f05bcf30367ab9829fda4d2961afdced_JaffaCakes118

General

Target

f05bcf30367ab9829fda4d2961afdced_JaffaCakes118
Size

14.2MB
MD5

f05bcf30367ab9829fda4d2961afdced
SHA1

ea44de626b0d80235ab160cf162bf10b04ead4e4
SHA256

00207fe7b7b9f08d6db522de16d3389b5e62947849572fc7341359c879fc1c7b
SHA512

0c8066c6edeff0c1349c79c7c21bd9455830076d57b0b4813a1daa49b4b8119a0f342df491d106b030fdbde9eb1eafbfff6518447d846c545701754f043446a3
SSDEEP

393216:iFJqHytU0V/Fa5uVTTI8iO3NFF7sYX4PpzEPqH:izqHy1/bXI8RDAEA

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

f05bcf30367ab9829fda4d2961afdced_JaffaCakes118
.apk android arch:arm

com.watcherr.game.patapon

com.vicky.gameplugin.LewanPluginActivity

Activities

com.vicky.gameplugin.LewanPluginActivity

android.intent.action.MAIN

mm.purchasesdk.iapservice.BillingLayoutActivity

com.watcher.game.patapon.com.mmiap.activity

safiap.framework.ui.UpdateHintActivity

safiap.framework.ACTION_TO_INSTALL
safiap.framework.ACTION_TO_INSTALL_IAP
safiap.framework.ACTION_NETWORK_ERROR

Permissions

android.permission.RECEIVE_SMS
android.permission.DISABLE_KEYGUARD
android.permission.GET_TASKS
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.READ_CONTACTS

Receivers

cn.play.dserv.DsReceiver

cn.play.dservice
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED

safiap.framework.CheckUpdateReceiver

safiap.framework.ACTION_CANCEL_NOTIFICATION
safiap.GET_SHARED_DATA
safiap.framework.ACTION_SET_TIMER

Services

mm.purchasesdk.iapservice.PurchaseService

com.aspire.purchaseservice.BIND
android.intent.action.MAIN

safiap.framework.SafFrameworkManager

safiap.framework.sdk.ISAFFramework
safiap.framework.ACTION_START_DOWNLOAD
safiap.framework.ACTION_CHECK_UPDATE
7723box_pjz.apk
.apk android arch:arm

com.upgadata.up7723

com.upgadata.up7723.home.MainActivity

Activities

com.upgadata.up7723.home.MainActivity

android.intent.action.MAIN

Permissions

android.permission.GET_PACKAGE_SIZE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.WRITE_SETTINGS

Receivers

com.upgadata.up7723.apps.BootReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.upgadata.up7723.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

Services

com.upgadata.up7723.http.download.DownloadService

download.service.action

com.umeng.message.UmengService

com.upgadata.up7723.intent.action.START
com.upgadata.up7723.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2
GH.data
.apk android

cn.emagsoftware.gamehall

.GameHallShowcase

Activities

.GameHallShowcase

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.GET_TASKS
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CALL_PHONE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.CHANGE_NETWORK_STATE
android.permission.RECORD_AUDIO
android.permission.WRITE_SETTINGS

Receivers

.service.ServiceReceiver

android.intent.action.USER_PRESENT

Services

Android Permissions

f05bcf30367ab9829fda4d2961afdced_JaffaCakes118

Permissions

android.permission.RECEIVE_SMS

android.permission.DISABLE_KEYGUARD

android.permission.GET_TASKS

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.READ_CONTACTS

Sharing

General

Malware Config

Signatures

Files

com.watcherr.game.patapon

com.vicky.gameplugin.LewanPluginActivity

Activities

com.vicky.gameplugin.LewanPluginActivity

mm.purchasesdk.iapservice.BillingLayoutActivity

safiap.framework.ui.UpdateHintActivity

Permissions

Receivers

cn.play.dserv.DsReceiver

safiap.framework.CheckUpdateReceiver

Services

mm.purchasesdk.iapservice.PurchaseService

safiap.framework.SafFrameworkManager

com.upgadata.up7723

com.upgadata.up7723.home.MainActivity

Activities

com.upgadata.up7723.home.MainActivity

Permissions

Receivers

com.upgadata.up7723.apps.BootReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

Services

com.upgadata.up7723.http.download.DownloadService

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

cn.emagsoftware.gamehall

.GameHallShowcase

Activities

.GameHallShowcase

Permissions

Receivers

.service.ServiceReceiver

Services

Android Permissions

f05bcf30367ab9829fda4d2961afdced_JaffaCakes118