Overview

overview

8

Static

static

8

ad79c7b876...18.apk

android-9-x86

1

amap_resou..._0.apk

android-9-x86

amap_resou..._0.apk

android-10-x64

amap_resou..._0.apk

android-11-x64

gdtadv2.apk

android-9-x86

Sharing

Copy URL Twitter E-mail

General

  • Target

    ad79c7b87690447bb28d94482d957427_JaffaCakes118

  • Size

    22.8MB

  • MD5

    ad79c7b87690447bb28d94482d957427

  • SHA1

    e4f9fbdee81c7dbae3c84d30f16ae41ef5aa5e4d

  • SHA256

    054d1491e21c8eb5a109fdba04f74a09f3c02b0e835ecfcfa9f056d6cda16560

  • SHA512

    d140646e10faeefaf4bf6e4874621d35ca5057b572454ac3db397e438aa2948ed1d5e7336de77262c9fb3485a443b0a3c91b11ab49af0a613996857de652463b

  • SSDEEP

    393216:dKmqaLXgM70UrIopJEnSz43n0ONiEVzvjSTW96RlcT5MTrgnppcTG:dOa/7Rr/ESz43n08iWzr+C5MTUbcq

Score
8/10
upx

Malware Config

Signatures

  • Patched UPX-packed file 1 IoCs

    Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Requests dangerous framework permissions 18 IoCs

Files

  • ad79c7b87690447bb28d94482d957427_JaffaCakes118
    .apk android arch:arm

    com.hf.mastermanager

    com.HBuilder.integrate.SDK_WebApp


  • amap_resource1_0_0.png
    .apk android

    com.amap.api.map3d


  • gdtadv2.jar
    .apk android arch:arm arch:arm64

Android Permissions

ad79c7b87690447bb28d94482d957427_JaffaCakes118

Permissions

android.permission.CAMERA

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.FLASHLIGHT

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.ACCESS_WIFI_STATE

android.permission.CALL_PHONE

getui.permission.GetuiService.com.hf.mastermanager

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECORD_AUDIO

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.READ_EXTERNAL_STORAGE

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.huawei.android.launcher.permission.CHANGE_BADGE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

com.android.launcher2.permission.READ_SETTINGS

com.android.launcher3.permission.READ_SETTINGS

com.yulong.android.launcherL.permission.READ_SETTINGS

com.meizu.flyme.launcher.permission.READ_SETTINGS

com.bbk.launcher2.permission.READ_SETTINGS