dc7ceac2b124d1932209d3538a5c7760_JaffaCakes118

General

Target

dc7ceac2b124d1932209d3538a5c7760_JaffaCakes118
Size

12.4MB
MD5

dc7ceac2b124d1932209d3538a5c7760
SHA1

2068d5833f3534d5eb4eea6d6be55329265f82cc
SHA256

55dfc018c86543c467b7f067d7d42b3923e443f35be45960096daa3ce745db1e
SHA512

941a4686c7bf93b32fb0198d1ff775c849e3558353f93b09e96be1dbf17832a5534210d62820f0f3c5db623a17bb233170d055d0f86d004f5f0534318695e40b
SSDEEP

393216:KaBEgouRVSQrI+RTe6APIht6Peh/H8FjE:KaBEgoISuI+139cPeh/H85E

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

dc7ceac2b124d1932209d3538a5c7760_JaffaCakes118
.apk android arch:arm64 arch:arm

com.huayi.linggomerchant

com.huayi.linggomerchant.SplashActivity

Activities

com.huayi.linggomerchant.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.billy.cc.core.component.remote.RemoteConnectionActivity

action.com.billy.cc.connection

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.CAMERA
android.permission.ACCESS_WIFI_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.DISABLE_KEYGUARD
android.permission.VIBRATE
android.permission.REQUEST_INSTALL_PACKAGES
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.huayi.linggomerchant.permission.PROCESS_PUSH_MSG
com.huayi.linggomerchant.permission.MIPUSH_RECEIVE
com.meizu.flyme.push.permission.RECEIVE
com.huayi.linggomerchant.push.permission.MESSAGE
com.meizu.c2dm.permission.RECEIVE
com.huayi.linggomerchant.permission.C2D_MESSAGE
android.permission.WAKE_LOCK
android.permission.FOREGROUND_SERVICE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE

Receivers

com.tencent.imsdk.session.SessionBroadcastReceiver

com.tencent.imsdk.session.boot
android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.tencent.imsdk.session.boot
android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.tencent.qcloud.qal.TASK_REMOVED

com.huayi.lib_base.push.vivo.PushMessageReceiverImpl

com.vivo.pushclient.action.RECEIVE

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.huayi.lib_base.push.mi.MiPushMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.huayi.lib_base.push.huawei.HuaweiPushRevicer

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH_DELAY_NOTIFY

com.huayi.lib_base.push.meizu.MyPushMsgReceiver

com.meizu.flyme.push.intent.MESSAGE
com.meizu.flyme.push.intent.REGISTER.FEEDBACK
com.meizu.flyme.push.intent.UNREGISTER.FEEDBACK
com.meizu.c2dm.intent.REGISTRATION
com.meizu.c2dm.intent.RECEIVE

com.meizu.cloud.pushsdk.SystemReceiver

com.meizu.cloud.pushservice.action.PUSH_SERVICE_START

Services

com.huayi.lib_base.push.oppo.PushMessageService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

Android Permissions

dc7ceac2b124d1932209d3538a5c7760_JaffaCakes118

Permissions

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.CAMERA

android.permission.ACCESS_WIFI_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.DISABLE_KEYGUARD

android.permission.VIBRATE

android.permission.REQUEST_INSTALL_PACKAGES

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

com.huayi.linggomerchant.permission.PROCESS_PUSH_MSG

com.huayi.linggomerchant.permission.MIPUSH_RECEIVE

com.meizu.flyme.push.permission.RECEIVE

com.huayi.linggomerchant.push.permission.MESSAGE

com.meizu.c2dm.permission.RECEIVE

com.huayi.linggomerchant.permission.C2D_MESSAGE

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

com.sec.android.provider.badge.permission.READ

com.sec.android.provider.badge.permission.WRITE

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.UPDATE_SHORTCUT

com.sonyericsson.home.permission.BROADCAST_BADGE

com.sonymobile.home.permission.PROVIDER_INSERT_BADGE

com.anddoes.launcher.permission.UPDATE_COUNT

com.majeur.launcher.permission.UPDATE_BADGE

com.huawei.android.launcher.permission.CHANGE_BADGE

com.huawei.android.launcher.permission.READ_SETTINGS

com.huawei.android.launcher.permission.WRITE_SETTINGS

android.permission.READ_APP_BADGE

com.oppo.launcher.permission.READ_SETTINGS

com.oppo.launcher.permission.WRITE_SETTINGS

me.everything.badger.permission.BADGE_COUNT_READ

me.everything.badger.permission.BADGE_COUNT_WRITE

Sharing

General

Malware Config

Signatures

Files

com.huayi.linggomerchant

com.huayi.linggomerchant.SplashActivity

Activities

com.huayi.linggomerchant.SplashActivity

com.billy.cc.core.component.remote.RemoteConnectionActivity

com.sina.weibo.sdk.share.WbShareTransActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.tencent.imsdk.session.SessionBroadcastReceiver

com.huayi.lib_base.push.vivo.PushMessageReceiverImpl

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.huayi.lib_base.push.mi.MiPushMessageReceiver

com.huayi.lib_base.push.huawei.HuaweiPushRevicer

com.huayi.lib_base.push.meizu.MyPushMsgReceiver

com.meizu.cloud.pushsdk.SystemReceiver

Services

com.huayi.lib_base.push.oppo.PushMessageService

Android Permissions

dc7ceac2b124d1932209d3538a5c7760_JaffaCakes118