f9d49cae964cb24d1f4a7e0145efa681_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f9d49cae964cb24d1f4a7e0145efa681_JaffaCakes118
Size

30.9MB
MD5

f9d49cae964cb24d1f4a7e0145efa681
SHA1

edd93f434050eee0dfe0b9b77d1d7391e99b86eb
SHA256

df6cea5fa3fda46f4e8fac87a15752e765d35de44d20c3f64828208c2abcb858
SHA512

78bfd7b08fad8401926c4206b6ecc100251e76f2bf5607c9fd19ab8a99933c70bdadee22f265afaee67467bd635b3579d2959856fa335d31877016e595c7d951
SSDEEP

786432:HuG7UcAqmAIRRMS0DDk4w5XKcxqlaHgI64iXVATAi2Kct:9dvI/0fkJgcVIpVAZct

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

f9d49cae964cb24d1f4a7e0145efa681_JaffaCakes118
.apk android

com.mango.sanguo15.sg91

com.mango.sanguo.SanGuoActivity

Activities

com.mango.sanguo.SanGuoActivity

android.intent.action.MAIN

Permissions

android.permission.RESTART_PACKAGES
android.permission.INTERNET
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.READ_LOGS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.SEND_SMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CALL_PHONE
android.permission.GET_TASKS

Receivers

com.mango.sanguo.Service.BootCompleted

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

Services
Alipay_msp_online.apk
.apk android arch:arm arch:x86

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

android.intent.action.MAIN

com.alipay.android.app.pay.TransContainer

android.intent.action.MAIN

com.alipay.android.app.pay.HyperlinkActivity

android.intent.action.MAIN

com.alipay.android.app.pay.PageForBrowser

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED
com.alipay.android.app.gphone.SHARE

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT

Services

com.alipay.android.app.MspService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService
alipay_plugin223_0309.apk
.apk android

com.alipay.android.app

.Cashier

Activities

.Cashier

android.intent.action.MAIN

.Alerter

android.intent.action.MAIN

.Welcome

android.intent.action.MAIN

.Updater

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_COARSE_LOCATION

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay
alipay_plugin_20120428msp.apk
.apk android

com.alipay.android.app

.Cashier

Activities

.Cashier

android.intent.action.MAIN

.Alerter

android.intent.action.MAIN

.Welcome

android.intent.action.MAIN

.Updater

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_COARSE_LOCATION
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay
com.skymobi.pay.tplugin_V3003.apk
.apk android

com.skymobi.pay.tplugin

com.skymobi.pay.third.activity.impl.EnterChargeCenter

Activities

com.skymobi.pay.third.activity.impl.EnterChargeCenter

android.intent.action.MAIN

Receivers

com.skymobi.pay.sms.receiver.BootReceiver

android.intent.action.BATTERY_CHANGED
android.intent.action.SIM_STATE_CHANGED
android.intent.action.NOTIFICATION_ADD
android.intent.action.SERVICE_STATE
android.intent.action.NOTIFICATION_REMOVE
android.intent.action.NOTIFICATION_UPDATE
android.bluetooth.adapter.action.STATE_CHANGED
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.ANY_DATA_STATE
android.net.wifi.STATE_CHANGE
android.intent.action.BOOT_COMPLETED
android.intent.action.SCREEN_ON
android.intent.action.USER_PRESENT

com.skymobi.pay.sms.receiver.SmsReceiver

android.provider.Telephony.SMS_RECEIVED

com.skymobi.pay.sms.receiver.NetworkReceiver

android.net.conn.CONNECTIVITY_CHANGE

Services

com.skymobi.pay.services.SkyPayRemoteService

com.skymobi.pay.sdk.ISkyPayRemoteService
skymobi_pay_wxplugin_v1001.apk
.apk android

com.skymobi.pay.wxplugin

com.skymobi.pay.wxplugin.WxActivity

Activities

Permissions

android.permission.INTERNET

Android Permissions

f9d49cae964cb24d1f4a7e0145efa681_JaffaCakes118

Permissions

android.permission.RESTART_PACKAGES

android.permission.INTERNET

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.READ_LOGS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.SEND_SMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CALL_PHONE

android.permission.GET_TASKS

Sharing

General

Malware Config

Signatures

Files

com.mango.sanguo15.sg91

com.mango.sanguo.SanGuoActivity

Activities

com.mango.sanguo.SanGuoActivity

Permissions

Receivers

com.mango.sanguo.Service.BootCompleted

Services

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

com.alipay.android.app.pay.TransContainer

com.alipay.android.app.pay.HyperlinkActivity

com.alipay.android.app.pay.PageForBrowser

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

com.alipay.android.app.MspService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.android.app

.Cashier

Activities

.Cashier

.Alerter

.Welcome

.Updater

Permissions

Services

.AlixService

com.alipay.android.app

.Cashier

Activities

.Cashier

.Alerter

.Welcome

.Updater

Permissions

Receivers

.AlixReceiver

Services

.AlixService

com.skymobi.pay.tplugin

com.skymobi.pay.third.activity.impl.EnterChargeCenter

Activities

com.skymobi.pay.third.activity.impl.EnterChargeCenter

Receivers

com.skymobi.pay.sms.receiver.BootReceiver

com.skymobi.pay.sms.receiver.SmsReceiver

com.skymobi.pay.sms.receiver.NetworkReceiver

Services

com.skymobi.pay.services.SkyPayRemoteService

com.skymobi.pay.wxplugin

com.skymobi.pay.wxplugin.WxActivity

Activities

Permissions

Android Permissions

f9d49cae964cb24d1f4a7e0145efa681_JaffaCakes118