d2e6e918cd652ec76f68081f48c23cde_JaffaCakes118

General

Target

d2e6e918cd652ec76f68081f48c23cde_JaffaCakes118
Size

31.5MB
MD5

d2e6e918cd652ec76f68081f48c23cde
SHA1

fa9a154c389869c1d1710a27d0f301376aebcc94
SHA256

7e4d8e190af1c6ae27652c6c5e100dc47440c83932c4eb54bee1275a59acfd35
SHA512

17d08684fe304a32c3e587a967f7c604bf94389b301bb068eb1fba66e1b08c5e1aace835cc71ec94187ce244efe98d7b9ffa253cfa33aaab93025bd4c9e23b71
SSDEEP

786432:yb5MHgl62qHhXMnunshKyBRQWAfWddWCz5fFF:ynXOheW2bAfgd9FF

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

d2e6e918cd652ec76f68081f48c23cde_JaffaCakes118
.apk android arch:arm arch:x86

com.auntec.zhuoshixiong

com.auntec.zhuoshixiong.ui.activity.LaunchAct

Activities

com.auntec.zhuoshixiong.ui.activity.LaunchAct

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.READ_CONTACTS
android.permission.READ_CALL_LOG
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.BATTERY_STATS
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.CHANGE_CONFIGURATION
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.CAMERA
android.permission.RECORD_AUDIO
android.permission.CHANGE_WIFI_STATE

Receivers

com.auntec.zhuoshixiong.ui.activity.NewOppoRecoverInstallListener

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED

com.qiyukf.nimlib.service.NimReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

Services

com.auntec.zhuoshixiong.SystemDataService.RemoteConnectionService

com.auntec.zsx.service

com.auntec.zhuoshixiong.ui.service.RestoreHelpServer

android.accessibilityservice.AccessibilityService

Android Permissions

d2e6e918cd652ec76f68081f48c23cde_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.READ_CONTACTS

android.permission.READ_CALL_LOG

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.BATTERY_STATS

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.CHANGE_CONFIGURATION

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.CAMERA

android.permission.RECORD_AUDIO

android.permission.CHANGE_WIFI_STATE

Sharing

General

Malware Config

Signatures

Files

com.auntec.zhuoshixiong

com.auntec.zhuoshixiong.ui.activity.LaunchAct

Activities

com.auntec.zhuoshixiong.ui.activity.LaunchAct

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.auntec.zhuoshixiong.ui.activity.NewOppoRecoverInstallListener

com.qiyukf.nimlib.service.NimReceiver

Services

com.auntec.zhuoshixiong.SystemDataService.RemoteConnectionService

com.auntec.zhuoshixiong.ui.service.RestoreHelpServer

Android Permissions

d2e6e918cd652ec76f68081f48c23cde_JaffaCakes118