fbfa665f66829ede0766ac2bcca99129_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fbfa665f66829ede0766ac2bcca99129_JaffaCakes118
Size

5.6MB
MD5

fbfa665f66829ede0766ac2bcca99129
SHA1

68f6147db6eb4c7ad463409f65686cf78cdf58b4
SHA256

dcdc3662f866aaa3f37a431e29701d8f588cd462c69230b1aabbaf04de73ef32
SHA512

08b0103a994ee0730a0ebe590ba3ad1e4a629518e1c9c7cb29aee7d1274c8c05d3351eb3301c1cf3cd61fdb10edb8ff3d1044b4bbc4a966eb1f708c850336462
SSDEEP

98304:1HbcbWLTWhgCrU2tpzn4LZSjLN9LJebSdf/DGt3C4nY1U4siGdfa0PXs92:tbcbOqhZYgOZKLWty4nYDGdftvm2

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

fbfa665f66829ede0766ac2bcca99129_JaffaCakes118
.apk android

com.q.t

Permissions

android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET

Services

com.q.t.QService

com.action.qservice
a
.apk android arch:arm arch:mips arch:x86

com.fun.appstore

com.main.apps.activity.MainActivity

Activities

com.main.apps.activity.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.main.apps.push.PushActivity

com.main.apps.push

com.main.apps.activity.AppGridActivity

com.main.apps.FunAppList

com.main.apps.widget.HotGamesFolderActivity

android.intent.action.MAIN

com.main.apps.widget.BaiduShortcut

android.intent.action.MAIN

com.main.apps.widget.NavigationShortcut

android.intent.action.MAIN

com.main.apps.widget.AppsCommonFolderActivity

android.intent.action.MAIN

com.huawei.deviceCloud.microKernel.push.RichPushActivity

com.huawei.android.push.intent.RICHPUSH

com.main.apps.activity.AutoManagerActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_LOGS
android.permission.INSTALL_PACKAGES
android.permission.READ_SETTINGS
android.permission.WRITE_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher.permission.READ_SETTINGS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.CAMERA
android.permission.VIBRATE
android.permission.FLASHLIGHT
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.ACCESS_COARSE_LOCATION
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
com.android.mylauncher.permission.INSTALL_SHORTCUT
android.permission.RECEIVE_BOOT_COMPLETED
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERACT_ACROSS_USERS_FULL

Receivers

com.main.apps.receiver.SystemReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.PRE_BOOT_COMPLETED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.SCREEN_OFF
com.mediatek.intent.action.SETTINGS_PACKAGE_DATA_CLEARED
android.gzcpc.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.CLOSE_SYSTEM_DIALOGS
android.net.wifi.WIFI_STATE_CHANGED
android.net.wifi.STATE_CHANGE
com.main.apps.checkSoftUpdateAuto
com.main.apps.checkAutoUpdate
com.main.apps.updateFolderList
com.main.apps.clearTrash
com.main.apps.miaoapps

com.main.apps.widget.MycheeringWidget

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.ACTION_APPWIDGET_DISABLED
com.main.apps.widget.action.START_MYCHEERING
com.main.apps.widget.action.refresh.Mycheering

com.main.apps.widget.ToolsAppListWidget

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.ACTION_APPWIDGET_DISABLED
com.main.apps.widget.refreshToolsAppWidget

com.main.apps.widget.FunAppListWidget

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.ACTION_APPWIDGET_DISABLED
com.main.apps.widget.refreshFunAppWidget

com.main.apps.widget.HotAppsWidget

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.ACTION_APPWIDGET_DISABLED
com.main.apps.widget.refreshHotAppWidget

com.main.apps.widget.HotGamesWidget

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.ACTION_APPWIDGET_DISABLED
com.main.apps.widget.refreshHotGamesWidget

com.main.apps.widget.FastCleanWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.ACTION_APPWIDGET_DISABLED
com.mo8.sdkdemo.action.appwidget.clean.start

com.main.apps.push.PushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH_STATE
com.huawei.android.push.plugin.RESPONSE
com.huawei.intent.action.PUSH

com.huawei.deviceCloud.microKernel.push.EventReceiver

android.net.conn.CONNECTIVITY_CHANGE
com.huawei.android.push.intent.REFRESH_PUSH_CHANNEL
com.huawei.android.push.intent.REGISTER
com.huawei.intent.action.PUSH
com.huawei.intent.action.PUSH_ON
com.huawei.android.push.PLUGIN
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.ally.sdk.BroadCastReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED

com.mo8.andashi.receiver.PackageChangedReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_CHANGED

com.mo8.autoboot.receiver.PackageChangedReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_CHANGED

com.mo8.autoboot.receiver.BootReceiver

android.intent.action.BOOT_COMPLETED

com.mo8.autoboot.receiver.DisableReceiver

com.mo8.autoboot.action_disable_packages

Services

com.alimama.mobile.sdk.shell.DownloadingService

com.alimama.mobile.sdk.download.action
CommonPlugin-1.0.apk
.apk android

com.taobao.munion.plugin.cm

com.taobao.newxp.view.UMDetail

Activities

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.CHANGE_WIFI_STATE
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_LOGS
android.permission.CALL_PHONE

Services
FrameworkPlugin-1.0.apk
.apk android

com.example.bizplugin
HandWallPlugin-1.0.apk
.apk android

com.alimama.mobile.sdk.handle

com.taobao.test.MainActivity

Activities

com.taobao.test.MainActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.CHANGE_WIFI_STATE
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_LOGS
android.permission.CALL_PHONE

Services
andashi_service.jar
.apk android

com.mo8.andashi.service

Android Permissions

fbfa665f66829ede0766ac2bcca99129_JaffaCakes118

Permissions

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

Sharing

General

Malware Config

Signatures

Files

com.q.t

Permissions

Services

com.q.t.QService

com.fun.appstore

com.main.apps.activity.MainActivity

Activities

com.main.apps.activity.MainActivity

com.main.apps.push.PushActivity

com.main.apps.activity.AppGridActivity

com.main.apps.widget.HotGamesFolderActivity

com.main.apps.widget.BaiduShortcut

com.main.apps.widget.NavigationShortcut

com.main.apps.widget.AppsCommonFolderActivity

com.huawei.deviceCloud.microKernel.push.RichPushActivity

com.main.apps.activity.AutoManagerActivity

Permissions

Receivers

com.main.apps.receiver.SystemReceiver

com.main.apps.widget.MycheeringWidget

com.main.apps.widget.ToolsAppListWidget

com.main.apps.widget.FunAppListWidget

com.main.apps.widget.HotAppsWidget

com.main.apps.widget.HotGamesWidget

com.main.apps.widget.FastCleanWidgetProvider

com.main.apps.push.PushReceiver

com.huawei.deviceCloud.microKernel.push.EventReceiver

com.ally.sdk.BroadCastReceiver

com.mo8.andashi.receiver.PackageChangedReceiver

com.mo8.autoboot.receiver.PackageChangedReceiver

com.mo8.autoboot.receiver.BootReceiver

com.mo8.autoboot.receiver.DisableReceiver

Services

com.alimama.mobile.sdk.shell.DownloadingService

com.taobao.munion.plugin.cm

com.taobao.newxp.view.UMDetail

Activities

Permissions

Services

com.example.bizplugin

com.alimama.mobile.sdk.handle

com.taobao.test.MainActivity

Activities

com.taobao.test.MainActivity

Permissions

Services

com.mo8.andashi.service

Android Permissions

fbfa665f66829ede0766ac2bcca99129_JaffaCakes118