a7200c9973ac128c05d02743b1b746c9_JaffaCakes118

General

Target

a7200c9973ac128c05d02743b1b746c9_JaffaCakes118
Size

12.2MB
MD5

a7200c9973ac128c05d02743b1b746c9
SHA1

a40390b21682c6cd90077bce81330c76e78280ee
SHA256

795ba55fbbb2f656e20bba8def0822a9279c4704d4ec9075cc15f87fd1cd5a3f
SHA512

2263d534ca59127b6ac7ff54002336fb7d70a6641f49bca2204543961c737cff523e1fdf5781a8f0af5599cd1275a050011e49a0e4aab2b08c2285c5c1f0c2c8
SSDEEP

196608:UZiXT2uiLqqrQbhZym639l6Z5RAtSpMywU+8S0WQHMA+ksWnVcLHLJujFl:8ui1ohZyN39QRAwpMx1oMAN2Jur

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

a7200c9973ac128c05d02743b1b746c9_JaffaCakes118
.apk android arch:arm

com.lzapkol

com.lzapkol.activity.LauncherActivity

Activities

com.lzapkol.activity.LauncherActivity

android.intent.action.MAIN

com.lzapkol.activity.DetailsFragmentActivity

android.intent.action.VIEW

com.lzapkol.activity.VideoPlayerActivity

android.intent.action.VIEW

com.lzapkol.activity.sohu.SoHuVideoPlayerActivity

sohu.intent.action.PLAYVIDEO

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

com.lzapkol.activity.LocalVideoActivity

com.lzapkol.activity.LocalVideoActivity

android.support.v4.jz.zha

android.intent.action.VIEW

Permissions

com.lzapkol.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANdeGE_WIFI_STATE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_NETWORK_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.GET_TASKS
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.BROADCAST_STICKY
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS

Receivers

com.lzapkol.service.NetworkReceiver

ConnectivityManager.CONNECTIVITY_ACTION

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.lzapkol.broadcast.JpushReceiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.UNREGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.ACTION_RICHPUSH_CALLBACK
cn.jpush.android.intent.CONNECTION

com.lzapkol.broadcast.MonitorInstallBroadcast

install_apk_cinema
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.lzapkol.broadcast.SixRoomReceiver

com.cinmaca2345.sixroom_result
com.cinmaca2345.sixroom_errorresult
com.cinmaca2345.sixroom_errorcode

android.support.vp.ui.UiRec

android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE

android.support.v4.jz.zhr

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

Android Permissions

a7200c9973ac128c05d02743b1b746c9_JaffaCakes118

Permissions

com.lzapkol.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CHANdeGE_WIFI_STATE

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.GET_TASKS

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.BROADCAST_STICKY

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.lzapkol

com.lzapkol.activity.LauncherActivity

Activities

com.lzapkol.activity.LauncherActivity

com.lzapkol.activity.DetailsFragmentActivity

com.lzapkol.activity.VideoPlayerActivity

com.lzapkol.activity.sohu.SoHuVideoPlayerActivity

com.tencent.tauth.AuthActivity

cn.jpush.android.ui.PushActivity

com.lzapkol.activity.LocalVideoActivity

android.support.v4.jz.zha

Permissions

Receivers

com.lzapkol.service.NetworkReceiver

cn.jpush.android.service.PushReceiver

com.lzapkol.broadcast.JpushReceiver

com.lzapkol.broadcast.MonitorInstallBroadcast

com.lzapkol.broadcast.SixRoomReceiver

android.support.vp.ui.UiRec

android.support.v4.jz.zhr

Services

cn.jpush.android.service.PushService

Android Permissions

a7200c9973ac128c05d02743b1b746c9_JaffaCakes118