ef7aec7c86235ef45b6ab0aab8b1451f_JaffaCakes118

General

Target

ef7aec7c86235ef45b6ab0aab8b1451f_JaffaCakes118
Size

19.2MB
MD5

ef7aec7c86235ef45b6ab0aab8b1451f
SHA1

c5c30cf3317c24eeaa4616e75b19f94bfaa4f825
SHA256

18962fae3131079dfa93098b418d5f2ac35f27db5e4a65fa77ed8f2cc55a78a0
SHA512

93a840adc4fc1b80fd65de457c0eab7bf94fece05daf6063efc12e48017a560ba779460926fcb9fed6a98528c5c7cb3217a7bac74c5fdf757eca2364e5d389cc
SSDEEP

393216:omQcsYJgor2Zh1ve9z7f2dAhvFuU5KijIGrMasf2XebHr2hIT:oFor2H1ved2UFZ5KijIGrMoebL7

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

ef7aec7c86235ef45b6ab0aab8b1451f_JaffaCakes118
.apk android arch:arm64 arch:arm arch:x86 arch:x64

io.wormate

io.wormate.app.AndroidLauncher

Activities

io.wormate.app.AndroidLauncher

android.intent.action.MAIN

io.presage.activities.PresageActivity

io.presage.intent.action.LAUNCH_WEBVIEW

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
com.android.vending.BILLING
org.onepf.openiab.permission.BILLING
com.sec.android.iap.permission.BILLING
com.nokia.payment.BILLING
com.slideme.sam.manager.inapp.permission.BILLING
com.google.android.c2dm.permission.RECEIVE
io.wormate.permission.C2D_MESSAGE

Receivers

com.appodeal.ads.AppodealPackageAddedReceiver

android.intent.action.PACKAGE_ADDED

com.startapp.android.publish.common.metaData.BootCompleteListener

android.intent.action.BOOT_COMPLETED

com.yandex.metrica.MetricaEventHandler

com.android.vending.INSTALL_REFERRER

com.inmobi.commons.core.utilities.uid.ImIdShareBroadCastReceiver

com.inmobi.share.id

io.presage.receiver.NetworkChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED
io.presage.receiver.NetworkChangeReceiver.ONDESTROY

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.yandex.metrica.MetricaService

com.yandex.metrica.IMetricaService

io.presage.PresageService

io.presage.PresageService.PIVOT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

ef7aec7c86235ef45b6ab0aab8b1451f_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.ACCESS_COARSE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

com.android.vending.BILLING

org.onepf.openiab.permission.BILLING

com.sec.android.iap.permission.BILLING

com.nokia.payment.BILLING

com.slideme.sam.manager.inapp.permission.BILLING

com.google.android.c2dm.permission.RECEIVE

io.wormate.permission.C2D_MESSAGE

Sharing

General

Malware Config

Signatures

Files

io.wormate

io.wormate.app.AndroidLauncher

Activities

io.wormate.app.AndroidLauncher

io.presage.activities.PresageActivity

Permissions

Receivers

com.appodeal.ads.AppodealPackageAddedReceiver

com.startapp.android.publish.common.metaData.BootCompleteListener

com.yandex.metrica.MetricaEventHandler

com.inmobi.commons.core.utilities.uid.ImIdShareBroadCastReceiver

io.presage.receiver.NetworkChangeReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.yandex.metrica.MetricaService

io.presage.PresageService

com.google.firebase.iid.FirebaseInstanceIdService

Android Permissions

ef7aec7c86235ef45b6ab0aab8b1451f_JaffaCakes118