dac19926556f7f53a787008f8664abac_JaffaCakes118

General

Target

dac19926556f7f53a787008f8664abac_JaffaCakes118
Size

30.0MB
MD5

dac19926556f7f53a787008f8664abac
SHA1

2c67cc8b16fd8350727af18f554934b7eece8759
SHA256

76c14a29fe6b744e63dbd8c940c1689ec1b13f4533853b94fe42d81193ea3808
SHA512

c234c2a5835c4196e2e11d886c7bc2deaf5614c1cb98849bec68c742ac256ed61d1a3a1918bcd10dce4f5f5080a198f122f70b942cf8e4a8467bfb97fb54450a
SSDEEP

786432:zyg4ECm+zhL2N4S+RJdDiXQILR01HqQj+WcbETrnATDaaY:zyg4AyM8JRiAI10Zqs1cbETrnCW

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

dac19926556f7f53a787008f8664abac_JaffaCakes118
.apk android arch:arm arch:x86

com.qmzj.for360

MainActivity

Activities

MainActivity

android.intent.action.MAIN

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RESTART_PACKAGES
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CALL_PHONE
com.qmzj.for360.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RESTART_PACKAGES
android.permission.GET_PACKAGE_SIZE

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

mm.yp.purchasesdk.sms.SMSReceiver

aspire.iap.SMS_SEND_ACTIOIN
aspire.iap.SMS_DELIVERED_ACTION

com.qihoo.psdk.local.QBootReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

com.qihoo.psdk.remote.QRemoteService

com.qihoo.psdk.service.action.remote
NewMuMaYiMarket.apk
.apk android arch:arm arch:mips arch:x86

com.mumayi.market.ui

.SplashActivity

Activities

.RunGameCenterActivity

android.intent.action.MAIN

.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
com.mumayi.market.ui.restart

.MainFrameActivity

android.intent.action.MMY_MainFrameActivity

.packageManger.NewUnMpkActivity

android.intent.action.MAIN
start.mumayi.mpk.module
android.intent.action.DEFAULT
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

.IntentFilterActivity

mumayi.market.intent

.MiniBrowserActivity

android.intent.action.MAIN

com.mumayi.market.ui.autodown.AutoDownActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.RESTART_PACKAGES
android.permission.ACCESS_WIFI_STATE
android.permission.GET_PACKAGE_SIZE
android.permission.READ_LOGS
android.permission.WAKE_LOCK
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.VIBRATE
android.permission.BROADCAST_STICKY
android.permission.GET_TASKS
android.permission.WRITE_SETTINGS
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_CONFIGURATION
android.permission.RECEIVE_BOOT_COMPLETED

Receivers

com.mumayi.market.ui.util.receiver.CheckUpdateReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.net.wifi.STATE_CHANGE

.util.receiver.OtherNeedDataReciver

com.mumayi.paycenter.needuser

com.mumayi.market.bussiness.ebo.reveiver.AlarmServiceReveiver

com.android.alarmclock.ALARM_ALERT
android.intent.action.BOOT_COMPLETED
android.net.wifi.STATE_CHANGE

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.mumayi.market.ui.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

com.umeng.message.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

Services

com.umeng.message.UmengService

com.mumayi.market.ui.intent.action.START
com.mumayi.market.ui.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2
unicom_resource.dat
.apk android

com.xiaowo.resourcepro

Android Permissions

dac19926556f7f53a787008f8664abac_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_SMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RESTART_PACKAGES

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CALL_PHONE

com.qmzj.for360.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.RESTART_PACKAGES

android.permission.GET_PACKAGE_SIZE

Sharing

General

Malware Config

Signatures

Files

com.qmzj.for360

MainActivity

Activities

MainActivity

cn.jpush.android.ui.PushActivity

Permissions

Receivers

cn.jpush.android.service.PushReceiver

mm.yp.purchasesdk.sms.SMSReceiver

com.qihoo.psdk.local.QBootReceiver

Services

cn.jpush.android.service.PushService

com.qihoo.psdk.remote.QRemoteService

com.mumayi.market.ui

.SplashActivity

Activities

.RunGameCenterActivity

.SplashActivity

.MainFrameActivity

.packageManger.NewUnMpkActivity

.IntentFilterActivity

.MiniBrowserActivity

com.mumayi.market.ui.autodown.AutoDownActivity

Permissions

Receivers

com.mumayi.market.ui.util.receiver.CheckUpdateReceiver

.util.receiver.OtherNeedDataReciver

com.mumayi.market.bussiness.ebo.reveiver.AlarmServiceReveiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

com.umeng.message.BootBroadcastReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

com.xiaowo.resourcepro

Android Permissions

dac19926556f7f53a787008f8664abac_JaffaCakes118