fcf62155f60c110941fc3f44ec25d410_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fcf62155f60c110941fc3f44ec25d410_JaffaCakes118
Size

24.9MB
MD5

fcf62155f60c110941fc3f44ec25d410
SHA1

e53a3f6da3c5b3b8c99ddd02a0377e4b540741d9
SHA256

e1e3939da0eee19d293efee9ccc8e4508a52fd9ee0bf4c5078715cdb5afbc788
SHA512

0014703a1267762e07136c4619409f4f6caa8503c897c828aeb67c72017218af23deae8b341f6333b6096a4fce656e791fb9a722e548411f3604bac99482e8af
SSDEEP

393216:A93wONmHb11+nOkCXySornLWsK5vZ0rUjLlTRE/uLFXeJL1t9U6WjDs6P+CN1YO:Lf71uOkCCSornUNZyipTGMXkfFj6vYO

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

fcf62155f60c110941fc3f44ec25d410_JaffaCakes118
.apk android arch:arm

com.wedobest.hbq

.StartAct

Activities

.StartAct

android.intent.action.MAIN
android.intent.action.VIEW

com.pdragon.common.act.FeedBackAct

com.pdragon.app.feedback

com.mob.tools.MobUIShell

android.intent.action.VIEW
android.intent.action.VIEW

com.alimama.mobile.sdk.shell.TaeLoginWebView

COM_TAOBAO_TAE_SDK_TRADE_WEB_VIEW_ACTION

com.qihoo.gamecenter.sdk.activity.QhDeepLinkActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.CHANGE_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_CONFIGURATION
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.VIBRATE
android.permission.GET_TASKS
android.permission.BLUETOOTH
android.permission.READ_SETTINGS

Receivers

com.snmi.sdk.FileDownloadReceiver

android.intent.action.DOWNLOAD_COMPLETE

com.snmi.sdk.FileInstallReceiver

android.intent.action.INSTALL

com.youdao.sdk.common.YouDaoTrackerReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.net.conn.CONNECTIVITY_CHANGE

Services

com.alimama.mobile.sdk.shell.DownloadingService

com.alimama.mobile.sdk.download.action
BannerPlugin-3.1.apk
.apk android

com.alimama.mobile.sdk.banner

com.alimama.mobile.plugin.banner.service.MainActivity

Activities

com.alimama.mobile.plugin.banner.service.MainActivity

android.intent.action.MAIN
CommonPlugin-4.7.apk
.apk android

com.taobao.munion.plugin.cm

com.taobao.test.MainActivity

Activities

com.taobao.test.MainActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.CHANGE_WIFI_STATE
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_LOGS
android.permission.CALL_PHONE
FeedPlugin-2.9.apk
.apk android

com.alimama.mobile.sdk.feed

com.taobao.test.FeedMainActivity

Activities

com.taobao.test.FeedMainActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CHANGE_CONFIGURATION
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.INTERNET
android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.VIBRATE
FrameworkPlugin-3.4.apk
.apk android

com.taobao.munion.plugin.framework
InsertPlugin-2.9.apk
.apk android

com.alimama.mobile.sdk.insert
TAEPlugin-2.1.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.alimama.mobile.sdk.tae

com.ali.auth.third.ui.webview.BaseWebViewActivity

Activities

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.WRITE_SETTINGS
android.permission.BLUETOOTH
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_SETTINGS
WelcomePlugin-3.3.apk
.apk android

com.alimama.mobile.sdk.welcome

Android Permissions

fcf62155f60c110941fc3f44ec25d410_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.CHANGE_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_TASKS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.GET_TASKS

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_CONFIGURATION

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_LOGS

android.permission.CALL_PHONE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.VIBRATE

android.permission.GET_TASKS

android.permission.BLUETOOTH

android.permission.READ_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.wedobest.hbq

.StartAct

Activities

.StartAct

com.pdragon.common.act.FeedBackAct

com.mob.tools.MobUIShell

com.alimama.mobile.sdk.shell.TaeLoginWebView

com.qihoo.gamecenter.sdk.activity.QhDeepLinkActivity

Permissions

Receivers

com.snmi.sdk.FileDownloadReceiver

com.snmi.sdk.FileInstallReceiver

com.youdao.sdk.common.YouDaoTrackerReceiver

Services

com.alimama.mobile.sdk.shell.DownloadingService

com.alimama.mobile.sdk.banner

com.alimama.mobile.plugin.banner.service.MainActivity

Activities

com.alimama.mobile.plugin.banner.service.MainActivity

com.taobao.munion.plugin.cm

com.taobao.test.MainActivity

Activities

com.taobao.test.MainActivity

Permissions

com.alimama.mobile.sdk.feed

com.taobao.test.FeedMainActivity

Activities

com.taobao.test.FeedMainActivity

Permissions

com.taobao.munion.plugin.framework

com.alimama.mobile.sdk.insert

com.alimama.mobile.sdk.tae

com.ali.auth.third.ui.webview.BaseWebViewActivity

Activities

Permissions

com.alimama.mobile.sdk.welcome

Android Permissions

fcf62155f60c110941fc3f44ec25d410_JaffaCakes118