ff17ae399c8d0ab4c56ca747fbc0955c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ff17ae399c8d0ab4c56ca747fbc0955c_JaffaCakes118
Size

11.6MB
MD5

ff17ae399c8d0ab4c56ca747fbc0955c
SHA1

6cb5992efe9825cd85a4c0271bf0f4e4ff8527b1
SHA256

7d2fb820fa70dffbbbc518700e3d93a12dc0a1805349087adb704d5840fc2041
SHA512

285cf89390c0d9597bd19d04a2be21feeb57914dbd4ca6fc9924ca839f103784b26541a8669e856117238c1dad0f3a3932285082ceaba943181e824c1e807dc3
SSDEEP

196608:CIsQ1H8p1RjLyldZbPTJJGdy+IrQvFIuqGY0i2Nkoqr5O6hRRQ7745FpZ+a541Kr:CIsQ1H8p1gvTjUEq0ui5OQ+H455541B6

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 20 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to write and read the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

ff17ae399c8d0ab4c56ca747fbc0955c_JaffaCakes118
.apk android arch:arm arch:x86

com.baidu.netdisk

com.baidu.netdisk.ui.Navigate

Activities

com.baidu.netdisk.ui.Navigate

android.intent.action.MAIN
android.intent.action.MAIN
com.baidu.netdisk.wap.intent.action.DOWNLOAD
com.baidu.netdisk.wap.intent.action.SAVE
com.baidu.netdisk.wap.intent.action.PLAY

com.baidu.netdisk.ui.ShortCutActivity

android.intent.action.MAIN

com.baidu.netdisk.plugin.videoplayer.ui.VideoPlayerActivity

com.baidu.netdisk.plugin.videoplayer.ACTION_RUN

com.baidu.netdisk.plugin.videoplayer.ui.DLNAControlerActivity

com.baidu.netdisk.plugin.videoplayer.ACTION_RUN

com.baidu.netdisk.ui.ContactsPickActivity

android.intent.action.OPEN_SHARE

com.baidu.netdisk.ui.localfile.uploadlocalfile.FilePickActivity

com.baidu.yi.netdisk.PICK_DIRECTORY
com.baidu.yi.netdisk.PICK_FILES

com.baidu.netdisk.pim.smsmms.ui.SmsmmsBackupMain

android.intent.action.SEND
android.intent.action.SENDTO

com.baidu.netdisk.ui.BTDownloadDialogActivity

android.intent.action.VIEW

com.baidu.netdisk.ui.ReceiveShareFileActivity

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.baidu.netdisk.p2pshare.ui.ReceiverP2PShareFileActivity

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.baidu.netdisk.ui.cloudfile.NetdiskFilelistActivity

android.intent.action.GET_CONTENT

com.baidu.netdisk.ui.view.Wap2NetdiskActivityView

com.baidu.netdisk.wap.intent.action.VIEW

com.unionpay.uppay.PayActivity

android.intent.action.Run

com.unionpay.uppay.PayActivityEx

android.intent.action.Run
android.intent.action.VIEW

com.baidu.netdisk.launch.AuthenticatorActivity

com.baidu.netdisk.action.BACKUP
com.baidu.netdisk.action.SYNC
com.baidu.netdisk.action.VIEW_BACKUP_CENTER
com.baidu.netdisk.action.VIEW_MAIN

Permissions

android.permission.VIBRATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK
android.permission.GET_TASKS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.VIBRATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK
android.permission.GET_TASKS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
com.baidu.permission.SHARE
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.READ_CALL_LOG
android.permission.WRITE_CALL_LOG
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_MOCK_LOCATION
android.permission.VIBRATE
android.permission.CAMERA
android.permission.SET_ACTIVITY_WATCHER
android.permission.GET_TASKS
android.permission.DISABLE_KEYGUARD
android.permission.BROADCAST_STICKY
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.RECORD_AUDIO
android.hardware.sensor.accelerometer
android.permission.GET_ACCOUNTS
android.permission.CHANGE_NETWORK_STATE
android.permission.REORDER_TASKS
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.BROADCAST_PACKAGE_REMOVED
android.permission.SEND_SMS
android.permission.CALL_PHONE

