9888cc8aa1b49d30e608427d4d445e4f_JaffaCakes118

General

Target

9888cc8aa1b49d30e608427d4d445e4f_JaffaCakes118
Size

10.6MB
MD5

9888cc8aa1b49d30e608427d4d445e4f
SHA1

e55f3e7981f280cdd2f317149b5da837860e53de
SHA256

d7fe6e93853f841d6782b75903204d66507a781d5f19ebe1735447bc056bb0d4
SHA512

42084157ad5ed2cb7b8c7714b5fe3b6028761425dd1ec9ef4826b77876bae80a3cc6161af3fcfc86070f1975d11243ca7e7cf43be8f4dc5f48ac2e1d2a85d8a4
SSDEEP

196608:X8okYTIWCPtmImc8AbI9KGTlScrSz12lcGEiZkYuRrXaZIjt2LuT/yg:X84TCl/8+TG8ccW0iz8reDuT/9

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

9888cc8aa1b49d30e608427d4d445e4f_JaffaCakes118
.apk android arch:arm64 arch:arm arch:mips64 arch:mips arch:x86 arch:x64

com.fanshu.info.xinfanioew

com.fanshu.daily.FSplashActivity

Activities

com.fanshu.daily.FSplashActivity

android.intent.action.MAIN

com.fanshu.daily.wxapi.WXEntryActivity

android.intent.action.VIEW

com.fanshu.daily.logic.share.sina.WBShareActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.fanshu.daily.receiver.ExtraActivity

com.fanshu.daily.receiver.extra.fseu.START

com.fanshu.daily.receiver.ExtraTopActivity

com.fanshu.daily.receiver.extra.fseut.START

Permissions

android.permission.GET_TASKS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.BROADCAST_STICKY
android.permission.CAMERA
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.FLASHLIGHT
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECORD_AUDIO
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.WRITE_SETTINGS

Receivers

com.fanshu.daily.logic.share.wechat.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.fanshu.daily.receiver.ExtraReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_TIME_TICK
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.SCREEN_OFF
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED

com.umeng.message.SystemReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.MessageReceiver

org.agoo.android.intent.action.RECEIVE

com.umeng.message.ElectionReceiver

org.agoo.android.intent.action.ELECTION_RESULT_V4

com.umeng.message.RegistrationReceiver

com.fanshu.daily.intent.action.COMMAND

com.umeng.message.UmengMessageBootReceiver

android.intent.action.BOOT_COMPLETED

com.umeng.message.MiPushBroadcastReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

Services

com.fanshu.daily.receiver.ExtraRMService

com.fanshu.daily.receiver.extra.fserm.START

com.fanshu.daily.receiver.ExtraRSService

com.fanshu.daily.receiver.extra.fsers.START

com.umeng.message.UmengService

com.fanshu.daily.intent.action.START
com.fanshu.daily.intent.action.COCKROACH
org.agoo.android.intent.action.PING_V4

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService
org.android.agoo.client.ElectionReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.unregistercallback.action
com.umeng.message.message.handler.action
com.umeng.message.autoupdate.handler.action

Android Permissions

9888cc8aa1b49d30e608427d4d445e4f_JaffaCakes118

Permissions

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.BROADCAST_STICKY

android.permission.CAMERA

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.FLASHLIGHT

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECORD_AUDIO

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.fanshu.info.xinfanioew

com.fanshu.daily.FSplashActivity

Activities

com.fanshu.daily.FSplashActivity

com.fanshu.daily.wxapi.WXEntryActivity

com.fanshu.daily.logic.share.sina.WBShareActivity

com.tencent.tauth.AuthActivity

com.fanshu.daily.receiver.ExtraActivity

com.fanshu.daily.receiver.ExtraTopActivity

Permissions

Receivers

com.fanshu.daily.logic.share.wechat.AppRegister

com.fanshu.daily.receiver.ExtraReceiver

com.umeng.message.SystemReceiver

com.umeng.message.MessageReceiver

com.umeng.message.ElectionReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengMessageBootReceiver

com.umeng.message.MiPushBroadcastReceiver

Services

com.fanshu.daily.receiver.ExtraRMService

com.fanshu.daily.receiver.ExtraRSService

com.umeng.message.UmengService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

9888cc8aa1b49d30e608427d4d445e4f_JaffaCakes118