8f658166f40d44f2cd278f277403bd2a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8f658166f40d44f2cd278f277403bd2a_JaffaCakes118
Size

5.3MB
MD5

8f658166f40d44f2cd278f277403bd2a
SHA1

b1f1f897d0b766c61a358dc560f129a185774f6f
SHA256

193693f997d54d31a1bf77e07185d0b5e65ab23488366d536cf795b5b63b4a27
SHA512

b460290ec61236675d1fc371f1a7f86b6858b78f04ac9bb72fdc0858796e53e044b66b2e66f551974d09683c908dd7ca67f299ea61abbb449c0e65cebfeb5154
SSDEEP

98304:XOpkWJZTtNOiJtusFNoQ59yXnqaUsgt736fv95Rnj4QSnJaGjOPYmzwU:XOuWjOiJVzV4XnKs39Xj4QcaqOr

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

8f658166f40d44f2cd278f277403bd2a_JaffaCakes118
.apk android arch:arm arch:mips arch:x86

com.agrj.robots

.LoginActivity

Activities

.LoginActivity

android.intent.action.MAIN

Permissions

android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.DISABLE_KEYGUARD
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_NETWORK_STATE

Services

.ChatService

com.agrj.robots
alipay-newmsp-5.1.0.apk
.apk android arch:arm arch:x86

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

android.intent.action.MAIN

com.alipay.android.app.pay.TransContainer

android.intent.action.MAIN

com.alipay.android.app.pay.HyperlinkActivity

android.intent.action.MAIN

com.alipay.android.app.pay.PageForBrowser

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.android.app.gphone.SHARE

Receivers

Services

com.alipay.android.app.MspService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay
plug_jisuanqi.jar
.apk android
plug_qiandao.jar
.apk android
plug_tianqi.jar
.apk android
plug_xiaohua.jar
.apk android

Android Permissions

8f658166f40d44f2cd278f277403bd2a_JaffaCakes118

Permissions

android.permission.VIBRATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.DISABLE_KEYGUARD

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.GET_TASKS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_NETWORK_STATE

Sharing

General

Malware Config

Signatures

Files

com.agrj.robots

.LoginActivity

Activities

.LoginActivity

Permissions

Services

.ChatService

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

com.alipay.android.app.pay.TransContainer

com.alipay.android.app.pay.HyperlinkActivity

com.alipay.android.app.pay.PageForBrowser

Permissions

Receivers

Services

com.alipay.android.app.MspService

Android Permissions

8f658166f40d44f2cd278f277403bd2a_JaffaCakes118