Receivers

com.baidu.netdisk.wxapi.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.baidu.sapi2.share.ShareReceiver

baidu.intent.action.SHARE
baidu.intent.action.NEWSHARE
baidu.intent.action.SHARE_V6

com.baidu.netdisk.push.PushMessageReceiver

com.baidu.android.pushservice.action.MESSAGE
com.baidu.android.pushservice.action.RECEIVE

com.baidu.android.pushservice.PushServiceReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.baidu.android.pushservice.action.notification.SHOW
com.baidu.android.pushservice.action.media.CLICK

com.baidu.android.pushservice.RegistrationReceiver

com.baidu.android.pushservice.action.METHOD
com.baidu.android.pushservice.action.BIND_SYNC
android.intent.action.PACKAGE_REMOVED

com.baidu.android.moplus.MoPlusReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.baidu.android.moplus.action.START
com.baidu.android.pushservice.action.BIND_SYNC
android.intent.action.PACKAGE_REMOVED

com.baidu.android.defense.push.PushMsgReceiver

com.baidu.android.pushservice.action.RECEIVE
com.baidu.android.pushservice.action.MESSAGE
com.baidu.android.pushservice.action.SDK_MESSAGE
com.baidu.android.pushservice.action.sdk.RECEIVE

com.baidu.netdisk.kernel.device.monitor.battery.BatteryMonitor

android.intent.action.BATTERY_CHANGED
android.intent.action.BATTERY_LOW
android.intent.action.BATTERY_OKAY
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.baidu.netdisk.util.AlarmReceiver

com.baidu.netdisk.action_alarm_service
com.baidu.netdisk.action_daily_active

com.baidu.netdisk.module.toolbox.AppInfoBroadcatReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.baidu.devicesecurity.receiver.DsMainReceiver

android.intent.action.BOOT_COMPLETED
com.baidu.devicesecurity.FINDME_MSSSAGE
com.baidu.devicesecurity.VERIFICATION
com.baidu.devicesecurity.COMMAND
android.net.conn.CONNECTIVITY_CHANGE

com.baidu.devicesecurity.receiver.DSDeviceAdminReceiver

android.app.action.ACTION_PASSWORD_FAILED
android.intent.action.USER_PRESENT
android.app.action.ACTION_PASSWORD_EXPIRING
android.app.action.DEVICE_ADMIN_ENABLED

com.baidu.cyberplayer.dlna.NetworkChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.STATE_CHANGE
android.net.wifi.WIFI_STATE_CHANGED

com.baidu.netdisk.p2pshare.PhoneStateReceiver

android.intent.action.PHONE_STATE
android.intent.action.NEW_OUTGOING_CALL

com.baidu.netdisk.cloudp2p.matchcontacts.MatchContactsAlarmReceiver

com.baidu.netdisk.action_alarm_service
com.baidu.netdisk.action_daily_active

com.baidu.netdisk.smsmms.broadcast.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.push.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.phoneforget.broadcast.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.transferlist.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.util.imageloader.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.calllog.broadcast.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.filesystem.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.cloudp2p.broadcast.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.pim.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.statistics.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.advertise.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.backup.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.lightapp.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.device.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.cloudimage.broadcast.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.netdisk.personalpage.broadcast.AccountChangeListener

com.baidu.netdisk.ACTION_LOGIN
com.baidu.netdisk.ACTION_LOGOUT

com.baidu.pim.smsmms.receiver.SmsReceiver

android.provider.Telephony.SMS_DELIVER

com.baidu.pim.smsmms.receiver.MmsReceiver

android.provider.Telephony.WAP_PUSH_DELIVER

com.baidu.sumeru.lightapp.sdk.PushReceiver

com.baidu.android.pushservice.action.SDK_MESSAGE

Services

com.baidu.sumeru.lightapp.service.PluginServiceProxy

com.baidu.sumeru.lightapp.plugin.service

com.baidu.sapi2.share.ShareService

baidu.intent.action.account.SHARE_SERVICE

com.baidu.android.pushservice.PushService

com.baidu.android.pushservice.action.PUSH_SERVICE

com.baidu.pim.smsmms.receiver.HeadlessSmsSendService

android.intent.action.RESPOND_VIA_MESSAGE

Android Permissions

ff17ae399c8d0ab4c56ca747fbc0955c_JaffaCakes118

Permissions

android.permission.VIBRATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.GET_TASKS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.VIBRATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.GET_TASKS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

