a11191a192d205dafbf7fc3085013b79_JaffaCakes118

General

Target

a11191a192d205dafbf7fc3085013b79_JaffaCakes118
Size

24.2MB
MD5

a11191a192d205dafbf7fc3085013b79
SHA1

0391a5c70f81e97939fd6ece52daa85fe0ed8a3c
SHA256

1bb29769000103a5329a3c170b0e0f4414ad64fd33f829c2a3e5219e2787fcab
SHA512

3902dd00d5ff28f1ac743373c6d441ff06b91724f49a433bec5898a9599508fe052f4fcdcfd4c88906e5192ea218a58906062d13af54b4b6f0dd41e8489cacc2
SSDEEP

786432:rjy7DUbyE8K78nouUo/5VLiJWNsJQcT+LGDYwEM1:/+UbLX7qokVLiJWNKzT+q51

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

a11191a192d205dafbf7fc3085013b79_JaffaCakes118
.apk android arch:arm

com.injaamuraissassineropixelgun3d.pt

com.pmads.SplashActivity

Activities

com.facebook.CustomTabActivity

android.intent.action.VIEW

com.pmads.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
com.android.vending.BILLING
android.permission.VIBRATE
android.permission.WAKE_LOCK
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.BLUETOOTH
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SEND_DOWNLOAD_COMPLETED_INTENTS
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.BROADCAST_STICKY

Receivers

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.vungle.warren.NetworkStateReceiver

android.net.conn.CONNECTIVITY_CHANGE

Services
gdtadv2.jar
.apk android arch:arm arch:arm64

Android Permissions

a11191a192d205dafbf7fc3085013b79_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

com.android.vending.BILLING

android.permission.VIBRATE

android.permission.WAKE_LOCK

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.BLUETOOTH

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SEND_DOWNLOAD_COMPLETED_INTENTS

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.BROADCAST_STICKY

Sharing

General

Malware Config

Signatures

Files

com.injaamuraissassineropixelgun3d.pt

com.pmads.SplashActivity

Activities

com.facebook.CustomTabActivity

com.pmads.SplashActivity

Permissions

Receivers

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.vungle.warren.NetworkStateReceiver

Services

Android Permissions

a11191a192d205dafbf7fc3085013b79_JaffaCakes118