ff058175e0c094e3e7a40f0b49ca2adf_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ff058175e0c094e3e7a40f0b49ca2adf_JaffaCakes118
Size

14.0MB
MD5

ff058175e0c094e3e7a40f0b49ca2adf
SHA1

f4e243cfdc92556a193b6765ad4ca57fb5fda1bc
SHA256

afbf65fbd61b29b585621a223809b3c393707c1a7595391c108cb753ac633d58
SHA512

c6d1f8e4ac492b3871ab08771e01f814b16de68e420bc2f13c179da0613231672e7e3d54c8cda8dbc127e46077e7b2eee780e4635d35728aad4e40340146313d
SSDEEP

393216:itCLeMikj47B3bbQQ/PPGO6mvvB/vH5jvAVDTNc:iQLeMdM7tbEQ/POOz3DAFO

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 2 IoCs

description	ioc
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device.	android.permission.BIND_NOTIFICATION_LISTENER_SERVICE
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 28 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to access data from sensors that the user uses to measure what is happening inside their body, such as heart rate.	android.permission.BODY_SENSORS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to receive WAP push messages.	android.permission.RECEIVE_WAP_PUSH
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to use SIP service.	android.permission.USE_SIP
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows an application to write and read the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to add voicemails into the system.	com.android.voicemail.permission.ADD_VOICEMAIL
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS

Files

ff058175e0c094e3e7a40f0b49ca2adf_JaffaCakes118
.apk android arch:arm

com.svm.proteinbox_multi

com.svm.proteinbox.ui.tour.SplashActivity

Activities

com.svm.proteinbox.ui.tour.SplashActivity

android.intent.action.MAIN

com.svm.proteinbox.ui.HomeActivity

android.intent.action.MAIN

com.svm.proteinbox.ui.activity.ShortcutStartActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.svm.proteinbox.ui.multi.ShareEarnFreeActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.svm.proteinbox.ui.activity.AccessNotificationSettingActivity

com.svm.proteinbox.ACTION_LAUNCH_NOTIFICATION_SETTINGS

com.svm.proteinbox.ui.activity.ManageOverlaySettingActivity

com.svm.proteinbox.ACTION_MANAGE_OVERLAY_PERMISSION

com.svm.plugins.wxDisguise.wxPlug.ui.ShowOriginActivity

com.svm.pbs_multi.wx.show_origin_activity

com.svm.plugins.wxDisguise.wxPlug.ui.ShowFakeActivity

com.svm.pbs_multi.wx.show_fake_activity

Permissions

com.svm.proteinbox.ipc.LocalBroadcastPermission
android.permission.READ_EXTERNAL_STORAGE
android.permission.GET_INTENT_SENDER_INTENT
android.permission.ACCOUNT_MANAGER
android.permission.USE_CREDENTIALS
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.INTERNET
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.ACCESS_MOCK_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_WIMAX_STATE
android.permission.BIND_APPWIDGET
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.BODY_SENSORS
android.permission.BROADCAST_STICKY
android.permission.CALL_PHONE
android.permission.CAMERA
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_WIMAX_STATE
android.permission.CLEAR_APP_CACHE
android.permission.DISABLE_KEYGUARD
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.EXPAND_STATUS_BAR
android.permission.FLASHLIGHT
android.permission.GET_PACKAGE_SIZE
android.permission.GET_TASKS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.NFC
android.permission.PERSISTENT_ACTIVITY
android.permission.PROCESS_OUTGOING_CALLS
android.permission.READ_CALENDAR
android.permission.READ_CALL_LOG
android.permission.READ_CELL_BROADCASTS
android.permission.READ_CONTACTS
android.permission.READ_INSTALL_SESSIONS
android.permission.READ_PHONE_STATE
android.permission.READ_PROFILE
android.permission.READ_SMS
android.permission.READ_SOCIAL_STREAM
android.permission.READ_SYNC_SETTINGS
android.permission.READ_SYNC_STATS
android.permission.READ_USER_DICTIONARY
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_MMS
android.permission.RECEIVE_SMS
android.permission.RECEIVE_WAP_PUSH
android.permission.RECORD_AUDIO
android.permission.REORDER_TASKS
android.permission.RESTART_PACKAGES
android.permission.SEND_SMS
android.permission.SET_TIME_ZONE
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_HINTS
android.permission.SUBSCRIBED_FEEDS_READ
android.permission.SUBSCRIBED_FEEDS_WRITE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.TRANSMIT_IR
android.permission.USE_SIP
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_CALENDAR
android.permission.WRITE_CALL_LOG
android.permission.WRITE_CONTACTS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_PROFILE
android.permission.WRITE_SETTINGS
android.permission.WRITE_SMS
android.permission.WRITE_SOCIAL_STREAM
android.permission.WRITE_SYNC_SETTINGS
android.permission.WRITE_USER_DICTIONARY
android.permission.USE_FINGERPRINT
com.android.alarm.permission.SET_ALARM
com.android.browser.permission.READ_HISTORY_BOOKMARKS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.voicemail.permission.ADD_VOICEMAIL
com.google.android.launcher.permission.READ_SETTINGS
com.google.android.providers.gsf.permission.READ_GSERVICES
com.google.android.providers.talk.permission.READ_ONLY
com.google.android.providers.talk.permission.WRITE_ONLY
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_LOGS
android.permission.INSTALL_PACKAGES
android.permission.DELETE_PACKAGES
android.permission.CLEAR_APP_USER_DATA
android.permission.WRITE_MEDIA_STORAGE
android.permission.ACCESS_CACHE_FILESYSTEM
android.permission.READ_OWNER_DATA
android.permission.WRITE_OWNER_DATA
android.permission.CHANGE_CONFIGURATION
android.permission.DEVICE_POWER
android.permission.BATTERY_STATS
android.permission.ACCESS_DOWNLOAD_MANAGER
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
android.permission.WRITE_APN_SETTINGS
android.permission.MEDIA_CONTENT_CONTROL
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.teslacoilsw.launcher.permission.READ_SETTINGS
com.actionlauncher.playstore.permission.READ_SETTINGS
com.mx.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.READ_SETTINGS
com.apusapps.launcher.permission.READ_SETTINGS
com.tsf.shell.permission.READ_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.lenovo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.bbk.launcher2.permission.READ_SETTINGS
com.s.launcher.permission.READ_SETTINGS
cn.nubia.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.CHANGE_BADGE
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY
com.android.vending.BILLING
android.permission.SYSTEM_ALERT_WINDOW
android.permission.PACKAGE_USAGE_STATS
android.permission.INJECT_EVENTS

