com.bmw.ridehailing.member.cn.MainActivity
android.intent.action.VIEW
android.intent.action.MAIN
cn.jpush.android.ui.PushActivity
cn.jpush.android.ui.PushActivity
General
-
Target
fbd01411cecd53690a4029325bf52b6c_JaffaCakes118
-
Size
25.8MB
-
MD5
fbd01411cecd53690a4029325bf52b6c
-
SHA1
4c60c317e8a52eb17bdfd4170f1ff477677966ab
-
SHA256
1d4485e311ee1250934f1b8a93162326af2cd22227576447b561781222c67b83
-
SHA512
887d13ddd47eafc0ac799805f9fba77051f1a19a9dce1a2fc94e79e1c5f0c38297cc850473323af97ef881b81aa01dc495e777a055790591fddb628b0b444d2c
-
SSDEEP
786432:OspWEL6jV8sfo7M4hOIvuCFDYo8QuLHtWjs:npcNYvz6Ijs
Score
8/10
Malware Config
Signatures
-
Patched UPX-packed file 2 IoCs
Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.
-
Requests dangerous framework permissions 9 IoCs
-
UPX packed file 2 IoCs
Detects executables packed with UPX/modified UPX open source packer.
Files
-
fbd01411cecd53690a4029325bf52b6c_JaffaCakes118
com.bmw.ridehailing.member.cn
com.bmw.ridehailing.member.cn.MainActivity
Android Permissions
fbd01411cecd53690a4029325bf52b6c_JaffaCakes118
Permissions
android.permission.READ_LOGS
com.bmw.ridehailing.member.cn.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CALL_PHONE
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.WAKE_LOCK
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.VIBRATE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_NETWORK_STATE