingBroadcastReceiver

com.playhaven.android.push.PushReceiver

com.inmobi.commons.analytics.androidsdk.IMAdTrackerReceiver

io.mobby.sdk.receiver.StartReceiver

io.mobby.sdk.receiver.UnlockReceiver

io.mobby.sdk.receiver.BootReceiver

io.mobby.sdk.receiver.SDCardMountedReceiver

com.inmobi.commons.core.utilities.uid.ImIdShareBroadCastReceiver

io.mobby.sdk.receiver.AppUpdatedReceiver

Services

Android Permissions

8f63cd4caf9d776951587a15f80df613_JaffaCakes118