b3054f1851f927ee8180cc72edd01357_JaffaCakes118

General

Target

b3054f1851f927ee8180cc72edd01357_JaffaCakes118
Size

6.9MB
MD5

b3054f1851f927ee8180cc72edd01357
SHA1

c133226239a50261e6281eda5c9ac5863b5718b0
SHA256

eeb0868fb52f914992f0e2a1d41bc761eb7e39c66c356051382f450cc83d0775
SHA512

143cbf8d61f1214b3bbc089e909f4eac6fdc70e407fe9313fee42da7e91ad1d24274f80b7871d2c42422a1863a166eed35215e43771b783a3b043cb641090eca
SSDEEP

98304:GzzupQUcv/Jv56Jw3z73qckE0brOVKDyGqVBiK+uX+uAhkL/HK6kyCuk+/FXz3fe:GWpl85oJO7fkhwKDyjwDuAKK6u

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 12 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

b3054f1851f927ee8180cc72edd01357_JaffaCakes118
.apk android arch:arm arch:mips arch:x86

com.zcwc.fabrics

.activity.SplashActivity

Activities

.activity.SplashActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.SET_DEBUG_APP
android.permission.GET_TASKS
android.permission.CAMERA
android.permission.GET_ACCOUNTS
android.permission.ACCESS_COARSE_LOCATION
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.READPHONESTATE
android.permission.READ_LOGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.SEND_SMS
android.permission.ACCESS_MOCK_LOCATION
android.permission.RESTART_PACKAGES
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.DISABLE_KEYGUARD

Receivers

.activity.PostPhotoActivity

asad

Services
plugin-deploy.jar
.apk android

Android Permissions

b3054f1851f927ee8180cc72edd01357_JaffaCakes118

Permissions

android.permission.SET_DEBUG_APP

android.permission.GET_TASKS

android.permission.CAMERA

android.permission.GET_ACCOUNTS

android.permission.ACCESS_COARSE_LOCATION

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.READPHONESTATE

android.permission.READ_LOGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.SEND_SMS

android.permission.ACCESS_MOCK_LOCATION

android.permission.RESTART_PACKAGES

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.DISABLE_KEYGUARD

Sharing

General

Malware Config

Signatures

Files

com.zcwc.fabrics

.activity.SplashActivity

Activities

.activity.SplashActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

.activity.PostPhotoActivity

Services

Android Permissions

b3054f1851f927ee8180cc72edd01357_JaffaCakes118