9ed620e2c9c7eff79a4cd0682e66c000_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

9ed620e2c9c7eff79a4cd0682e66c000_JaffaCakes118
Size

6.8MB
MD5

9ed620e2c9c7eff79a4cd0682e66c000
SHA1

9664d1083dd5bc5e7d22e2811f61e4357c7a3a91
SHA256

a81233ada65412d9800f95c21b2ffaadb8d51781c8dea9e63c7a4d8413003985
SHA512

309040ad454c0e7040580c6643e51fb5b761a6dd0976a2b9e65a3e3176a4d993f9e34ab64c7499f100ee42ea686c5d44cac9cd38f268f032a8c1b3e221e49070
SSDEEP

98304:RTJxbcOsJbue0+/gknVmbOMZHzi8gsBwOYdts+D2M0/7t1y:RdxbPsgkdx8g3FDHIt1y

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

9ed620e2c9c7eff79a4cd0682e66c000_JaffaCakes118
.apk android

com.android.vending.billing.InAppBillingService.COIN

com.android.vending.billing.InAppBillingService.COIN.patchActivity

Activities

com.android.vending.billing.InAppBillingService.COIN.patchActivity

android.intent.action.MAIN
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.android.vending.billing.InAppBillingService.COIN.SetPrefs

android.intent.action.MAIN

com.google.android.finsky.billing.iab.BuyActivity

org.billinghack.BUY

com.android.vending.billing.InAppBillingService.COIN.widgets.BinderWidgetConfigureActivity

android.appwidget.action.APPWIDGET_CONFIGURE

com.android.vending.billing.InAppBillingService.COIN.widgets.AppDisablerWidgetConfigureActivity

android.appwidget.action.APPWIDGET_CONFIGURE

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.BLUETOOTH
com.android.vending.BILLING
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_LOGS
android.permission.ACCESS_SUPERUSER
android.permission.INTERNET
android.permission.VIBRATE
com.android.vending.CHECK_LICENSE
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.WRITE_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_MEDIA_STORAGE

Receivers

com.android.vending.billing.InAppBillingService.COIN.PackageChangeReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_CHANGED

com.android.vending.billing.InAppBillingService.COIN.OnAlarmReceiver

com.android.vending.billing.InAppBillingService.COIN.OnAlarmReceiver.ACTION_WIDGET_RECEIVER

com.android.vending.billing.InAppBillingService.COIN.BinderLuckyPatcher

android.intent.action.BOOT_COMPLETED
android.intent.action.MEDIA_SCANNER_FINISHED
android.intent.action.MEDIA_SCANNER_STARTED
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_EJECT
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_REMOVED

com.android.vending.billing.InAppBillingService.COIN.OnBootLuckyPatcher

android.intent.action.BOOT_COMPLETED
android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE
android.intent.action.EXTERNAL_APPLICATIONS_UNAVAILABLE
android.intent.action.UMS_DISCONNECTED
android.intent.action.POWER_DISCONNECTED

com.android.vending.billing.InAppBillingService.COIN.widgets.proxyGP_widget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.COIN.widgets.proxyGP_widget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.COIN.widgets.proxyGP_widget.ACTION_WIDGET_RECEIVER_Updater

com.android.vending.billing.InAppBillingService.COIN.widgets.lvl_widget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.COIN.widgets.lvl_widget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.COIN.widgets.lvl_widget.ACTION_WIDGET_RECEIVER_Updater

com.android.vending.billing.InAppBillingService.COIN.widgets.inapp_widget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.COIN.widgets.inapp_widget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.COIN.widgets.inapp_widget.ACTION_WIDGET_RECEIVER_Updater

com.android.vending.billing.InAppBillingService.COIN.widgets.AndroidPatchWidget

android.appwidget.action.APPWIDGET_UPDATE

com.android.vending.billing.InAppBillingService.COIN.widgets.BinderWidget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.COIN.widgets.BinderWidget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.COIN.widgets.BinderWidget.ACTION_WIDGET_RECEIVER_Updater