com.baidu.permission.SHARE

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.READ_CALL_LOG

android.permission.WRITE_CALL_LOG

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_MOCK_LOCATION

android.permission.VIBRATE

android.permission.CAMERA

android.permission.SET_ACTIVITY_WATCHER

android.permission.GET_TASKS

android.permission.DISABLE_KEYGUARD

android.permission.BROADCAST_STICKY

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.ACCESS_DOWNLOAD_MANAGER

Sharing

General

Malware Config

Signatures

Files

com.baidu.netdisk

com.baidu.netdisk.ui.Navigate

Activities

com.baidu.netdisk.ui.Navigate

com.baidu.netdisk.ui.ShortCutActivity

com.baidu.netdisk.plugin.videoplayer.ui.VideoPlayerActivity

com.baidu.netdisk.plugin.videoplayer.ui.DLNAControlerActivity

com.baidu.netdisk.ui.ContactsPickActivity

com.baidu.netdisk.ui.localfile.uploadlocalfile.FilePickActivity

com.baidu.netdisk.pim.smsmms.ui.SmsmmsBackupMain

com.baidu.netdisk.ui.BTDownloadDialogActivity

com.baidu.netdisk.ui.ReceiveShareFileActivity

com.baidu.netdisk.p2pshare.ui.ReceiverP2PShareFileActivity

com.baidu.netdisk.ui.cloudfile.NetdiskFilelistActivity

com.baidu.netdisk.ui.view.Wap2NetdiskActivityView

com.unionpay.uppay.PayActivity

com.unionpay.uppay.PayActivityEx

com.baidu.netdisk.launch.AuthenticatorActivity

Permissions

Receivers

com.baidu.netdisk.wxapi.AppRegister

com.baidu.sapi2.share.ShareReceiver

com.baidu.netdisk.push.PushMessageReceiver

com.baidu.android.pushservice.PushServiceReceiver

com.baidu.android.pushservice.RegistrationReceiver

com.baidu.android.moplus.MoPlusReceiver

com.baidu.android.defense.push.PushMsgReceiver

com.baidu.netdisk.kernel.device.monitor.battery.BatteryMonitor

com.baidu.netdisk.util.AlarmReceiver

com.baidu.netdisk.module.toolbox.AppInfoBroadcatReceiver

com.baidu.devicesecurity.receiver.DsMainReceiver

com.baidu.devicesecurity.receiver.DSDeviceAdminReceiver

com.baidu.cyberplayer.dlna.NetworkChangeReceiver

com.baidu.netdisk.p2pshare.PhoneStateReceiver

com.baidu.netdisk.cloudp2p.matchcontacts.MatchContactsAlarmReceiver

com.baidu.netdisk.smsmms.broadcast.AccountChangeListener

com.baidu.netdisk.push.AccountChangeListener

com.baidu.netdisk.phoneforget.broadcast.AccountChangeListener

com.baidu.netdisk.transferlist.AccountChangeListener

com.baidu.netdisk.util.imageloader.AccountChangeListener

com.baidu.netdisk.calllog.broadcast.AccountChangeListener

com.baidu.netdisk.filesystem.AccountChangeListener

com.baidu.netdisk.cloudp2p.broadcast.AccountChangeListener

com.baidu.netdisk.pim.AccountChangeListener

com.baidu.netdisk.statistics.AccountChangeListener

com.baidu.netdisk.advertise.AccountChangeListener

com.baidu.netdisk.backup.AccountChangeListener

com.baidu.netdisk.lightapp.AccountChangeListener

com.baidu.netdisk.device.AccountChangeListener

com.baidu.netdisk.cloudimage.broadcast.AccountChangeListener

com.baidu.netdisk.personalpage.broadcast.AccountChangeListener

com.baidu.pim.smsmms.receiver.SmsReceiver

com.baidu.pim.smsmms.receiver.MmsReceiver

com.baidu.sumeru.lightapp.sdk.PushReceiver

Services

com.baidu.sumeru.lightapp.service.PluginServiceProxy

com.baidu.sapi2.share.ShareService

com.baidu.android.pushservice.PushService

com.baidu.pim.smsmms.receiver.HeadlessSmsSendService

Android Permissions

ff17ae399c8d0ab4c56ca747fbc0955c_JaffaCakes118