b6d4c7923979fa8caad430414dd36ca4_JaffaCakes118

General

Target

b6d4c7923979fa8caad430414dd36ca4_JaffaCakes118
Size

6.6MB
MD5

b6d4c7923979fa8caad430414dd36ca4
SHA1

157c4ceb0af9788ac1e53492bc1d851bec3392db
SHA256

785e8eaeb19142f92b2bed7ceb89424c65d38903d2cf2fc325c954a86f7b9c65
SHA512

43e9748aae881be54c67e3b3f5d36df3358d9b7a4a05ab5b7ba1b3ef2201e2357a11255c924ec6d79496de78cd8b52192c950a451697f161521a8bf7eca9069b
SSDEEP

98304:A/ZjVFzZSj4AVlP3rwim/OouGNwzVp5awWrv/1b1t4vkuAlkctxedMO4NDzCsqrU:sonVl8ias0aV/Kn1L6kuekcS4Nn/

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

b6d4c7923979fa8caad430414dd36ca4_JaffaCakes118
.apk android arch:arm

com.hld.anzenbokusu

com.hld.anzenbokusu.mvp.ui.activity.SplashActivity

Activities

com.hld.anzenbokusu.mvp.ui.activity.SplashActivity

android.intent.action.MAIN

com.hld.anzenbokusu.mvp.ui.activity.OpenFormBrowserActivity

android.intent.action.VIEW

com.hld.anzenbokusu.mvp.ui.activity.FileShareActivity

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.hld.anzenbokusu.mvp.ui.activity.ShortCutActivity

android.intent.action.CREATE_SHORTCUT

com.hld.anzenbokusu.mvp.ui.activity.HideAllShortCutActivity

android.intent.action.CREATE_SHORTCUT

Permissions

android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.USE_FINGERPRINT
com.fingerprints.service.ACCESS_FINGERPRINT_MANAGER
com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.VIBRATE
android.permission.CAMERA
android.permission.PROCESS_OUTGOING_CALLS
android.permission.USE_FINGERPRINT
com.fingerprints.service.ACCESS_FINGERPRINT_MANAGER
com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY
android.permission.RECEIVE_BOOT_COMPLETED
com.android.vending.BILLING
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.GET_TASKS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.RECORD_AUDIO
android.permission.SYSTEM_ALERT_WINDOW

Receivers

com.hld.anzenbokusu.receiver.DialReceiver

android.intent.action.NEW_OUTGOING_CALL
android.provider.Telephony.SECRET_CODE

com.hld.anzenbokusu.receiver.TakePictureCompleteReceiver

com.hld.anzenbokusu.TakePictureComplete

com.hld.anzenbokusu.receiver.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

com.hld.anzenbokusu.receiver.DPMReceiver

android.app.action.PROFILE_PROVISIONING_COMPLETE
android.app.action.DEVICE_ADMIN_ENABLED
android.app.action.DEVICE_ADMIN_DISABLE_REQUESTED
android.app.action.DEVICE_ADMIN_DISABLED

Services

com.hld.anzenbokusu.service.AppProbService

android.accessibilityservice.AccessibilityService

Android Permissions

b6d4c7923979fa8caad430414dd36ca4_JaffaCakes118

Permissions

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.USE_FINGERPRINT

com.fingerprints.service.ACCESS_FINGERPRINT_MANAGER

com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.VIBRATE

android.permission.CAMERA

android.permission.PROCESS_OUTGOING_CALLS

android.permission.USE_FINGERPRINT

com.fingerprints.service.ACCESS_FINGERPRINT_MANAGER

com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY

android.permission.RECEIVE_BOOT_COMPLETED

com.android.vending.BILLING

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.GET_TASKS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.RECORD_AUDIO

android.permission.SYSTEM_ALERT_WINDOW

Sharing

General

Malware Config

Signatures

Files

com.hld.anzenbokusu

com.hld.anzenbokusu.mvp.ui.activity.SplashActivity

Activities

com.hld.anzenbokusu.mvp.ui.activity.SplashActivity

com.hld.anzenbokusu.mvp.ui.activity.OpenFormBrowserActivity

com.hld.anzenbokusu.mvp.ui.activity.FileShareActivity

com.hld.anzenbokusu.mvp.ui.activity.ShortCutActivity

com.hld.anzenbokusu.mvp.ui.activity.HideAllShortCutActivity

Permissions

Receivers

com.hld.anzenbokusu.receiver.DialReceiver

com.hld.anzenbokusu.receiver.TakePictureCompleteReceiver

com.hld.anzenbokusu.receiver.BootBroadcastReceiver

com.hld.anzenbokusu.receiver.DPMReceiver

Services

com.hld.anzenbokusu.service.AppProbService

Android Permissions

b6d4c7923979fa8caad430414dd36ca4_JaffaCakes118