com.android.vending.billing.InAppBillingService.COIN.widgets.AppDisablerWidget

android.appwidget.action.APPWIDGET_UPDATE
com.android.vending.billing.InAppBillingService.COIN.widgets.AppDisablerWidget.ACTION_WIDGET_RECEIVER
com.android.vending.billing.InAppBillingService.COIN.widgets.AppDisablerWidget.ACTION_WIDGET_RECEIVER_Updater

com.startapp.android.publish.common.metaData.BootCompleteListener

android.intent.action.BOOT_COMPLETED

Services

com.google.android.finsky.billing.iab.InAppBillingService

com.android.vending.billing.InAppBillingService.COIN
com.android.vending.billing.InAppBillingService.COIO
com.android.vending.billing.InAppBillingService.LUCM
com.android.vending.billing.InAppBillingService.PROX
ir.cafebazaar.pardakht.InAppBillingService.BIND
com.nokia.payment.iapenabler.InAppBillingService.BIND
com.android.vending.billing.InAppBillingService.BINL

com.google.android.finsky.billing.iab.MarketBillingService

com.android.vending.billing.MarketBillingService.BIND

com.google.android.finsky.services.LicensingService

com.android.vending.licensing.ILicensingService

com.android.vending.billing.InAppBillingService.COIN.TestService

com.android.vending.billing.InAppBillingService.COIN.ITestServiceInterface.BIND

com.chelpus.TransferFilesService

com.chelpus.TransferFilesService.ITransferFilesServiceInterface.BIND

Android Permissions

9ed620e2c9c7eff79a4cd0682e66c000_JaffaCakes118

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.BLUETOOTH

com.android.vending.BILLING

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_LOGS

android.permission.ACCESS_SUPERUSER

android.permission.INTERNET

android.permission.VIBRATE

com.android.vending.CHECK_LICENSE

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.ACCESS_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.WRITE_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_MEDIA_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.android.vending.billing.InAppBillingService.COIN

com.android.vending.billing.InAppBillingService.COIN.patchActivity

Activities

com.android.vending.billing.InAppBillingService.COIN.patchActivity

com.android.vending.billing.InAppBillingService.COIN.SetPrefs

com.google.android.finsky.billing.iab.BuyActivity

com.android.vending.billing.InAppBillingService.COIN.widgets.BinderWidgetConfigureActivity

com.android.vending.billing.InAppBillingService.COIN.widgets.AppDisablerWidgetConfigureActivity

Permissions

Receivers

com.android.vending.billing.InAppBillingService.COIN.PackageChangeReceiver

com.android.vending.billing.InAppBillingService.COIN.OnAlarmReceiver

com.android.vending.billing.InAppBillingService.COIN.BinderLuckyPatcher

com.android.vending.billing.InAppBillingService.COIN.OnBootLuckyPatcher

com.android.vending.billing.InAppBillingService.COIN.widgets.proxyGP_widget

com.android.vending.billing.InAppBillingService.COIN.widgets.lvl_widget

com.android.vending.billing.InAppBillingService.COIN.widgets.inapp_widget

com.android.vending.billing.InAppBillingService.COIN.widgets.AndroidPatchWidget

com.android.vending.billing.InAppBillingService.COIN.widgets.BinderWidget

com.android.vending.billing.InAppBillingService.COIN.widgets.AppDisablerWidget

com.startapp.android.publish.common.metaData.BootCompleteListener

Services

com.google.android.finsky.billing.iab.InAppBillingService

com.google.android.finsky.billing.iab.MarketBillingService

com.google.android.finsky.services.LicensingService

com.android.vending.billing.InAppBillingService.COIN.TestService

com.chelpus.TransferFilesService

Android Permissions

9ed620e2c9c7eff79a4cd0682e66c000_JaffaCakes118