ce14fc53bc0db0e867ec175a6a5de661_JaffaCakes118

Reason

error processing APK: readat analyses/240905/240905-2jm2aascmr/static1/unpack001/edf64d15d6e08560743ac7de67240913: negative offset

General

Target

ce14fc53bc0db0e867ec175a6a5de661_JaffaCakes118
Size

23.2MB
MD5

ce14fc53bc0db0e867ec175a6a5de661
SHA1

4f5bff6e019dbf4802ae5a2918603eb35a9b09b7
SHA256

13d4b912ba398e53b4491a559ec5ceded08911785f734836286f32c2fa139bc6
SHA512

04fbadcef489ae63b3ee1da428d63e228506fc4b57820e4dab18dbe9e0d5473ba059fd79a15a3a91288da081e5f4f3f9afb23ceb19d0ff66dc957281a5d8ccaa
SSDEEP

393216:sTgDhL4psMoFA+aZVV4EPukTxHsJbQf4DRCufszABvnlMHrw8E+ZeyT71:sCL4pIF9aVtWIsRS4VJEcvnlMHMn4eyl

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 12 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

ce14fc53bc0db0e867ec175a6a5de661_JaffaCakes118
.apk android arch:arm

com.pepper.ppx.m4399

kLrI.oaZHn.bEYg.z_KP

Activities

com.unity3d.player.UnityPlayerActivity

android.intent.action.MAIN

com.umeng.qq.tencent.AuthActivity

android.intent.action.VIEW

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

kLrI.oaZHn.bEYg.z_KP

android.intent.action.MAIN

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.CALL_PHONE
android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.RECORD_AUDIO
edf64d15d6e08560743ac7de67240913
.apk android arch:arm arch:mips arch:x86
m4399SecurityIab.apk
.apk android arch:arm

cn.m4399.securepayment

cn.m4399.securepayment.wxapi.WXPayEntryActivity

Activities

Permissions

com.m4399.iab.permission.SEND_RESULT

Receivers

cn.m4399.iab.IabReceiver

com.m4399.iab.ACTION_PURCHASE_RESULT

Services

cn.m4399.iab.IabService

com.m4399.iab.aidl.InAppBillingService

Android Permissions

ce14fc53bc0db0e867ec175a6a5de661_JaffaCakes118

Permissions

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.CALL_PHONE

android.permission.READ_PHONE_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.VIBRATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.RECORD_AUDIO

Sharing

Errors

General

Malware Config

Signatures

Files

com.pepper.ppx.m4399

kLrI.oaZHn.bEYg.z_KP

Activities

com.unity3d.player.UnityPlayerActivity

com.umeng.qq.tencent.AuthActivity

com.sina.weibo.sdk.share.WbShareTransActivity

kLrI.oaZHn.bEYg.z_KP

Permissions

cn.m4399.securepayment

cn.m4399.securepayment.wxapi.WXPayEntryActivity

Activities

Permissions

Receivers

cn.m4399.iab.IabReceiver

Services

cn.m4399.iab.IabService

Android Permissions

ce14fc53bc0db0e867ec175a6a5de661_JaffaCakes118