a4b8d6a1d31b124faee040b404370160_JaffaCakes118

General

Target

a4b8d6a1d31b124faee040b404370160_JaffaCakes118
Size

28.4MB
MD5

a4b8d6a1d31b124faee040b404370160
SHA1

4eaa1054c6780b890674bec9af932188ed37a6e4
SHA256

355d0f60d3427eddf29e5b58a371e64397ae404d79e7574f839f20556f9bcd37
SHA512

8fe1e5862085b84b41b8282c6cb6d9f440ff6bcd2be21e49dff8f349919a588c58a7263a295f4e81e6ae4c4e185b6af4b7ba15affd0ec99edb7551138a8709e8
SSDEEP

786432:2SxkUELoL3gIm3O2s8O34V2Vw23X8WiWtOsc:3FQIiJOoUVwZWiIc

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to record audio.	android.permission.RECORD_AUDIO
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

a4b8d6a1d31b124faee040b404370160_JaffaCakes118
.apk android arch:arm

com.yixia.znkrrb.xiaokaxiu

com.yixia.xiaokaxiu.controllers.activity.common.SplashActivity

Activities

com.yixia.xiaokaxiu.controllers.activity.common.SplashActivity

android.intent.action.MAIN

com.yixia.xiaokaxiu.controllers.activity.appawake.AppAwakeActivity

android.intent.action.VIEW

com.yixia.xiaokaxiu.controllers.activity.localvideo.VideoEditActivity

com.yixia.xiaokaxiu..controllers.activity.localvideo.VideoEditActivity

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

com.yixia.xiaokaxiu.controllers.activity.video.PictureSelectorActivity

com.yixia.xiaokaxiu.controllers.activity.video.PictureSelectorActivity

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.sina.weibo.sdk.share.WbShareToStoryActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_STORY

com.yixia.znkrrb.xiaokaxiu.fl.BjActivity

android.intent.action.MAIN

Permissions

com.yixia.xiaokaxiu.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.CAMERA
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_CONFIGURATION
com.android.launcher.permission.READ_SETTINGS
android.permission.READ_CONTACTS
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.WRITE_MEDIA_STORAGE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher3.permission.INSTALL_SHORTCUT
com.android.launcher3.permission.UNINSTALL_SHORTCUT

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.yixia.xiaokaxiu.receiver.JPushReceiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.UNREGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.ACTION_RICHPUSH_CALLBACK
cn.jpush.android.intent.CONNECTION

com.yixia.xiaokaxiu.receiver.ScreenLockStatusReceiver

android.intent.action.USER_PRESENT

com.yixia.xiaokaxiu.receiver.MediaCodecReceiver

com.yixia.xiaokaxiu.receiver.action.mediacodecnotification

com.yixia.xiaokaxiu.receiver.DownloadNotificationReceiver

com.yixia.xiaokaxiu.receiver.action.downloadnotification.remove

com.yixia.receiver.NetWorkReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.yixia.base.receiver.NetworkInfoReceiver

android.net.conn.CONNECTIVITY_CHANGE

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

cn.jpush.android.service.DaemonService

cn.jpush.android.intent.DaemonService

com.yixia.camera.record.service.AutoTestService

org.join.service.MESSENGER

Android Permissions

a4b8d6a1d31b124faee040b404370160_JaffaCakes118

Permissions

com.yixia.xiaokaxiu.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.CAMERA

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_CONFIGURATION

com.android.launcher.permission.READ_SETTINGS

android.permission.READ_CONTACTS

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.WRITE_MEDIA_STORAGE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher3.permission.INSTALL_SHORTCUT

com.android.launcher3.permission.UNINSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

com.yixia.znkrrb.xiaokaxiu

com.yixia.xiaokaxiu.controllers.activity.common.SplashActivity

Activities

com.yixia.xiaokaxiu.controllers.activity.common.SplashActivity

com.yixia.xiaokaxiu.controllers.activity.appawake.AppAwakeActivity

com.yixia.xiaokaxiu.controllers.activity.localvideo.VideoEditActivity

com.tencent.tauth.AuthActivity

cn.jpush.android.ui.PushActivity

com.yixia.xiaokaxiu.controllers.activity.video.PictureSelectorActivity

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.share.WbShareToStoryActivity

com.yixia.znkrrb.xiaokaxiu.fl.BjActivity

Permissions

Receivers

cn.jpush.android.service.PushReceiver

com.yixia.xiaokaxiu.receiver.JPushReceiver

com.yixia.xiaokaxiu.receiver.ScreenLockStatusReceiver

com.yixia.xiaokaxiu.receiver.MediaCodecReceiver

com.yixia.xiaokaxiu.receiver.DownloadNotificationReceiver

com.yixia.receiver.NetWorkReceiver

com.yixia.base.receiver.NetworkInfoReceiver

Services

cn.jpush.android.service.PushService

cn.jpush.android.service.DaemonService

com.yixia.camera.record.service.AutoTestService

Android Permissions

a4b8d6a1d31b124faee040b404370160_JaffaCakes118