ab62fe21e9655674d30fe4fb72c5f506_JaffaCakes118

General

Target

ab62fe21e9655674d30fe4fb72c5f506_JaffaCakes118
Size

7.5MB
MD5

ab62fe21e9655674d30fe4fb72c5f506
SHA1

e801ac7e66fe24f44e8d4b2200e0d22c79909d44
SHA256

9a4d5ed927ca4918b5c279563bece8d253332974d5fcf9501db005cba5e39f15
SHA512

fc977374c7d4f2eee5f55212d52aa0da21d71e27ced0e7edaedceb49f08e94d458909721ba15a16c56441efdf373cc1ef9589a3face2935e3f9ca6d952c81b55
SSDEEP

98304:k2ZUuoYSSMzj8JP6kcH5VRscolFNZLPn2JDIFdbINuw4QUo0egR3RmAKOdJp/G+k:fKSMzyPH6HRsc6hLeV+JcihXzEtCrhe

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

ab62fe21e9655674d30fe4fb72c5f506_JaffaCakes118
.apk android arch:arm

com.ninexiu.sixninexiu

.ui.SplashUI

Activities

.ui.SplashUI

android.intent.action.MAIN

.ui.LiveRoomUI

com.ninexiu.sixninexiu.liveroomactivity

.ui.AdActivity

com.ninexiu.sixninexiu.adactivity

com.tencent.tauth.TAuthView

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.unionpay.uppay.PayActivity

android.intent.action.Run

com.unionpay.uppay.PayActivityEx

android.intent.action.Run
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.GET_TASKS
getui.permission.GetuiService

Receivers

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls

com.igexin.sdk.PushReceiver

com.igexin.sdk.action.pushmanager

com.igexin.getuiext.service.PayloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.6xiFFboJur7NbrsOadt4p7

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.ninexiu.sixninexiu.push.GeTuiBroadcastReceiver

com.igexin.sdk.action.6xiFFboJur7NbrsOadt4p7

Services
alipay_msp.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED
com.alipay.android.app.gphone.SHARE

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService

Android Permissions

ab62fe21e9655674d30fe4fb72c5f506_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CHANGE_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

android.permission.GET_TASKS

getui.permission.GetuiService

Sharing

General

Malware Config

Signatures

Files

com.ninexiu.sixninexiu

.ui.SplashUI

Activities

.ui.SplashUI

.ui.LiveRoomUI

.ui.AdActivity

com.tencent.tauth.TAuthView

com.tencent.tauth.AuthActivity

com.unionpay.uppay.PayActivity

com.unionpay.uppay.PayActivityEx

Permissions

Receivers

com.igexin.sdk.PushReceiver

com.igexin.sdk.PushReceiver

com.igexin.getuiext.service.PayloadReceiver

com.igexin.download.DownloadReceiver

com.ninexiu.sixninexiu.push.GeTuiBroadcastReceiver

Services

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

.AlixService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

ab62fe21e9655674d30fe4fb72c5f506_JaffaCakes118