efc5f5d7011791a097e0c13ae696be98_JaffaCakes118

General

Target

efc5f5d7011791a097e0c13ae696be98_JaffaCakes118
Size

30.9MB
MD5

efc5f5d7011791a097e0c13ae696be98
SHA1

a533f864d976f05c3fb3d833337023c2a1c0846b
SHA256

51b52d3fe6647b5af04e55c93abfd90bfec52a2e2b03858be43e312c1c2ac762
SHA512

4af546bc88c9015e66df7f435bffaa5b45d6c37972423de85286b3687a5e6de4a997b7000b63f1ec8ba7b1f05048e62b9194f727702a397b60781fd4b1a80cba
SSDEEP

786432:ESEoN1D117UU32GA1u1E7MeR9NKUyn8SqOOZxLtE3ge:L17UyMAeR9NKHLYLtqge

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

efc5f5d7011791a097e0c13ae696be98_JaffaCakes118
.apk android arch:arm

com.kugou.android

com.kugou.android.app.splash.SplashActivity

Activities

com.kugou.android.app.splash.SplashActivity

android.intent.action.MAIN
android.intent.action.CREATE_SHORTCUT
android.intent.action.VIEW
com.kugou.android.action.search_from_xf
com.kugou.android.action.invoke_for_subapp
com.kugou.android.action.invoke_for_message_push
android.intent.action.VIEW

com.kugou.android.app.MediaActivity

com.kugou.android.VIEW_MEDIA

com.kugou.android.app.bytecounter.ByteCounterActivity

com.kugou.android.BYTE_COUNT

com.kugou.common.useraccount.app.CloudRegisterFragment

com.kugou.android.useraccount.CloudRegisterFragment

com.kugou.common.useraccount.app.PhoneRegCodeActivity

com.kugou.android.useraccount.PhoneRegCodeActivity

com.kugou.common.useraccount.app.RegByMobileCodeActivity

com.kugou.android.useraccount.RegByMobileCodeActivity

com.kugou.common.useraccount.app.BindMobileChangeActivity

com.kugou.common.useraccount.app.BindMobileChangeActivity

com.kugou.common.useraccount.app.RegByMobileCompleteActivity

com.kugou.android.useraccount.RegByMobileCompleteActivity

com.kugou.common.useraccount.app.RegByMobileVerdifyActivity

com.kugou.android.useraccount.RegByMobileVerdifyActivity

com.kugou.common.useraccount.app.OldRetrieveByEmailActivity

com.kugou.android.useraccount.OldRetrieveByEmailActivity

com.kugou.common.useraccount.app.RegByUserNameActivity

com.kugou.android.useraccount.RegByUserNameActivity

com.kugou.common.useraccount.app.RegUserAgreementFragment

com.kugou.common.useraccount.app.RegUserAgreementFragment

com.kugou.android.useraccount.ForgotPasswordActivict

com.kugou.android.useraccount.ForgotPasswordActivict

com.kugou.android.skin.SkinBackgroundActivity

com.kugou.android.skin_change

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.kugou.android.dlna.activity.DLNASettingActivity

