General

  • Target

    badda468470a02f8d3343f26e21761e9_JaffaCakes118

  • Size

    27.2MB

  • MD5

    badda468470a02f8d3343f26e21761e9

  • SHA1

    fcdc4dfe4385cb21e223a08f84d8dd98c89509b2

  • SHA256

    f506ef821d791407162307c0fa9430c53bc63cb5ea8c4515c2263d2425ca8279

  • SHA512

    275ce1b3093944cd15277a4dd2d9e112401d15ed7826e68bec51573984429c051d0bf2921afd7219c5514c0102ae0b9f508473d86b54839372c31eedd7a48587

  • SSDEEP

    786432:l6z/Fa/N+JXECFHEHHLJbs9fix/avObvPhne:WNqZCNALJ+qx/a25e

Score
8/10
upx

Malware Config

Signatures

  • Patched UPX-packed file 10 IoCs

    Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

  • UPX packed file 10 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Requests dangerous framework permissions 11 IoCs

Files

  • badda468470a02f8d3343f26e21761e9_JaffaCakes118
    .apk android arch:arm arch:x86

    com.cloudd.newuser

    com.cloudd.newuser.MainActivity


Android Permissions

badda468470a02f8d3343f26e21761e9_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.WAKE_LOCK

android.permission.MOUNT_ONMOUNT_FILESYSTEMS

android.permission.CAMERA

com.cloudd.newuser.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.GET_TASKS

android.permission.READ_CONTACTS

android.permission.CALL_PHONE

android.permission.RECORD_AUDIO

android.permission.FLAG_GRANT_READ_URI_PERMISSION

com.google.android.c2dm.permission.RECEIVE