a5d00d46f95e6caeb6cead7106f7fdbe_JaffaCakes118

General

Target

a5d00d46f95e6caeb6cead7106f7fdbe_JaffaCakes118
Size

12.4MB
MD5

a5d00d46f95e6caeb6cead7106f7fdbe
SHA1

cf381b943a9503973091fdbc78fa7c98133dc4fe
SHA256

2491e6f98f868126fd787e47b687b3daa646680acac677b86efc3cf679574df2
SHA512

92bea51a7b666c1989c210fffe3cd10db682fb1815c81ad783588c1a8198f3b73d021a571277a97631be9925937d712aa2054bcb6844eb670717a69ef470fee7
SSDEEP

393216:khyzOfBl2YmOBT/VdciQj6t5XLMKG+Vmk9t76gIEk:khyzOfBdmOB77ci6U2TGmu60k

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access location in the background.	android.permission.ACCESS_BACKGROUND_LOCATION

Files

a5d00d46f95e6caeb6cead7106f7fdbe_JaffaCakes118
.apk android arch:arm arch:x86

com.xiaoqunzhi.lolita

com.xiaoqunzhi.lolita.view.common.activity.SplashActivity

Activities

com.xiaoqunzhi.lolita.view.common.activity.SplashActivity

android.intent.action.MAIN

com.xiaoqunzhi.lolita.view.mine.SettingActivity

android.intent.action.VIEW

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

cn.jpush.android.service.JNotifyActivity

cn.jpush.android.intent.JNotifyActivity

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.REQUEST_INSTALL_PACKAGES
com.xiaoqunzhi.lolita.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.WRITE_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_COARSE_LOCATION
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_NETWORK_STATE
android.permission.GET_TASKS

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.xiaoqunzhi.lolita.receiver.PushMessageReceiver

cn.jpush.android.intent.RECEIVE_MESSAGE

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

cn.jpush.android.service.DaemonService

cn.jpush.android.intent.DaemonService

com.xiaoqunzhi.lolita.receiver.PushService

cn.jiguang.user.service.action

Android Permissions

a5d00d46f95e6caeb6cead7106f7fdbe_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.REQUEST_INSTALL_PACKAGES

com.xiaoqunzhi.lolita.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.WRITE_SETTINGS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.VIBRATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_COARSE_LOCATION

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_BACKGROUND_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.GET_TASKS

Sharing

General

Malware Config

Signatures

Files

com.xiaoqunzhi.lolita

com.xiaoqunzhi.lolita.view.common.activity.SplashActivity

Activities

com.xiaoqunzhi.lolita.view.common.activity.SplashActivity

com.xiaoqunzhi.lolita.view.mine.SettingActivity

cn.jpush.android.ui.PushActivity

cn.jpush.android.service.JNotifyActivity

Permissions

Receivers

cn.jpush.android.service.PushReceiver

com.xiaoqunzhi.lolita.receiver.PushMessageReceiver

Services

cn.jpush.android.service.PushService

cn.jpush.android.service.DaemonService

com.xiaoqunzhi.lolita.receiver.PushService

Android Permissions

a5d00d46f95e6caeb6cead7106f7fdbe_JaffaCakes118