debbc6cd7f9627077403749b22183058_JaffaCakes118

General

Target

debbc6cd7f9627077403749b22183058_JaffaCakes118
Size

6.4MB
MD5

debbc6cd7f9627077403749b22183058
SHA1

b18de82279f0f757d1205b51486a60cb874eb6fe
SHA256

4d2fc23f01dc9029d68744772de61c9e80933f1f1d82538e1e4a95a74df7a50a
SHA512

7ceb64dde9355d6f766b437132bda73b04ebf586b2266434a7a4c60fd3ad455e86e049acf19bbfc4d6996c3f11a0c6cb55718f60333e373a579a7875582adebf
SSDEEP

98304:cot5oouyHwLMg1WDfsGxxslDhFMyFf8v9xjRbSLAkejRbSLAkdjRbSLAkmdaLFO4:DtioawVxalwCEV/mZomZ7mZmdzGWmr84

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

debbc6cd7f9627077403749b22183058_JaffaCakes118
.apk android arch:arm arch:x86

com.seed.papapay

com.seed.papapay.activity.SplashActivity

Activities

com.seed.papapay.activity.SplashActivity

android.intent.action.MAIN

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

Permissions

com.seed.papapay.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.WAKE_LOCK
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.RECORD_AUDIO
android.permission.CHANGE_NETWORK_STATE
android.permission.GET_TASKS

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.seed.papapay.receiver.MyReceiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.CONNECTION
cn.jpush.android.intent.NOTIFICATION_CLICK_ACTION

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

cn.jpush.android.service.DaemonService

cn.jpush.android.intent.DaemonService

Android Permissions

debbc6cd7f9627077403749b22183058_JaffaCakes118

Permissions

com.seed.papapay.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.WAKE_LOCK

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.RECORD_AUDIO

android.permission.CHANGE_NETWORK_STATE

android.permission.GET_TASKS

Sharing

General

Malware Config

Signatures

Files

com.seed.papapay

com.seed.papapay.activity.SplashActivity

Activities

com.seed.papapay.activity.SplashActivity

cn.jpush.android.ui.PushActivity

Permissions

Receivers

cn.jpush.android.service.PushReceiver

com.seed.papapay.receiver.MyReceiver

Services

cn.jpush.android.service.PushService

cn.jpush.android.service.DaemonService

Android Permissions

debbc6cd7f9627077403749b22183058_JaffaCakes118