a48586b7a008e8b3946587b4181219e6_JaffaCakes118

General

Target

a48586b7a008e8b3946587b4181219e6_JaffaCakes118
Size

8.9MB
MD5

a48586b7a008e8b3946587b4181219e6
SHA1

a1b5851203dde45e32c901d509830e72424a492c
SHA256

0413c864047b203f508b9c99fd0a6321b5f4b2d0faab6e4aa717e15b10826cfb
SHA512

6118b872a1670b6175c486aafe9598d2f2b6b09689514b83740cda38f2d460452344585c281760cb3459f5f5f02972f3c32dc349ff86b15a5fd481eb8c28b5c7
SSDEEP

196608:vLeq48TXr5I9esXPgETUUZywhgPqDJMy+/DAYyq5KAws+sH5Jxbk:vLvzqlXPgEAUZl+qDf+/D5yq5KAwI5JS

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

a48586b7a008e8b3946587b4181219e6_JaffaCakes118
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.example.jiuzheyang.distributestore

com.example.jiuzheyang.distributestore.activity.SplashActivity

Activities

com.example.jiuzheyang.distributestore.activity.GoodsDetailActivity

android.intent.action.VIEW

com.example.jiuzheyang.distributestore.activity.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CALL_PHONE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.WAKE_LOCK
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_SETTINGS
android.permission.WRITE_MEDIA_STORAGE
android.permission.RECORD_AUDIO

Receivers

com.example.jiuzheyang.distributestore.utils.DownLoadBroadcastReceiver

android.intent.action.DOWNLOAD_COMPLETE

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.example.jiuzheyang.distributestore.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

Services

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action

Android Permissions

a48586b7a008e8b3946587b4181219e6_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.READ_PHONE_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.CALL_PHONE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.WAKE_LOCK

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_SETTINGS

android.permission.WRITE_MEDIA_STORAGE

android.permission.RECORD_AUDIO

Sharing

General

Malware Config

Signatures

Files

com.example.jiuzheyang.distributestore

com.example.jiuzheyang.distributestore.activity.SplashActivity

Activities

com.example.jiuzheyang.distributestore.activity.GoodsDetailActivity

com.example.jiuzheyang.distributestore.activity.SplashActivity

Permissions

Receivers

com.example.jiuzheyang.distributestore.utils.DownLoadBroadcastReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

Services

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

a48586b7a008e8b3946587b4181219e6_JaffaCakes118