da61d8ba51557a338976f86ac9c5b74f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

da61d8ba51557a338976f86ac9c5b74f_JaffaCakes118
Size

10.8MB
MD5

da61d8ba51557a338976f86ac9c5b74f
SHA1

6e67cf67446275191b2b3fea0749045c3b11f988
SHA256

9f7e4f34d750c443d5618d4aec8a50be9e93093170d71544e14889d00c0045e1
SHA512

46a4ef0876384b143ceb5f2f20a68148f8d51733b809564f7722f5be3ea0108bb5f13bbafc36e17fbfc46289abc4f79e7a9f4012931468c6379590a38a7185c5
SSDEEP

196608:fQuZ339eHqG+Vt5ikLwQukSH8ABVVCwt+kOqtnEghk4C1MOfelpWzX8+:fQuZH9/l3ikLzSHRKXkhtP9HO2lGXt

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

da61d8ba51557a338976f86ac9c5b74f_JaffaCakes118
.apk android arch:arm arch:x86

com.looku.qie

com.looku.qie.MainActivity

Activities

com.looku.qie.MainActivity

android.intent.action.MAIN

cn.egame.terminal.sdk.EgameCoreActivity

android.intent.action.MAIN

Permissions

android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.GET_PACKAGE_SIZE
android.permission.WRITE_SETTINGS
android.permission.CALL_PHONE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.KILL_BACKGROUND_PROCESSES

Receivers

com.maizi.pay.receiver.MaiziReceiver

com.maizi.pay.NOTICE
android.intent.action.BOOT_COMPLETED
android.net.wifi.WIFI_STATE_CHANGED
android.net.wifi.STATE_CHANGE
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.media.RINGER_MODE_CHANGED
android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.intent.action.PHONE_STATE
android.intent.action.SIM_STATE_CHANGED
android.intent.action.TIME_CHANGED
android.intent.action.ACTION_POWER_DISCONNECTED

com.ltayx.pay.receiver.NetworkReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.ltayx.pay.receiver.InSmsReceiver

android.provider.Telephony.SMS_RECEIVED

cn.egame.terminal.sdk.EgameCoreReceiver

android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
cn.egame.terminal.sdk.RECEIVER_CMD

Services

com.maizi.pay.MaiziService

com.maizi.pay.NOTICE

cn.egame.terminal.sdk.EgameCoreService

cn.egame.terminal.sdk.SERVICE_CMD
ltayx.mn.ltplugin_v2000.pl
.apk android

com.ltayx.pay.ltplugin
unicom_resource.dat
.apk android

com.unicom.resourcepro

Android Permissions

da61d8ba51557a338976f86ac9c5b74f_JaffaCakes118

Permissions

android.permission.READ_PHONE_STATE

android.permission.SEND_SMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.GET_PACKAGE_SIZE

android.permission.WRITE_SETTINGS

android.permission.CALL_PHONE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.KILL_BACKGROUND_PROCESSES

Sharing

General

Malware Config

Signatures

Files

com.looku.qie

com.looku.qie.MainActivity

Activities

com.looku.qie.MainActivity

cn.egame.terminal.sdk.EgameCoreActivity

Permissions

Receivers

com.maizi.pay.receiver.MaiziReceiver

com.ltayx.pay.receiver.NetworkReceiver

com.ltayx.pay.receiver.InSmsReceiver

cn.egame.terminal.sdk.EgameCoreReceiver

Services

com.maizi.pay.MaiziService

cn.egame.terminal.sdk.EgameCoreService

com.ltayx.pay.ltplugin

com.unicom.resourcepro

Android Permissions

da61d8ba51557a338976f86ac9c5b74f_JaffaCakes118