d6a4d6618fca70eff328f1caec5b4635_JaffaCakes118

General

Target

d6a4d6618fca70eff328f1caec5b4635_JaffaCakes118
Size

10.1MB
MD5

d6a4d6618fca70eff328f1caec5b4635
SHA1

2455315f999798f12c5a327e113b3271f1938559
SHA256

6e15e3d8351179d1534d93e7e44c05ff1d2f33b06cb80eb74d6fd35b0cb9def1
SHA512

cdb8027aabcd75bd6245bc5b98e7bde62940ce4352fff935b1009d28647994234146bf6b4a33494aec7fb3e30521e47ef7193a77a769041dc4982c60b436d325
SSDEEP

196608:UAeO/GpPSepVhEo3BfrtM/a4+KtHWptKYXyQykiTdmmVJ4c0F1hdyqLSM:U4/uQo3dJM/KKtHWDKgpykAdmmVfwyqx

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS

Files

d6a4d6618fca70eff328f1caec5b4635_JaffaCakes118
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

com.tutorstech.cicada

com.stub.stub01.Stub01

Activities

com.tutorstech.cicada.mainView.loginView.TTWelcomeActivity

android.intent.action.MAIN

com.stub.stub01.Stub01

android.intent.action.MAIN

Permissions

android.permission.READ_LOGS
android.permission.SET_DEBUG_APP
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.GET_TASKS
android.permission.CALL_PHONE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.RECEIVE_USER_PRESENT
android.permission.WAKE_LOCK
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_CONTACTS
android.permission.RECEIVE_BOOT_COMPLETED

Receivers

com.tutorstech.cicada.receiver.TTNetStateReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.tutorstech.cicada.receiver.TTAlarmNotificationReceiver

com.tutorstech.cicada.alarm.clock

me.tatarka.support.internal.receivers.NetworkReceiver

android.net.conn.CONNECTIVITY_CHANGE

me.tatarka.support.internal.receivers.PowerReceiver

android.intent.action.ACTION_BATTERY_LOW
android.intent.action.ACTION_BATTERY_OKAY
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
me.tatarka.support.server.job.controllers.PowerReceiver.ACTION_CHARGING_STABLE

me.tatarka.support.internal.receivers.BootReceiver

android.intent.action.BOOT_COMPLETED

me.tatarka.support.internal.receivers.IdleReceiver

android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.intent.action.DREAMING_STARTED
android.intent.action.DREAMING_STOPPED
me.tatarka.support.server.job.controllers.IdleReceiver.ACTION_TRIGGER_IDLE

me.tatarka.support.internal.receivers.TimeReceiver

me.tatarka.support.jobscheduler.JOB_DEADLINE_EXPIRED
me.tatarka.support.jobscheduler.JOB_DELAY_EXPIRED

Services

Android Permissions

d6a4d6618fca70eff328f1caec5b4635_JaffaCakes118

Permissions

android.permission.READ_LOGS

android.permission.SET_DEBUG_APP

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.GET_TASKS

android.permission.CALL_PHONE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.RECEIVE_USER_PRESENT

android.permission.WAKE_LOCK

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_CONTACTS

android.permission.RECEIVE_BOOT_COMPLETED

Sharing

General

Malware Config

Signatures

Files

com.tutorstech.cicada

com.stub.stub01.Stub01

Activities

com.tutorstech.cicada.mainView.loginView.TTWelcomeActivity

com.stub.stub01.Stub01

Permissions

Receivers

com.tutorstech.cicada.receiver.TTNetStateReceiver

com.tutorstech.cicada.receiver.TTAlarmNotificationReceiver

me.tatarka.support.internal.receivers.NetworkReceiver

me.tatarka.support.internal.receivers.PowerReceiver

me.tatarka.support.internal.receivers.BootReceiver

me.tatarka.support.internal.receivers.IdleReceiver

me.tatarka.support.internal.receivers.TimeReceiver

Services

Android Permissions

d6a4d6618fca70eff328f1caec5b4635_JaffaCakes118