com.kugou.android.DLNASETTING

com.kugou.android.app.splash.FxCoreLiveActivity

android.intent.action.VIEW

com.kugou.android.app.splash.GCShortcutEntryActivity

android.intent.action.VIEW

com.kugou.android.app.splash.MHShortcutEntryActivity

android.intent.action.VIEW

com.kugou.framework.musicfees.ui.MusicFeesActivity

com.kugou.android.action_start_music_fees_activity

Permissions

android.permission.VIBRATE
android.permission.EXPAND_STATUS_BAR
android.permission.WRITE_SETTINGS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.READ_LOGS
com.kugou.android.permission.ACCESS_KUGOU_SERVICE
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.ACCESS_BLUETOOTH_SHARE
android.permission.GET_TASKS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.CHANGE_WIFI_STATE
android.permission.DISABLE_KEYGUARD
android.permission.CHANGE_NETWORK_STATE
android.permission.CAMERA
android.permission.RECORD_AUDIO
android.permission.BROADCAST_STICKY
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.PROCESS_OUTGOING_CALLS
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
org.adw.launcher.permission.READ_SETTINGS
org.adw.launcher.permission.WRITE_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.WRITE_SETTINGS
com.qihoo360.launcher.permission.READ_SETTINGS
com.qihoo360.launcher.permission.WRITE_SETTINGS
com.lge.launcher.permission.READ_SETTINGS
com.lge.launcher.permission.WRITE_SETTINGS
net.qihoo.launcher.permission.READ_SETTINGS
net.qihoo.launcher.permission.WRITE_SETTINGS
org.adwfreak.launcher.permission.READ_SETTINGS
org.adwfreak.launcher.permission.WRITE_SETTINGS
org.adw.launcher_donut.permission.READ_SETTINGS
org.adw.launcher_donut.permission.WRITE_SETTINGS
com.huawei.launcher3.permission.READ_SETTINGS
com.huawei.launcher3.permission.WRITE_SETTINGS
com.fede.launcher.permission.READ_SETTINGS
com.fede.launcher.permission.WRITE_SETTINGS
com.sec.android.app.twlauncher.settings.READ_SETTINGS
com.sec.android.app.twlauncher.settings.WRITE_SETTINGS
com.anddoes.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.WRITE_SETTINGS
com.tencent.qqlauncher.permission.READ_SETTINGS
com.tencent.qqlauncher.permission.WRITE_SETTINGS
com.huawei.launcher2.permission.READ_SETTINGS
com.huawei.launcher2.permission.WRITE_SETTINGS
com.android.mylauncher.permission.READ_SETTINGS
com.android.mylauncher.permission.WRITE_SETTINGS
com.ebproductions.android.launcher.permission.READ_SETTINGS
com.ebproductions.android.launcher.permission.WRITE_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
com.miui.mihome2.permission.READ_SETTINGS
com.miui.mihome2.permission.WRITE_SETTINGS
telecom.mdesk.permission.READ_SETTINGS
telecom.mdesk.permission.WRITE_SETTINGS
dianxin.permission.ACCESS_LAUNCHER_DATA
com.huawei.android.launcher.permission.WRITE_SETTINGS
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.CHANGE_BADGE
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
org.simalliance.openmobileapi.SMARTCARD
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_CONTACTS

Receivers

com.kugou.android.mediatransfer.pctransfer.receiver.UsbConnectReceiver

com.kugou.android.mediatransfer.pctransfer_fileadd
com.kugou.android.mediatransfer.pctransfer_filerm

com.kugou.android.app.startguide.recommend.AppDownloadNotiExitReceiver

com.kugou.android.recommend.download.DownloadExitReceiver

com.kugou.android.appwidget.KugouAppWidgetProvider1

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.APPWIDGET_DELETED
android.appwidget.action.APPWIDGET_DISABLED
android.appwidget.action.APPWIDGET_ENABLED

com.kugou.android.appwidget.KugouAppWidgetProvider2

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.APPWIDGET_DELETED
android.appwidget.action.APPWIDGET_DISABLED
android.appwidget.action.APPWIDGET_ENABLED

com.kugou.android.appwidget.KugouAppWidgetProvider4

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.APPWIDGET_DELETED
android.appwidget.action.APPWIDGET_DISABLED
android.appwidget.action.APPWIDGET_ENABLED

com.kugou.framework.service.MediaButtonIntentReceiver

android.intent.action.MEDIA_BUTTON

com.kugou.common.wxapi.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.kugou.framework.service.AppExitReceiver

com.kugou.android.exit_app_with_outside_event

com.kugou.framework.service.push.NetworkChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.google.ads.conversiontracking.InstallReceiver

com.android.vending.INSTALL_REFERRER

Services

com.kugou.common.module.fm.poll.PollService

com.kugou.common.module.fm.poll.PollingService

com.kugou.framework.service.SSOService

com.kugou.framework.service.SSOService

Android Permissions

efc5f5d7011791a097e0c13ae696be98_JaffaCakes118

Permissions

android.permission.VIBRATE

android.permission.EXPAND_STATUS_BAR

android.permission.WRITE_SETTINGS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.READ_LOGS

