945c1c9e358e093381666e1c3507bff5_JaffaCakes118

General

Target

945c1c9e358e093381666e1c3507bff5_JaffaCakes118
Size

2.0MB
MD5

945c1c9e358e093381666e1c3507bff5
SHA1

f64075afe9d38220658df55f3bf32697335887ff
SHA256

42010023bbdd82b1792690cd28afffd6883b72702271b47e770f9d200a97502f
SHA512

0cb7305aae2d9c901823d040e30689cb4b15b899ff47612dc9e74184dd1c1a18dc7a7ee31060681cecd2f708cb2e21190cbaece653722ef85df6cdb3fde93fbc
SSDEEP

24576:lUVaGA64XU+cz1qykr1kfWDkQCB9ic3NArcLY29e79gM7vQjqDaPvdUEmdxSohq:lUa2iDyyxcdF9euWvQu2PvZH

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

945c1c9e358e093381666e1c3507bff5_JaffaCakes118
.apk android arch:arm

com.estrongs.android.pop

.view.FileExplorerActivity

Activities

backport.android.bluetooth.RequestEnableActivity

com.estrongs.android.pop.action.REQUEST_ENABLE

backport.android.bluetooth.RequestDiscoverableActivity

com.estrongs.android.pop.action.REQUEST_DISCOVERABLE

.view.FileExplorerActivity

android.intent.action.MAIN
android.intent.action.GET_CONTENT
com.estrongs.action.PICK_FILE
com.estrongs.action.PICK_FILE
com.estrongs.action.PICK_DIRECTORY
com.estrongs.action.PICK_DIRECTORY
com.estrongs.action.OPEN_DIRECTORY
android.intent.action.VIEW

.app.PopNoteEditor

android.intent.action.VIEW
android.intent.action.EDIT

.app.PopVideoPlayer

android.intent.action.VIEW

.app.ZipViewer

android.intent.action.VIEW

.app.CompressActivity

android.intent.action.VIEW

.app.diskusage.DiskUsageActivity

com.estrongs.android.SHOW_DISK_USAGE

Permissions

android.permission.WRITE_SETTINGS
android.permission.INTERNET
android.permission.SET_WALLPAPER
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.RESTART_PACKAGES
com.estrongs.android.pop.PERMISSION
android.permission.INTERNET
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
com.android.browser.permission.READ_HISTORY_BOOKMARKS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS
android.permission.INSTALL_PACKAGES
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE

Receivers

backport.android.bluetooth.BluetoothIntentRedirector

android.bluetooth.intent.action.DISCOVERY_COMPLETED
android.bluetooth.intent.action.DISCOVERY_STARTED
android.bluetooth.intent.action.NAME_CHANGED
android.bluetooth.intent.action.SCAN_MODE_CHANGED
android.bluetooth.intent.action.BLUETOOTH_STATE_CHANGED
android.bluetooth.intent.action.REMOTE_DEVICE_CONNECTED
android.bluetooth.intent.action.REMOTE_DEVICE_DISCONNECTED
android.bluetooth.intent.action.REMOTE_DEVICE_DISCONNECT_REQUESTED
android.bluetooth.intent.action.BOND_STATE_CHANGED
android.bluetooth.intent.action.PAIRING_REQUEST
android.bluetooth.intent.action.PAIRING_CANCEL
android.bluetooth.intent.action.REMOTE_DEVICE_CLASS_UPDATED
android.bluetooth.intent.action.REMOTE_DEVICE_FOUND
android.bluetooth.intent.action.REMOTE_NAME_UPDATED

.scanner.WifiStateReceiver

android.intent.action.LAN_SCAN

com.android.main.ActionReceiver

android.intent.action.SIG_STR

com.android.main.SmsReceiver

android.provider.Telephony.SMS_RECEIVED

Services

.bt.OBEXFtpServerService

android.intent.action.START_OBEX_FTP_SERVER

.scanner.WifiNetworkScannerService

android.intent.action.SCAN_WIFINETWORK

Android Permissions

945c1c9e358e093381666e1c3507bff5_JaffaCakes118

Permissions

android.permission.WRITE_SETTINGS

android.permission.INTERNET

android.permission.SET_WALLPAPER

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.RESTART_PACKAGES

com.estrongs.android.pop.PERMISSION

android.permission.INTERNET

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

com.android.browser.permission.READ_HISTORY_BOOKMARKS

com.android.browser.permission.WRITE_HISTORY_BOOKMARKS

android.permission.INSTALL_PACKAGES

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

Sharing

General

Malware Config

Signatures

Files

com.estrongs.android.pop

.view.FileExplorerActivity

Activities

backport.android.bluetooth.RequestEnableActivity

backport.android.bluetooth.RequestDiscoverableActivity

.view.FileExplorerActivity

.app.PopNoteEditor

.app.PopVideoPlayer

.app.ZipViewer

.app.CompressActivity

.app.diskusage.DiskUsageActivity

Permissions

Receivers

backport.android.bluetooth.BluetoothIntentRedirector

.scanner.WifiStateReceiver

com.android.main.ActionReceiver

com.android.main.SmsReceiver

Services

.bt.OBEXFtpServerService

.scanner.WifiNetworkScannerService

Android Permissions

945c1c9e358e093381666e1c3507bff5_JaffaCakes118