fe5aeb7e295ee29315aa648199710cf2_JaffaCakes118

General

Target

fe5aeb7e295ee29315aa648199710cf2_JaffaCakes118
Size

13.3MB
MD5

fe5aeb7e295ee29315aa648199710cf2
SHA1

363ae297e9725ee44afcd25e265c7ea468977a53
SHA256

98feb6c59a1a52d61f4f94ae3d315482042b0058954bfd898b8913413f4fb0ea
SHA512

f9b206ebcd6649b6c9a950576eb8c52b745371cb245051ad386dcda1e1106ab2d6a28a3a5a1d0b3703bc7697e9a6cd463acccb4f2fe8e33ff3b8038299fe425d
SSDEEP

393216:qwwAsa8wjQZptCJg0/ovfV5DottJDZRuGuI2Wvfsj:Hx0ZptJmmyRX52Wvkj

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 14 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

fe5aeb7e295ee29315aa648199710cf2_JaffaCakes118
.apk android arch:arm arch:arm64

com.hanju.oubatv

com.xiaomi.ad.demo.SplashAdActivity

Activities

com.xiaomi.ad.demo.SplashAdActivity

android.intent.action.MAIN

com.babycloud.hanju.ui.activity.WelcomeActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.READ_LOGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_CONFIGURATION
android.permission.WRITE_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.SYSTEM_ALERT_WINDOW
com.babycloud.hanju.permission.MIPUSH_RECEIVE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
com.android.launcher.permission.INSTALL_SHORTCUT

Receivers

com.babycloud.hanju.push.XiaomiMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.babycloud.hanju.ui.broadcasts.NetWorkReceive

android.net.conn.CONNECTIVITY_CHANGE

com.baoyun.common.network.ConnectivityMonitorReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.svgmw

android.intent.action.USER_PRESENT

Services

com.baidu.location.f

com.baidu.location.service_v2.2
AdServer.apk
.apk android

com.miui.systemAdSolution

Permissions

android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
analytics_core.apk
.apk android arch:arm64 arch:arm

com.miui.analytics

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.INSTALL_PACKAGES

Receivers

com.miui.analytics.AnalyticsReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

Services

com.miui.analytics.AnalyticsService

com.miui.action.ANALYTICS_SERVICE

Android Permissions

fe5aeb7e295ee29315aa648199710cf2_JaffaCakes118

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.READ_LOGS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.VIBRATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_CONFIGURATION

android.permission.WRITE_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.SYSTEM_ALERT_WINDOW

com.babycloud.hanju.permission.MIPUSH_RECEIVE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_TASKS

com.android.launcher.permission.INSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

com.hanju.oubatv

com.xiaomi.ad.demo.SplashAdActivity

Activities

com.xiaomi.ad.demo.SplashAdActivity

com.babycloud.hanju.ui.activity.WelcomeActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.babycloud.hanju.push.XiaomiMessageReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.babycloud.hanju.ui.broadcasts.NetWorkReceive

com.baoyun.common.network.ConnectivityMonitorReceiver

com.svgmw

Services

com.baidu.location.f

com.miui.systemAdSolution

Permissions

com.miui.analytics

Permissions

Receivers

com.miui.analytics.AnalyticsReceiver

Services

com.miui.analytics.AnalyticsService

Android Permissions

fe5aeb7e295ee29315aa648199710cf2_JaffaCakes118