aadbe470d03c3ee1690f5803903acffd_JaffaCakes118

General

Target

aadbe470d03c3ee1690f5803903acffd_JaffaCakes118
Size

23.3MB
MD5

aadbe470d03c3ee1690f5803903acffd
SHA1

ac60e319fcc56012e27fcd7a7c9e278e3bfb8f9b
SHA256

b784a03bf98f9b8bb7c1206354031299f759f16a6e312031a1d9caaa4ae54c12
SHA512

6a3d21f71fe2197c4b539c92865c542eea6ee9ec3b62062073765a35db25b75fab3a687c1c0b632efdd692da3c3a4a70530eada0b05ae642eda4630fd0f1111b
SSDEEP

393216:TWVpNqsem+LKVum7HcT869WgrY8ZsIi2vREbZ1wGYXviAg7wQ7B4n3CwiMWgw:6o7nKVum7K863kcsIiQswF/iAg7e3C1v

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

aadbe470d03c3ee1690f5803903acffd_JaffaCakes118
.apk android arch:arm

com.global.kog

com.games37.sdkkog.AtlasPluginDemoActivity

Activities

com.games37.sdkkog.AtlasPluginDemoActivity

android.intent.action.MAIN
android.intent.action.VIEW
ACTION_OPEN_GAME_ACTIVITY

com.facebook.CustomTabActivity

android.intent.action.VIEW

com.naver.glink.android.sdk.login.neoid.PlugSchemeActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
com.android.vending.BILLING
com.android.vending.CHECK_LICENSE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
getui.permission.GetuiService.com.global.kog
android.permission.READ_LOGS
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.c2dm.permission.RECEIVE
com.google.android.providers.gsf.permission.READ_GSERVICES
com.google.android.providers.gsf.permission.WRITE_GSERVICES
com.google.android.c2dm.permission.RECEIVE
com.google.android.providers.gsf.permission.READ_GSERVICES
com.google.android.providers.gsf.permission.WRITE_GSERVICES
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.CHANGE_NETWORK_STATE
com.global.kog.permission.MIPUSH_RECEIVE
android.permission.WRITE_SETTINGS
com.meizu.flyme.push.permission.RECEIVE
com.meizu.c2dm.permission.RECEIVE
com.global.kog.push.permission.MESSAGE
com.global.kog.permission.C2D_MESSAGE

Receivers

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.appsflyer.MultipleInstallBroadcastReceiver

com.android.vending.INSTALL_REFERRER

com.ad.sdk.ADBroadcastReceiver

com.android.vending.INSTALL_REFERRER

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.meizu.cloud.pushsdk.SystemReceiver

com.meizu.cloud.pushservice.action.PUSH_SERVICE_START

com.igexin.sdk.FlymePushReceiver

com.meizu.flyme.push.intent.MESSAGE
com.meizu.flyme.push.intent.REGISTER.FEEDBACK
com.meizu.flyme.push.intent.UNREGISTER.FEEDBACK
com.meizu.c2dm.intent.REGISTRATION
com.meizu.c2dm.intent.RECEIVE

com.igexin.sdk.MiuiPushReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.igexin.sdk.HmsPushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

com.huawei.hms.support.api.push.PushEventReceiver

com.huawei.intent.action.PUSH

Services

com.appsflyer.FirebaseInstanceIdListener

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.appsflyer.FirebaseInstanceIdListener

com.google.firebase.INSTANCE_ID_EVENT

org.OpenUDID.OpenUDID_service

org.OpenUDID.GETUDID

com.igexin.sdk.PushService

com.igexin.sdk.action.service.message

Android Permissions

aadbe470d03c3ee1690f5803903acffd_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

com.android.vending.BILLING

com.android.vending.CHECK_LICENSE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

getui.permission.GetuiService.com.global.kog

android.permission.READ_LOGS

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.c2dm.permission.RECEIVE

com.google.android.providers.gsf.permission.READ_GSERVICES

com.google.android.providers.gsf.permission.WRITE_GSERVICES

com.google.android.c2dm.permission.RECEIVE

com.google.android.providers.gsf.permission.READ_GSERVICES

com.google.android.providers.gsf.permission.WRITE_GSERVICES

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.CHANGE_NETWORK_STATE

com.global.kog.permission.MIPUSH_RECEIVE

android.permission.WRITE_SETTINGS

com.meizu.flyme.push.permission.RECEIVE

com.meizu.c2dm.permission.RECEIVE

com.global.kog.push.permission.MESSAGE

com.global.kog.permission.C2D_MESSAGE

Sharing

General

Malware Config

Signatures

Files

com.global.kog

com.games37.sdkkog.AtlasPluginDemoActivity

Activities

com.games37.sdkkog.AtlasPluginDemoActivity

com.facebook.CustomTabActivity

com.naver.glink.android.sdk.login.neoid.PlugSchemeActivity

Permissions

Receivers

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.appsflyer.MultipleInstallBroadcastReceiver

com.ad.sdk.ADBroadcastReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.igexin.sdk.PushReceiver

com.igexin.download.DownloadReceiver

com.meizu.cloud.pushsdk.SystemReceiver

com.igexin.sdk.FlymePushReceiver

com.igexin.sdk.MiuiPushReceiver

com.igexin.sdk.HmsPushReceiver

com.huawei.hms.support.api.push.PushEventReceiver

Services

com.appsflyer.FirebaseInstanceIdListener

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.messaging.FirebaseMessagingService

com.appsflyer.FirebaseInstanceIdListener

org.OpenUDID.OpenUDID_service

com.igexin.sdk.PushService

Android Permissions

aadbe470d03c3ee1690f5803903acffd_JaffaCakes118