b42f5e86e40b9b3f1a13ff510fb0e062_JaffaCakes118

General

Target

b42f5e86e40b9b3f1a13ff510fb0e062_JaffaCakes118
Size

31.7MB
MD5

b42f5e86e40b9b3f1a13ff510fb0e062
SHA1

985ed12a583865267ca5a282d628d721344d0017
SHA256

71bcda7826419705b8076cd0e7de8a94ff679713f1930a939d13fdf11ed56275
SHA512

8295c7efb5b9b083a3228a292aaf0ba885fb3fbfc611ea61866229f30d0c1b8080184ea835336142bc7b9c7c169cb90dac3eed49c23e04e349cbaf8933b3ecd4
SSDEEP

786432:caAYcsF4q+xP/PyjkK5HkZfTR+deR5p8E4/eeubOvZ3Tp:3AYcsiB3PyomkhTR+deRbhuuivZ1

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

b42f5e86e40b9b3f1a13ff510fb0e062_JaffaCakes118
.apk android arch:arm

com.multak.LoudSpeakerKaraoke

.LoudSpeakerKaraoke

Activities

.LoudSpeakerKaraoke

android.intent.action.MAIN
android.intent.action.LoudSpeakerKaraoke

.MsgActivity

android.intent.action.VIEW

.TabWidget1

android.intent.action.VIEW

.TabWeb

android.intent.action.VIEW

.TabWeb2

android.intent.action.VIEW

.TabWidget5

android.intent.action.VIEW

.TabWidget4

android.intent.action.VIEW

com.tencent.weibo.webview.OAuthV1AuthorizeWebView

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_APN_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_ACCESS_FINE_LOCATION
android.permission.RECORD_AUDIO
android.permission.WAKE_LOCK
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_SURFACE_FLINGER
android.permission.READ_FRAME_BUFFER
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.PROCESS_OUTGOING_CALLS
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN

Receivers

com.multak.LoudSpeakerKaraoke.BootReceiver

android.intent.action.RECEIVE_BOOT_COMPLETED
android.intent.action.BOOT_COMPLETED

Services

.kkeservice

com.multak.HappyKTVMobile.kkeservice
alipay_plugin250_1221.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

Android Permissions

b42f5e86e40b9b3f1a13ff510fb0e062_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_APN_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_ACCESS_FINE_LOCATION

android.permission.RECORD_AUDIO

android.permission.WAKE_LOCK

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_SURFACE_FLINGER

android.permission.READ_FRAME_BUFFER

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.PROCESS_OUTGOING_CALLS

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

Sharing

General

Malware Config

Signatures

Files

com.multak.LoudSpeakerKaraoke

.LoudSpeakerKaraoke

Activities

.LoudSpeakerKaraoke

.MsgActivity

.TabWidget1

.TabWeb

.TabWeb2

.TabWidget5

.TabWidget4

com.tencent.weibo.webview.OAuthV1AuthorizeWebView

Permissions

Receivers

com.multak.LoudSpeakerKaraoke.BootReceiver

Services

.kkeservice

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

.AlixReceiver

Services

.AlixService

Android Permissions

b42f5e86e40b9b3f1a13ff510fb0e062_JaffaCakes118