b258076af45337ed3404da6c860cd534_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b258076af45337ed3404da6c860cd534_JaffaCakes118
Size

11.3MB
MD5

b258076af45337ed3404da6c860cd534
SHA1

46a89a5fca5fc17e9d68ce24559322005e387553
SHA256

72730ae9fcf72e98e4dc2827423f66339d1e9c5d4dbba6a49b4380ca38c1c7bd
SHA512

74b063b2431c8cd4ed4f48ce127ab6bf759fd8f80c6de13615eb66ec782a8bc640d080d32bba3fe31a7556e0659f65b5900adcbed27bc9fa936ac73ec1b19437
SSDEEP

196608:FSINeIZ3MT/IkmJwemGg5tqbR+ocgEsif3gQsQS/m0Zv8w/nSKn3wTG:FLNem3OWxg5tqbRJBzifQFQS/m48w/nd

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

b258076af45337ed3404da6c860cd534_JaffaCakes118
.apk android arch:arm

com.helian.wifi

com.helian.wifi.modules.main.WelcomeActivity

Activities

com.helian.wifi.modules.main.WelcomeActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.helian.wifi.modules.main.MainActivity

com.helian.wifi.modules.main.MainActivity

com.helian.wifi.module.strategy.WifiStrategyActivity

com.app.userinfo.strategy.WifiStrategyActivity

com.helian.wifi.module.message.MessageCenterActivity

com.helian.wifi.module.message.MessageCenterActivity

com.app.doctor.module.orderdetail.diagnose.DiagnoseOrderDetailActivity

com.app.doctor.module.orderdetail.diagnose.DiagnoseOrderDetailActivity

com.app.doctor.module.report.DoctorReportActivity

com.helian.wifi.module.report.DoctorReportActivity

com.app.doctor.module.diagnose.select.SelectDepartmentActivity

com.helian.wifi.module.diagnose.select.SelectDepartmentActivity

com.app.doctor.module.service.DoctorMyServiceActivity

com.helian.wifi.module.service.DoctorMyServiceActivity

com.app.doctor.module.diagnose.im.IMDiagnoseActivity

com.helian.wifi.module.diagnose.im.IMDiagnoseActivity

com.app.doctor.module.home.DoctorHomeActivity

com.helian.wifi.module.home.DoctorHomeActivity

com.app.doctor.module.home.FocusDoctorActivity

com.helian.wifi.module.home.FocusDoctorActivity

com.app.userinfo.auth.module.auth.AuthActivity

com.app.userinfo.auth.AuthActivity

com.app.userinfo.auth.module.login.LoginActivity

com.app.userinfo.auth.module.login.LoginActivity

com.app.userinfo.auth.module.about.AboutActivity

com.app.userinfo.auth.module.about.AboutActivity

com.app.userinfo.auth.module.userinfo.UserInfoActivity

com.app.userinfo.auth.module.userinfo.UserInfoActivity

com.app.userinfo.auth.module.FeedbackActivity

com.helian.wifi.modules.main.about.WifiStrategyActivity

com.helian.wifi.integraltask.ui.main.IntegralTaskActivity

com.helian.wifi.integraltask.ui.main.IntegralTaskActivity

com.helian.wifi.integraltask.ui.detail.IntegralDetailActivity

com.helian.wifi.integraltask.ui.detail.IntegralDetailActivity

com.helian.wifi.integraltask.ui.record.IntegralRecordActivity

com.helian.wifi.integraltask.ui.record.IntegralRecordActivity

com.helian.wifi.integraltask.ui.InviteFriendActivity

com.helian.wifi.integraltask.ui.InviteFriendActivity

com.helian.app.module.mall.home.MallHomeActivity

com.helian.app.module.mall.home.MallHomeActivity

com.helian.app.module.mall.withdraw.ScoreWithdrawActivity

com.helian.app.module.mall.withdraw.ScoreWithdrawActivity

com.heliandoctor.app.push.oppo.OppoPushJumpEmptyActivity

com.heliandoctor.app.push.oppo.OppoPushJumpEmptyActivity

com.heliandoctor.app.push.huawei.HuaweiPushJumpEmptyActivity

android.intent.action.VIEW

com.alipay.sdk.app.AlipayResultActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_SECURE_SETTINGS
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CALL_PHONE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.WAKE_LOCK
android.permission.GET_TASKS
android.permission.CAMERA
android.permission.CHANGE_NETWORK_STATE
com.helian.wifi.permission.MIPUSH_RECEIVE
android.permission.INTERNET
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.RECORD_AUDIO
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FLASHLIGHT
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.FOREGROUND_SERVICE

