ea810e7838c22b318a311c5dcd777731_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ea810e7838c22b318a311c5dcd777731_JaffaCakes118
Size

20.2MB
MD5

ea810e7838c22b318a311c5dcd777731
SHA1

83dabbee24f813a32712be42bc63da3f00896192
SHA256

09b389bc3f532945317f942413a0b7fe041a1aa627b8e043c5b98686b7f5c03f
SHA512

6b679c9393ae260fde852b624f248a531f31c623d23158b5f778b11b9b960d94c81f4ebe26ae18ca51057b0f6e6a7bde385dd6a5bb830ce10ea83924c7642a19
SSDEEP

393216:x9+dqvvdy5fubglkwDP6WmLHBu6/SZuRdv+FUZ2CEgtaYCSyBqwHj:xAJ5m8ln6hI25RdvoCJtDZyXHj

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

ea810e7838c22b318a311c5dcd777731_JaffaCakes118
.apk android arch:arm

com.drogonmaoxian.pkg

org.uhqav.xi.kmnd.ukn.AyActivity

Activities

org.uhqav.xi.kmnd.ukn.AyActivity

android.intent.action.MAIN

org.uhqav.xi.kmnd.y.VnvActivity

android.intent.action.CREATE_SHORTCUT
android.intent.action.DELETE

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.RESTART_PACKAGES
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT

Receivers

org.uhqav.xi.kmnd.yhsdoz.HwooReceiver

android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.net.conn.CONNECTIVITY_CHANGE

org.uhqav.xi.kmnd.betvr.AnReceiver

android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.net.conn.CONNECTIVITY_CHANGE

org.uhqav.xi.kmnd.rbuwa.SbReceiver

android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.net.conn.CONNECTIVITY_CHANGE

org.uhqav.xi.kmnd.to.PnReceiver

android.intent.action.PACKAGE_ADDED
android.net.conn.CONNECTIVITY_CHANGE

org.uhqav.xi.kmnd.y.ZxReceiver

android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.net.conn.CONNECTIVITY_CHANGE

Services
460c06d901e3f4d0277e3fb58408f5ec
.apk android

com.android.sync

com.android.sync.MainActivity

Activities

com.android.sync.MainActivity

android.intent.action.MAIN
709cd9db792f49fd7670f8d3f5e8fa11
.apk android

com.mlnsfest.gate

.MainActivity

Activities

.MainActivity

android.intent.action.MAIN
cdbcefa880c054cffc72eeb153c0252c
.apk android

com.target.process

com.target.process.MainActivity

Activities

com.target.process.MainActivity

android.intent.action.MAIN
dd00fa4d0c7739b11e45852cd94e024b
.apk android

com.data

.MainActivity

Activities

.MainActivity

android.intent.action.MAIN
e4ec2d3cdf65b1a528ee23503b0c8d19
.apk android

com.android.security

.MainActivity

Activities

.MainActivity

android.intent.action.MAIN

Android Permissions

ea810e7838c22b318a311c5dcd777731_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.RESTART_PACKAGES

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

com.drogonmaoxian.pkg

org.uhqav.xi.kmnd.ukn.AyActivity

Activities

org.uhqav.xi.kmnd.ukn.AyActivity

org.uhqav.xi.kmnd.y.VnvActivity

Permissions

Receivers

org.uhqav.xi.kmnd.yhsdoz.HwooReceiver

org.uhqav.xi.kmnd.betvr.AnReceiver

org.uhqav.xi.kmnd.rbuwa.SbReceiver

org.uhqav.xi.kmnd.to.PnReceiver

org.uhqav.xi.kmnd.y.ZxReceiver

Services

com.android.sync

com.android.sync.MainActivity

Activities

com.android.sync.MainActivity

com.mlnsfest.gate

.MainActivity

Activities

.MainActivity

com.target.process

com.target.process.MainActivity

Activities

com.target.process.MainActivity

com.data

.MainActivity

Activities

.MainActivity

com.android.security

.MainActivity

Activities

.MainActivity

Android Permissions

ea810e7838c22b318a311c5dcd777731_JaffaCakes118