dc7e888aa1e115f0d9002bba3c699cb6_JaffaCakes118

General

Target

dc7e888aa1e115f0d9002bba3c699cb6_JaffaCakes118
Size

15.9MB
MD5

dc7e888aa1e115f0d9002bba3c699cb6
SHA1

9d2067e3f6b7e25429d5b6ff92cd46da4373d59f
SHA256

d79e4cb50be6ec5eaad38aacf448182340ed87646b0b8e24b7d50e33690c4eea
SHA512

43ab63e5913b0371c17db3837352890b3574d0ffab92716043e8a069abc133b3809a49a4e7f603e75b82b634e7f9e2cc7cbd284062a16949f8668a5dce671669
SSDEEP

393216:UUKPJ0qveSReKUiXAQJzi80HaXFJ2CCiILaHaXpyO:UhBTxeKUiXAQJ280+FJ2Cfca+0O

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Required to be able to access the camera device.	android.permission.CAMERA

Files

dc7e888aa1e115f0d9002bba3c699cb6_JaffaCakes118
.apk android arch:arm arch:x86

net.xuele.xuelets

net.xuele.xuelets.ui.activity.login.SplashActivity

Activities

net.xuele.xuelets.ui.activity.login.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW

net.xuele.xuelets.ui.activity.momentscircle.ShareCircleActivity

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

net.xuele.xuelets.ui.activity.common.ShareActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

net.xuele.xuelets.ui.activity.im.FriendInfoActivity

android.intent.action.VIEW

net.xuele.xuelets.ui.activity.im.RongActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

io.rong.voipkit.activity.CallSideActivity

android.intent.action.VIEW

io.rong.voipkit.activity.CalledSideActivity

android.intent.action.VIEW

net.xuele.xuelets.ui.activity.homework.HomeWorkQuestionActivity

android.intent.action.MAIN2

net.xuele.xuelets.ui.activity.assignhomework.AssignHomeworkActivity

android.intent.action.VIEW

net.xuele.ensentol.activity.XLEnSentActivity

android.intent.action.VIEW
android.intent.action.VIEW

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.GET_TASKS
net.xuele.xuelets.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.CALL_PHONE
android.permission.RECEIVE_SMS
android.permission.CHANGE_WIFI_STATE
android.permission.RECORD_AUDIO
android.permission.RECORD_VIDEO
android.permission.CAMERA
android.permission.CHANGE_CONFIGURATION
android.permission.FLASHLIGHT

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

io.rong.imlib.ipc.PushMessageReceiver

io.rong.push.message

io.rong.push.PushReceiver

io.rong.push.HeartBeat
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.PACKAGE_REMOVED

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

io.rong.push.PushService

io.rong.push

io.rong.push.CommandService

io.rong.command

Android Permissions

dc7e888aa1e115f0d9002bba3c699cb6_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.GET_TASKS

net.xuele.xuelets.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.CALL_PHONE

android.permission.RECEIVE_SMS

android.permission.CHANGE_WIFI_STATE

android.permission.RECORD_AUDIO

android.permission.RECORD_VIDEO

android.permission.CAMERA

android.permission.CHANGE_CONFIGURATION

android.permission.FLASHLIGHT

Sharing

General

Malware Config

Signatures

Files

net.xuele.xuelets

net.xuele.xuelets.ui.activity.login.SplashActivity

Activities

net.xuele.xuelets.ui.activity.login.SplashActivity

net.xuele.xuelets.ui.activity.momentscircle.ShareCircleActivity

com.tencent.tauth.AuthActivity

net.xuele.xuelets.ui.activity.common.ShareActivity

cn.jpush.android.ui.PushActivity

net.xuele.xuelets.ui.activity.im.FriendInfoActivity

net.xuele.xuelets.ui.activity.im.RongActivity

io.rong.voipkit.activity.CallSideActivity

io.rong.voipkit.activity.CalledSideActivity

net.xuele.xuelets.ui.activity.homework.HomeWorkQuestionActivity

net.xuele.xuelets.ui.activity.assignhomework.AssignHomeworkActivity

net.xuele.ensentol.activity.XLEnSentActivity

Permissions

Receivers

cn.jpush.android.service.PushReceiver

io.rong.imlib.ipc.PushMessageReceiver

io.rong.push.PushReceiver

Services

cn.jpush.android.service.PushService

io.rong.push.PushService

io.rong.push.CommandService

Android Permissions

dc7e888aa1e115f0d9002bba3c699cb6_JaffaCakes118