Receivers

com.helian.wifi.modules.main.notification.NotifyBroadcastReceiver

android.intent.helianwifi.top.notification

com.helian.wifi.modules.main.push.CommonPushReceiverImpl

com.helian.app.push.events

com.heliandoctor.app.push.xiaomi.XiaoMiPushReceive

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.heliandoctor.app.push.huawei.HuaweiPushRevicer

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

com.huawei.hms.support.api.push.PushEventReceiver

com.huawei.intent.action.PUSH

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

Services

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote

com.heliandoctor.app.push.oppo.PushMessageService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

Android Permissions

b258076af45337ed3404da6c860cd534_JaffaCakes118

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WRITE_SECURE_SETTINGS

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CALL_PHONE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.WAKE_LOCK

android.permission.GET_TASKS

android.permission.CAMERA

android.permission.CHANGE_NETWORK_STATE

com.helian.wifi.permission.MIPUSH_RECEIVE

android.permission.INTERNET

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.VIBRATE

android.permission.RECORD_AUDIO

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FLASHLIGHT

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.FOREGROUND_SERVICE

Sharing

General

Malware Config

Signatures

Files

com.helian.wifi

com.helian.wifi.modules.main.WelcomeActivity

Activities

com.helian.wifi.modules.main.WelcomeActivity

com.helian.wifi.modules.main.MainActivity

com.helian.wifi.module.strategy.WifiStrategyActivity

com.helian.wifi.module.message.MessageCenterActivity

com.app.doctor.module.orderdetail.diagnose.DiagnoseOrderDetailActivity

com.app.doctor.module.report.DoctorReportActivity

com.app.doctor.module.diagnose.select.SelectDepartmentActivity

com.app.doctor.module.service.DoctorMyServiceActivity

com.app.doctor.module.diagnose.im.IMDiagnoseActivity

com.app.doctor.module.home.DoctorHomeActivity

com.app.doctor.module.home.FocusDoctorActivity

com.app.userinfo.auth.module.auth.AuthActivity

com.app.userinfo.auth.module.login.LoginActivity

com.app.userinfo.auth.module.about.AboutActivity

com.app.userinfo.auth.module.userinfo.UserInfoActivity

com.app.userinfo.auth.module.FeedbackActivity

com.helian.wifi.integraltask.ui.main.IntegralTaskActivity

com.helian.wifi.integraltask.ui.detail.IntegralDetailActivity

com.helian.wifi.integraltask.ui.record.IntegralRecordActivity

com.helian.wifi.integraltask.ui.InviteFriendActivity

com.helian.app.module.mall.home.MallHomeActivity

com.helian.app.module.mall.withdraw.ScoreWithdrawActivity

com.heliandoctor.app.push.oppo.OppoPushJumpEmptyActivity

com.heliandoctor.app.push.huawei.HuaweiPushJumpEmptyActivity

com.alipay.sdk.app.AlipayResultActivity

Permissions

Receivers

com.helian.wifi.modules.main.notification.NotifyBroadcastReceiver

com.helian.wifi.modules.main.push.CommonPushReceiverImpl

com.heliandoctor.app.push.xiaomi.XiaoMiPushReceive

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.heliandoctor.app.push.huawei.HuaweiPushRevicer

com.huawei.hms.support.api.push.PushEventReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

Services

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.heliandoctor.app.push.oppo.PushMessageService

Android Permissions

b258076af45337ed3404da6c860cd534_JaffaCakes118