9887cb2e4f6db3db4676b519b0bbf741_JaffaCakes118

General

Target

9887cb2e4f6db3db4676b519b0bbf741_JaffaCakes118
Size

13.8MB
MD5

9887cb2e4f6db3db4676b519b0bbf741
SHA1

c1f2767097c6f564cccffc826b29086575e6fe76
SHA256

2a1a2d40201e14cbfd0932f792d2c91a9a5b3b825783b8b80cf374fb4b212893
SHA512

260b2b2312666f3f6275cebf3c86bff2e6809f1aa13af2bb59a439ad201139ba297c7286a20d798669c62ef395eda863254ae00a559561e4070bb72a7ab18ebd
SSDEEP

196608:5KdX8Tc6UF2SEzoZEIo8s1PwEoaXfDoBaXvea7qs7iEwfhpNTbemtZFv8RXb:PTBcPEULodBJoaXfbma7qsWdfhpI24Xb

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

9887cb2e4f6db3db4676b519b0bbf741_JaffaCakes118
.apk android arch:arm

droom.sleepIfUCan

droom.sleepIfUCan.view.activity.MainActivity

Activities

droom.sleepIfUCan.view.activity.MainActivity

android.intent.action.MAIN

droom.sleepIfUCan.view.activity.FakeActivity

android.intent.action.MAIN
android.media.action.IMAGE_CAPTURE

droom.sleepIfUCan.view.activity.DismissActivity

droom.sleepIfUCan.DismissActivity

droom.sleepIfUCan.view.activity.VoiceCommandReceiveActivity

android.intent.action.SET_ALARM

Permissions

android.permission.READ_PHONE_STATE
android.permission.CAMERA
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.DISABLE_KEYGUARD
android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.CHANGE_CONFIGURATION
android.permission.ACCESS_COARSE_LOCATION
com.google.android.providers.gsf.permission.READ_GSERVICES
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_NOTIFICATION_POLICY
android.permission.GET_TASKS
android.permission.FLASHLIGHT
com.android.vending.BILLING
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.c2dm.permission.RECEIVE
droom.sleepIfUCan.permission.C2D_MESSAGE

Receivers

com.duapps.ad.base.PackageAddReceiver

android.intent.action.PACKAGE_ADDED

droom.sleepIfUCan.internal.DndReceiver

android.app.action.INTERRUPTION_FILTER_CHANGED

droom.sleepIfUCan.internal.AlarmReceiver

droom.sleepIfUCan.action.retry
droom.sleepIfUCan.ALARM_ALERT
droom.sleepIfUCan.alarm_killed
droom.sleepIfUCan.cancel_snooze

droom.sleepIfUCan.internal.AlarmInitReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.htc.intent.action.QUICKBOOT_POWERON
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED
android.intent.action.LOCALE_CHANGED

droom.sleepIfUCan.internal.AppUpdateReceiver

android.intent.action.MY_PACKAGE_REPLACED

droom.sleepIfUCan.internal.AdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED

droom.sleepIfUCan.internal.AvoidSmartManagerReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

droom.sleepIfUCan.view.widget.AnalogAppWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.appnext.base.receivers.imp.bootreceiver

android.intent.action.BOOT_COMPLETED

Services

droom.sleepIfUCan.internal.AlarmKlaxon

droom.sleepIfUCan.ALARM_ALERT
droom.sleepIfUCan.ALARM_KLAXON

droom.sleepIfUCan.internal.TaskService

droom.sleepIfUCan.taskService

droom.sleepIfUCan.internal.MyFirebaseInstanceIDService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

9887cb2e4f6db3db4676b519b0bbf741_JaffaCakes118

Permissions

android.permission.READ_PHONE_STATE

android.permission.CAMERA

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.DISABLE_KEYGUARD

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.CHANGE_CONFIGURATION

android.permission.ACCESS_COARSE_LOCATION

com.google.android.providers.gsf.permission.READ_GSERVICES

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_NOTIFICATION_POLICY

android.permission.GET_TASKS

android.permission.FLASHLIGHT

com.android.vending.BILLING

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.c2dm.permission.RECEIVE

droom.sleepIfUCan.permission.C2D_MESSAGE

Sharing

General

Malware Config

Signatures

Files

droom.sleepIfUCan

droom.sleepIfUCan.view.activity.MainActivity

Activities

droom.sleepIfUCan.view.activity.MainActivity

droom.sleepIfUCan.view.activity.FakeActivity

droom.sleepIfUCan.view.activity.DismissActivity

droom.sleepIfUCan.view.activity.VoiceCommandReceiveActivity

Permissions

Receivers

com.duapps.ad.base.PackageAddReceiver

droom.sleepIfUCan.internal.DndReceiver

droom.sleepIfUCan.internal.AlarmReceiver

droom.sleepIfUCan.internal.AlarmInitReceiver

droom.sleepIfUCan.internal.AppUpdateReceiver

droom.sleepIfUCan.internal.AdminReceiver

droom.sleepIfUCan.internal.AvoidSmartManagerReceiver

droom.sleepIfUCan.view.widget.AnalogAppWidgetProvider

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.appnext.base.receivers.imp.bootreceiver

Services

droom.sleepIfUCan.internal.AlarmKlaxon

droom.sleepIfUCan.internal.TaskService

droom.sleepIfUCan.internal.MyFirebaseInstanceIDService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.iid.FirebaseInstanceIdService

Android Permissions

9887cb2e4f6db3db4676b519b0bbf741_JaffaCakes118