9b0e34eecce3279259fe7676348f4b17_JaffaCakes118

General

Target

9b0e34eecce3279259fe7676348f4b17_JaffaCakes118
Size

10.9MB
MD5

9b0e34eecce3279259fe7676348f4b17
SHA1

9251ffa4b899db3274ac59ad3ad6fc4c120d1530
SHA256

9d1e99e3e224563d7558ec1128e62c666373c91e99a6badb60024f26655b4564
SHA512

49396bba69dac9d5aac0d97308e38cec90a7b891a59f4f699db9212ab7aca1f1bf9e53bbf205e569e600ec193a507c11e9df3670388d89279b94b337b5dcc190
SSDEEP

196608:aZFXJGKy0FgBFJ4TUBAjvWXGhDBZA4gGq14bCcJ8qeT0BcRigGlKaoa:AZy0mBUYBQ+GhDfA4gYb78HWcwgGlKa9

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

9b0e34eecce3279259fe7676348f4b17_JaffaCakes118
.apk android arch:arm

com.sostation.jelly.egame

org.cocos2dx.jgame.GameActivity

Activities

org.cocos2dx.jgame.GameActivity

android.intent.action.MAIN

mm.purchasesdk.iapservice.BillingLayoutActivity

com.sostation.jelly.egame.com.mmiap.activity

safiap.framework.ui.UpdateHintActivity

safiap.framework.ACTION_TO_INSTALL
safiap.framework.ACTION_TO_INSTALL_IAP
safiap.framework.ACTION_NETWORK_ERROR_IAP
safiap.framework.ACTION_NETWORK_ERROR_FRAMEWORK

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RESTART_PACKAGES
android.permission.GET_PACKAGE_SIZE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_LOGS
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

Receivers

com.sostation.library.apppush.AppReceiver

android.net.conn.CONNECTIVITY_CHANGE

cn.play.dserv.DsReceiver

cn.play.dservice

safiap.framework.CheckUpdateReceiver

safiap.framework.ACTION_CANCEL_NOTIFICATION
safiap.GET_SHARED_DATA
safiap.framework.ACTION_SET_TIMER

Services

com.unicom.wostore.unipay.paysecurity.SecurityServiceFramework

com.sostation.jelly.egame.unicom.wostore.unipay.securityserviceframework

mm.purchasesdk.iapservice.PurchaseService

com.aspire.purchaseservice.BIND
com.sostation.jelly.egame.purchaseservice.BIND
android.intent.action.MAIN

safiap.framework.SafFrameworkManager

safiap.framework.sdk.ISAFFramework
safiap.framework.ACTION_START_DOWNLOAD
safiap.framework.ACTION_CHECK_UPDATE
NewMuMaYiMarket.apk
.apk android arch:arm arch:mips arch:x86

com.mumayi.market.ui

.SplashActivity

Activities

.RunGameCenterActivity

android.intent.action.MAIN

.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
com.mumayi.market.ui.restart

.MainFrameActivity

android.intent.action.MMY_MainFrameActivity

.packageManger.NewUnMpkActivity

android.intent.action.MAIN
start.mumayi.mpk.module
android.intent.action.DEFAULT
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

.IntentFilterActivity

mumayi.market.intent

.MiniBrowserActivity

android.intent.action.MAIN

com.mumayi.market.ui.autodown.AutoDownActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.RESTART_PACKAGES
android.permission.ACCESS_WIFI_STATE
android.permission.GET_PACKAGE_SIZE
android.permission.READ_LOGS
android.permission.WAKE_LOCK
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.VIBRATE
android.permission.BROADCAST_STICKY
android.permission.GET_TASKS
android.permission.WRITE_SETTINGS
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_CONFIGURATION

Receivers

com.mumayi.market.ui.util.receiver.CheckUpdateReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.net.wifi.STATE_CHANGE

.util.receiver.OtherNeedDataReciver

com.mumayi.paycenter.needuser

com.mumayi.market.bussiness.ebo.reveiver.AlarmServiceReveiver

com.android.alarmclock.ALARM_ALERT
android.intent.action.BOOT_COMPLETED
android.net.wifi.STATE_CHANGE

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.mumayi.market.ui.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

com.umeng.message.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

Services

com.umeng.message.UmengService

com.mumayi.market.ui.intent.action.START
com.mumayi.market.ui.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2
unicom_resource.dat
.apk android

com.unicom.resourcepro

Android Permissions

9b0e34eecce3279259fe7676348f4b17_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.RESTART_PACKAGES

android.permission.GET_PACKAGE_SIZE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_LOGS

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

Sharing

General

Malware Config

Signatures

Files

com.sostation.jelly.egame

org.cocos2dx.jgame.GameActivity

Activities

org.cocos2dx.jgame.GameActivity

mm.purchasesdk.iapservice.BillingLayoutActivity

safiap.framework.ui.UpdateHintActivity

Permissions

Receivers

com.sostation.library.apppush.AppReceiver

cn.play.dserv.DsReceiver

safiap.framework.CheckUpdateReceiver

Services

com.unicom.wostore.unipay.paysecurity.SecurityServiceFramework

mm.purchasesdk.iapservice.PurchaseService

safiap.framework.SafFrameworkManager

com.mumayi.market.ui

.SplashActivity

Activities

.RunGameCenterActivity

.SplashActivity

.MainFrameActivity

.packageManger.NewUnMpkActivity

.IntentFilterActivity

.MiniBrowserActivity

com.mumayi.market.ui.autodown.AutoDownActivity

Permissions

Receivers

com.mumayi.market.ui.util.receiver.CheckUpdateReceiver

.util.receiver.OtherNeedDataReciver

com.mumayi.market.bussiness.ebo.reveiver.AlarmServiceReveiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

com.umeng.message.BootBroadcastReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

com.unicom.resourcepro

Android Permissions

9b0e34eecce3279259fe7676348f4b17_JaffaCakes118