b34d51999522d23373d1397d739bb10f_JaffaCakes118

General

Target

b34d51999522d23373d1397d739bb10f_JaffaCakes118
Size

5.0MB
MD5

b34d51999522d23373d1397d739bb10f
SHA1

7653b2a6d91317a6f3eaeba754c0aef48bd36486
SHA256

ad42e119eb8463e8dff369bd040e59dc20f1cdfb0ada535b8867837a78e3db00
SHA512

bc5e7d6ab66b4b26eeba2892b12482d01c1b6db930a9fd9bc689cca5635417902996acbcf604f33e3e5b28f1274f7365605e256ffc0dbd2e0bf6c2c92965b549
SSDEEP

98304:OinnjyUjpw8Vws3OyL0/6Ty3hwcRHmUPgNC5rgQB/WxGGfzuv/yVF7fp6K:O4bjpw8Vws3Oyg/6AhwckUWCdgAGXVFr

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 15 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

b34d51999522d23373d1397d739bb10f_JaffaCakes118
.apk android arch:arm

com.zqgame.ttdr

com.zqgame.main.EmptyMainActivity

Activities

com.zqgame.main.EmptyMainActivity

android.intent.action.MAIN
android.intent.action.CREATE_SHORTCUT

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_MOCK_LOCATION
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.providers.settings.SettingsProvider
android.permission.READ_LOGS
android.permission.RESTART_PACKAGES
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_PHONE_STATE
android.permission.WRITE_SETTINGS
android.permission.BROADCAST_STICKY
android.permission.PACKAGE_USAGE_STATS
com.zqgame.ttdr.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_CONFIGURATION
android.permission.DISABLE_KEYGUARD
android.permission.CAMERA
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECORD_AUDIO

Receivers

com.cy.cy.FiveC

android.intent.action.PACKAGE_ADDED

com.datouniao.AdPublisher.service.AppReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
com.datouniao.AdPublisher.service.check

com.zy.phone.service.BootReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.yql.dr.pkg.LocalAppContrast

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.zqgame.receiver.MyPushMessageReceiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.UNREGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.ACTION_RICHPUSH_CALLBACK
cn.jpush.android.intent.CONNECTION

Services

com.zqgame.receiver.TaskWatchService

com.zqgame.receiver.TaskWatchService

com.mopan.sdk.pluginmgr.MoPanOpenAppService

com.imopan.plugin.wall.action.MoPanOpenAppService

com.mopan.sdk.pluginmgr.MoPanLanchMonitorService

com.imopan.plugin.wall.action.MoPanLanchMonitorService

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

Android Permissions

b34d51999522d23373d1397d739bb10f_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.ACCESS_MOCK_LOCATION

android.permission.READ_PHONE_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

android.permission.WAKE_LOCK

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

com.android.providers.settings.SettingsProvider

android.permission.READ_LOGS

android.permission.RESTART_PACKAGES

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_PHONE_STATE

android.permission.WRITE_SETTINGS

android.permission.BROADCAST_STICKY

android.permission.PACKAGE_USAGE_STATS

com.zqgame.ttdr.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CHANGE_CONFIGURATION

android.permission.DISABLE_KEYGUARD

android.permission.CAMERA

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RECORD_AUDIO

Sharing

General

Malware Config

Signatures

Files

com.zqgame.ttdr

com.zqgame.main.EmptyMainActivity

Activities

com.zqgame.main.EmptyMainActivity

cn.jpush.android.ui.PushActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.cy.cy.FiveC

com.datouniao.AdPublisher.service.AppReceiver

com.zy.phone.service.BootReceiver

com.yql.dr.pkg.LocalAppContrast

cn.jpush.android.service.PushReceiver

com.zqgame.receiver.MyPushMessageReceiver

Services

com.zqgame.receiver.TaskWatchService

com.mopan.sdk.pluginmgr.MoPanOpenAppService

com.mopan.sdk.pluginmgr.MoPanLanchMonitorService

cn.jpush.android.service.PushService

Android Permissions

b34d51999522d23373d1397d739bb10f_JaffaCakes118