d069466e6d8bf890c46a6858144b5048_JaffaCakes118

General

Target

d069466e6d8bf890c46a6858144b5048_JaffaCakes118
Size

24.9MB
MD5

d069466e6d8bf890c46a6858144b5048
SHA1

f7a8db16da3c2060e599f0a2fedfbef2a899c094
SHA256

dd26ce8324f445cb45d920c16ae135a1a06e1311fc75341d7fb9c363dd33fc43
SHA512

47e1d9a3b140c6ac120ef843673d2dcce86158494a8f2dbaeff6e57c64cc590898cd0ad8cceaa5ede807d5ddb0c109e2b1de44b0771cc39970b344c18a9f72cd
SSDEEP

393216:fCfmi+fIVYCLCVE1e/IofzbUYAClpOkik9dqvgOnFlFSQ8qBnYk3gB+XmL2b2CiC:fCuiteWMtIofzbq5kYgqFlB7lo5il

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA

Files

d069466e6d8bf890c46a6858144b5048_JaffaCakes118
.apk android arch:arm arch:x86

com.meiyou.yunqi

com.meiyou.pregnancy.ui.welcome.WelcomeActivity

Activities

com.meiyou.pregnancy.ui.welcome.WelcomeActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.alibaba.sdk.android.trade.ui.NativeTaobaoClientActivity

android.intent.action.VIEW

com.meiyou.framework.share.ui.TranscultShareActivity

com.meiyou.framework.share.SHOW_TRANSCULT_SHARE_ACTIVITY

com.meiyou.framework.biz.ui.TranslucentActivity

com.meiyou.framework.biz.ui.SHOW_ACTIVITY

com.tencent.smtt.sdk.VideoActivity

com.tencent.smtt.tbs.video.PLAY

com.alibaba.sdk.android.trade.ui.TradeWebViewActivity

COM_TAOBAO_TAE_SDK_TRADE_WEB_VIEW_ACTION

com.google.android.gms.appinvite.PreviewActivity

com.google.android.gms.appinvite.ACTION_PREVIEW

com.google.android.gms.tagmanager.TagManagerPreviewActivity

android.intent.action.VIEW

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
com.lingan.yunqi.permission.meiyou_data
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.GET_TASKS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.VIBRATE
android.permission.CAMERA
android.permission.FLASHLIGHT
com.meiyou.yunqi.permission.MIPUSH_RECEIVE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
com.google.android.c2dm.permission.RECEIVE
com.meiyou.yunqi.permission.C2D_MESSAGE

Receivers

com.meiyou.pregnancy.receiver.MeetyouSocketReceiver

action_socket_data

com.meiyou.pregnancy.receiver.NetworkChangeReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_MEDIA_SCANNER_FINISHED
android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.USER_PRESENT

com.meiyou.pregnancy.receiver.TimeChangeReceiver

android.intent.action.TIMEZONE_CHANGED
android.intent.action.DATE_CHANGED
android.intent.action.TIME_SET

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.meiyou.framework.biz.push.mipush.XiaomiReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

com.meiyou.pregnancy.receiver.MeetyouReminderReceiver

meetyou.action.reminders
register.action.reminders
notifyclick.action.reminders
push.notifyclick.action.reminders
android.intent.action.TIME_SET

com.meiyou.framework.biz.ui.traveler.TravelerReceiver

com.lingan.meetyou.arrived

com.qiniu.android.dns.NetworkReceiver

android.net.conn.connectivity_change
android.net.wifi.wifi_state_changed

com.alibaba.sdk.android.hotpatch.HotPatchBroadcastReceiver

com.alibaba.sdk.android.hotpatch.action.HOT_PATCH

com.youdao.sdk.common.YouDaoTrackerReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.net.conn.CONNECTIVITY_CHANGE

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.REGISTRATION

com.google.android.gms.measurement.AppMeasurementReceiver

com.google.android.gms.measurement.UPLOAD

Services

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Android Permissions

d069466e6d8bf890c46a6858144b5048_JaffaCakes118

Permissions

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

com.lingan.yunqi.permission.meiyou_data

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.GET_TASKS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.VIBRATE

android.permission.CAMERA

android.permission.FLASHLIGHT

com.meiyou.yunqi.permission.MIPUSH_RECEIVE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

com.google.android.c2dm.permission.RECEIVE

com.meiyou.yunqi.permission.C2D_MESSAGE

Sharing

General

Malware Config

Signatures

Files

com.meiyou.yunqi

com.meiyou.pregnancy.ui.welcome.WelcomeActivity

Activities

com.meiyou.pregnancy.ui.welcome.WelcomeActivity

com.tencent.tauth.AuthActivity

com.alibaba.sdk.android.trade.ui.NativeTaobaoClientActivity

com.meiyou.framework.share.ui.TranscultShareActivity

com.meiyou.framework.biz.ui.TranslucentActivity

com.tencent.smtt.sdk.VideoActivity

com.alibaba.sdk.android.trade.ui.TradeWebViewActivity

com.google.android.gms.appinvite.PreviewActivity

com.google.android.gms.tagmanager.TagManagerPreviewActivity

Permissions

Receivers

com.meiyou.pregnancy.receiver.MeetyouSocketReceiver

com.meiyou.pregnancy.receiver.NetworkChangeReceiver

com.meiyou.pregnancy.receiver.TimeChangeReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.meiyou.framework.biz.push.mipush.XiaomiReceiver

com.meiyou.pregnancy.receiver.MeetyouReminderReceiver

com.meiyou.framework.biz.ui.traveler.TravelerReceiver

com.qiniu.android.dns.NetworkReceiver

com.alibaba.sdk.android.hotpatch.HotPatchBroadcastReceiver

com.youdao.sdk.common.YouDaoTrackerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.gms.measurement.AppMeasurementReceiver

Services

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.messaging.FirebaseMessagingService

Android Permissions

d069466e6d8bf890c46a6858144b5048_JaffaCakes118