ef50533b55de53519d0fcc23484209a1_JaffaCakes118

General

Target

ef50533b55de53519d0fcc23484209a1_JaffaCakes118
Size

6.5MB
MD5

ef50533b55de53519d0fcc23484209a1
SHA1

fc68d472250377dd332e8ea83b11ff500526bfa6
SHA256

62524d950bfb81350fdd45080f4e3349525e83ae0fa4604396556dcae1bc933c
SHA512

e40ce66a367c7fa314061bafe9598f24a66b0a7b6ae3184eb106d1c876b318b574dda24d9e1b9bc92f97f93846a0366cef7b59cbac2b0c419a934d78dad98639
SSDEEP

196608:Gc6VYchojyUJ04JfrrZI69/mQpnw4h2LPBNQ:nuYchGyUJtf5j/mQpnt2LU

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS

Files

ef50533b55de53519d0fcc23484209a1_JaffaCakes118
.apk android arch:arm

com.killermobile.totalrecall

com.krecorder.call.ui.MainActivity

Activities

com.krecorder.call.ui.MainActivity

android.intent.action.MAIN

com.dropbox.client2.android.AuthActivity

android.intent.action.VIEW

com.calldorado.android.ui.SettingsActivity

android.intent.action.VIEW

Permissions

android.permission.RECORD_AUDIO
android.permission.PROCESS_OUTGOING_CALLS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_LOGS
android.permission.WAKE_LOCK
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.BLUETOOTH
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.READ_CONTACTS
android.permission.READ_CALL_LOG
com.android.vending.BILLING
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
com.google.android.providers.gsf.permission.READ_GSERVICES
android.permission.MANAGE_ACCOUNTS
android.permission.ACCESS_COARSE_LOCATION
android.permission.CALL_PHONE
android.permission.WRITE_CONTACTS

Receivers

com.krecorder.call.receiver.BootComplete

android.intent.action.BOOT_COMPLETED

com.krecorder.call.receiver.OutgoingCallReceiver

android.intent.action.NEW_OUTGOING_CALL

com.krecorder.call.receiver.PhoneStateReceiver

android.intent.action.PHONE_STATE

com.krecorder.call.ui.WidgetRecordProvider1x1

android.appwidget.action.APPWIDGET_UPDATE
com.krecorder.call.ui.widget.CLICK_RECORD1x1
com.krecorder.call.ui.widget.CLICK_RECORDING_STOP1x1
com.krecorder.call.EVENT_AUDIO

com.krecorder.call.ui.WidgetRecordProvider

android.appwidget.action.APPWIDGET_UPDATE
com.krecorder.call.ui.widget.CLICK_ICON
com.krecorder.call.ui.widget.CLICK_RECORD_PANEL
com.krecorder.call.ui.widget.CLICK_RECORD
com.krecorder.call.ui.widget.CLICK_RECORDING_STOP
com.krecorder.call.ui.widget.CLICK_RECORDING_PAUSE
com.krecorder.call.EVENT_AUDIO

com.krecorder.call.receiver.BluetoothBroadcastReciever

android.bluetooth.device.action.ACL_CONNECTED
android.bluetooth.device.action.ACL_DISCONNECTED

com.krecorder.call.receiver.UploadRetryBroadcastReciever

com.krecorder.call.broadcast.UPLOAD_RETRY

com.krecorder.call.receiver.SyncDeleteRetryBroadcastReciever

com.krecorder.call.broadcast.DELETE_RETRY

com.google.android.gms.analytics.AnalyticsReceiver

com.google.android.gms.analytics.ANALYTICS_DISPATCH

com.google.android.gms.analytics.CampaignTrackingReceiver

com.android.vending.INSTALL_REFERRER

com.google.android.gms.measurement.AppMeasurementReceiver

com.google.android.gms.measurement.UPLOAD

com.calldorado.android.actionreceiver.ActionReceiver

android.intent.action.PHONE_STATE
android.intent.action.NEW_OUTGOING_CALL
com.calldorado.android.intent.SEND_RATING_REQ
com.calldorado.android.intent.SEARCH
com.calldorado.android.intent.INITSDK
com.calldorado.android.intent.COMM_END
com.calldorado.android.intent.WIC_POSITION
com.calldorado.android.intent.MAKE_CALL
android.intent.action.BOOT_COMPLETED
com.calldorado.android.intent.TRIGGER_SEND
com.calldorado.android.intent.PACEMAKER
android.intent.action.ACTION_POWER_CONNECTED
com.calldorado.android.intent.DYNAMIC_RE_ENGAGEMENT
com.calldorado.android.intent.PRIORITY
com.calldorado.android.intent.HEARTBEAT
com.calldorado.android.intent.SET_CUSTOM_ICON
com.calldorado.android.intent.CONTACT_MANUAL
com.calldorado.android.intent.TARGETING
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED

Services

com.krecorder.call.communication.UploadService

com.krecorder.call.COMMAND_UPLOAD

com.krecorder.call.communication.SyncService

com.krecorder.call.COMMAND_SYNC

Android Permissions

ef50533b55de53519d0fcc23484209a1_JaffaCakes118

Permissions

android.permission.RECORD_AUDIO

android.permission.PROCESS_OUTGOING_CALLS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_LOGS

android.permission.WAKE_LOCK

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.BLUETOOTH

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.READ_CONTACTS

android.permission.READ_CALL_LOG

com.android.vending.BILLING

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

com.google.android.providers.gsf.permission.READ_GSERVICES

android.permission.MANAGE_ACCOUNTS

android.permission.ACCESS_COARSE_LOCATION

android.permission.CALL_PHONE

android.permission.WRITE_CONTACTS

Sharing

General

Malware Config

Signatures

Files

com.killermobile.totalrecall

com.krecorder.call.ui.MainActivity

Activities

com.krecorder.call.ui.MainActivity

com.dropbox.client2.android.AuthActivity

com.calldorado.android.ui.SettingsActivity

Permissions

Receivers

com.krecorder.call.receiver.BootComplete

com.krecorder.call.receiver.OutgoingCallReceiver

com.krecorder.call.receiver.PhoneStateReceiver

com.krecorder.call.ui.WidgetRecordProvider1x1

com.krecorder.call.ui.WidgetRecordProvider

com.krecorder.call.receiver.BluetoothBroadcastReciever

com.krecorder.call.receiver.UploadRetryBroadcastReciever

com.krecorder.call.receiver.SyncDeleteRetryBroadcastReciever

com.google.android.gms.analytics.AnalyticsReceiver

com.google.android.gms.analytics.CampaignTrackingReceiver

com.google.android.gms.measurement.AppMeasurementReceiver

com.calldorado.android.actionreceiver.ActionReceiver

Services

com.krecorder.call.communication.UploadService

com.krecorder.call.communication.SyncService

Android Permissions

ef50533b55de53519d0fcc23484209a1_JaffaCakes118