com.kugou.android.permission.ACCESS_KUGOU_SERVICE

android.permission.CHANGE_WIFI_MULTICAST_STATE

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.ACCESS_BLUETOOTH_SHARE

android.permission.GET_TASKS

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.CHANGE_WIFI_STATE

android.permission.DISABLE_KEYGUARD

android.permission.CHANGE_NETWORK_STATE

android.permission.CAMERA

android.permission.RECORD_AUDIO

android.permission.BROADCAST_STICKY

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.PROCESS_OUTGOING_CALLS

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

com.android.launcher2.permission.READ_SETTINGS

com.android.launcher2.permission.WRITE_SETTINGS

com.android.launcher3.permission.READ_SETTINGS

com.android.launcher3.permission.WRITE_SETTINGS

org.adw.launcher.permission.READ_SETTINGS

org.adw.launcher.permission.WRITE_SETTINGS

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.WRITE_SETTINGS

com.qihoo360.launcher.permission.READ_SETTINGS

com.qihoo360.launcher.permission.WRITE_SETTINGS

com.lge.launcher.permission.READ_SETTINGS

com.lge.launcher.permission.WRITE_SETTINGS

net.qihoo.launcher.permission.READ_SETTINGS

net.qihoo.launcher.permission.WRITE_SETTINGS

org.adwfreak.launcher.permission.READ_SETTINGS

org.adwfreak.launcher.permission.WRITE_SETTINGS

org.adw.launcher_donut.permission.READ_SETTINGS

org.adw.launcher_donut.permission.WRITE_SETTINGS

com.huawei.launcher3.permission.READ_SETTINGS

com.huawei.launcher3.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.kugou.android

com.kugou.android.app.splash.SplashActivity

Activities

com.kugou.android.app.splash.SplashActivity

com.kugou.android.app.MediaActivity

com.kugou.android.app.bytecounter.ByteCounterActivity

com.kugou.common.useraccount.app.CloudRegisterFragment

com.kugou.common.useraccount.app.PhoneRegCodeActivity

com.kugou.common.useraccount.app.RegByMobileCodeActivity

com.kugou.common.useraccount.app.BindMobileChangeActivity

com.kugou.common.useraccount.app.RegByMobileCompleteActivity

com.kugou.common.useraccount.app.RegByMobileVerdifyActivity

com.kugou.common.useraccount.app.OldRetrieveByEmailActivity

com.kugou.common.useraccount.app.RegByUserNameActivity

com.kugou.common.useraccount.app.RegUserAgreementFragment

com.kugou.android.useraccount.ForgotPasswordActivict

com.kugou.android.skin.SkinBackgroundActivity

com.tencent.tauth.AuthActivity

com.kugou.android.dlna.activity.DLNASettingActivity

com.kugou.android.app.splash.FxCoreLiveActivity

com.kugou.android.app.splash.GCShortcutEntryActivity

com.kugou.android.app.splash.MHShortcutEntryActivity

com.kugou.framework.musicfees.ui.MusicFeesActivity

Permissions

Receivers

com.kugou.android.mediatransfer.pctransfer.receiver.UsbConnectReceiver

com.kugou.android.app.startguide.recommend.AppDownloadNotiExitReceiver

com.kugou.android.appwidget.KugouAppWidgetProvider1

com.kugou.android.appwidget.KugouAppWidgetProvider2

com.kugou.android.appwidget.KugouAppWidgetProvider4

com.kugou.framework.service.MediaButtonIntentReceiver

com.kugou.common.wxapi.AppRegister

com.kugou.framework.service.AppExitReceiver

com.kugou.framework.service.push.NetworkChangeReceiver

com.google.ads.conversiontracking.InstallReceiver

Services

com.kugou.common.module.fm.poll.PollService

com.kugou.framework.service.SSOService

Android Permissions

efc5f5d7011791a097e0c13ae696be98_JaffaCakes118