d9a05adc8f4ed155ba5b2ede16fcdf15_JaffaCakes118

General

Target

d9a05adc8f4ed155ba5b2ede16fcdf15_JaffaCakes118
Size

52.4MB
MD5

d9a05adc8f4ed155ba5b2ede16fcdf15
SHA1

f984bf0545f02c2b873930788874a73728ff936b
SHA256

333d5343a3066bc839508077033db2da2346af475cedea6f48386b5cb4a7bd52
SHA512

7681552f676a922ecb2d3ca2d99c9c33faca942addc8b5de469500342939a629d35e2e77d56e7157adb6f36a0f619a6a86597ca9717ea5e3a8298b189131efdd
SSDEEP

1572864:XHSSRfHuv/oyEhQ1Ydtj6rfuaRolFCFBT6AC:X5OE2mtWqaKF+6AC

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

d9a05adc8f4ed155ba5b2ede16fcdf15_JaffaCakes118
.apk android arch:arm arch:mips arch:x86

com.linekong.cjad.lk

com.mqgame.lib.SLaunchActivity

Activities

com.mqgame.lib.SLaunchActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.BATTERY_STATS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.GET_TASKS
android.permission.VIBRATE
android.permission.RECORD_AUDIO
android.permission.WAKE_LOCK
android.permission.RECEIVE_SMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS

Receivers

com.mqgame.lib.SReciever

android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.intent.action.CALL
android.intent.action.PACKAGE_ADDED
android.intent.action.SCREEN_ON

Services
alipay_msp.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED
com.alipay.android.app.gphone.SHARE

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService

Android Permissions

d9a05adc8f4ed155ba5b2ede16fcdf15_JaffaCakes118

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.BATTERY_STATS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.GET_TASKS

android.permission.VIBRATE

android.permission.RECORD_AUDIO

android.permission.WAKE_LOCK

android.permission.RECEIVE_SMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

Sharing

General

Malware Config

Signatures

Files

com.linekong.cjad.lk

com.mqgame.lib.SLaunchActivity

Activities

com.mqgame.lib.SLaunchActivity

Permissions

Receivers

com.mqgame.lib.SReciever

Services

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

.AlixService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

d9a05adc8f4ed155ba5b2ede16fcdf15_JaffaCakes118