Receivers

com.svm.proteinbox.receiver.AppAddedOrRemovedReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED

com.svm.proteinbox.receiver.TencentQQReceiver

tencent_qq_proteinbox

com.hyphenate.chat.EMMonitorReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT

com.svm.proteinbox.receiver.TimeModelReceiver

com.svm.proteinbox.auto.time.model

com.svm.mutiple.service.proxy.SystemBroadcastReceiver

android.intent.action.BOOT_COMPLETED

Services

com.svm.proteinbox.ui.lockscreen.NotificationObserverService

android.service.notification.NotificationListenerService

com.svm.plugins.hongbao.services.HongbaoService

android.accessibilityservice.AccessibilityService

Android Permissions

ff058175e0c094e3e7a40f0b49ca2adf_JaffaCakes118

Permissions

com.svm.proteinbox.ipc.LocalBroadcastPermission

android.permission.READ_EXTERNAL_STORAGE

android.permission.GET_INTENT_SENDER_INTENT

android.permission.ACCOUNT_MANAGER

android.permission.USE_CREDENTIALS

android.permission.GET_ACCOUNTS

android.permission.MANAGE_ACCOUNTS

android.permission.INTERNET

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.ACCESS_MOCK_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_WIMAX_STATE

android.permission.BIND_APPWIDGET

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.BODY_SENSORS

android.permission.BROADCAST_STICKY

android.permission.CALL_PHONE

android.permission.CAMERA

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_MULTICAST_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_WIMAX_STATE

android.permission.CLEAR_APP_CACHE

android.permission.DISABLE_KEYGUARD

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.EXPAND_STATUS_BAR

android.permission.FLASHLIGHT

android.permission.GET_PACKAGE_SIZE

android.permission.GET_TASKS

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.NFC

android.permission.PERSISTENT_ACTIVITY

android.permission.PROCESS_OUTGOING_CALLS

android.permission.READ_CALENDAR

android.permission.READ_CALL_LOG

android.permission.READ_CELL_BROADCASTS

android.permission.READ_CONTACTS

android.permission.READ_INSTALL_SESSIONS

android.permission.READ_PHONE_STATE

android.permission.READ_PROFILE

android.permission.READ_SMS

android.permission.READ_SOCIAL_STREAM

android.permission.READ_SYNC_SETTINGS

android.permission.READ_SYNC_STATS

Sharing

General

Malware Config

Signatures

Files

com.svm.proteinbox_multi

com.svm.proteinbox.ui.tour.SplashActivity

Activities

com.svm.proteinbox.ui.tour.SplashActivity

com.svm.proteinbox.ui.HomeActivity

com.svm.proteinbox.ui.activity.ShortcutStartActivity

com.tencent.tauth.AuthActivity

com.svm.proteinbox.ui.multi.ShareEarnFreeActivity

com.svm.proteinbox.ui.activity.AccessNotificationSettingActivity

com.svm.proteinbox.ui.activity.ManageOverlaySettingActivity

com.svm.plugins.wxDisguise.wxPlug.ui.ShowOriginActivity

com.svm.plugins.wxDisguise.wxPlug.ui.ShowFakeActivity

Permissions

Receivers

com.svm.proteinbox.receiver.AppAddedOrRemovedReceiver

com.svm.proteinbox.receiver.TencentQQReceiver

com.hyphenate.chat.EMMonitorReceiver

com.svm.proteinbox.receiver.TimeModelReceiver

com.svm.mutiple.service.proxy.SystemBroadcastReceiver

Services

com.svm.proteinbox.ui.lockscreen.NotificationObserverService

com.svm.plugins.hongbao.services.HongbaoService

Android Permissions

ff058175e0c094e3e7a40f0b49ca2adf_JaffaCakes118