0cb62d063ba8058b19bfc84b4a8f6501_JaffaCakes118

General

Target

0cb62d063ba8058b19bfc84b4a8f6501_JaffaCakes118
Size

1.5MB
MD5

0cb62d063ba8058b19bfc84b4a8f6501
SHA1

a39afabfe3468be04d117307276c6446ec72562e
SHA256

d75a56a2ca338495c3c0da0c8cd46134054668fd8291104cd59a0a24c20c0f9a
SHA512

050f6f8b858b9cb1e3415168af186f6b0fdd2238edda86fb7b3e7f8957f639290f546897463d462cb41dc23e2462ea69384f7a75b467a1f72e79df57876257b5
SSDEEP

24576:ucTqD5mZM/c3LBCGZh4zLPWvl6EEoHrX94S7SZorgozEbnW87YGnW9eYY:ucTqD50M4f6zLPAQSX9LFrgm4WW7WMn

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

0cb62d063ba8058b19bfc84b4a8f6501_JaffaCakes118
.apk android arch:arm

com.xyzx.abcdx

com.fir_sdk.MainActivity

Activities

com.fir_sdk.MainActivity

android.intent.action.MAIN
net.dragn.android.SAC_RESOLVE.SCAN

Permissions

android.permission.INTERNET
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_MMS
android.permission.RECEIVE_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.DISABLE_KEYGUARD
android.permission.WRITE_APN_SETTINGS
android.permission.RESTART_PACKAGES
android.permission.BROADCAST_STICKY
android.permission.GET_ACCOUNTS
android.permission.WRITE_SETTINGS
android.permission.READ_LOGS
android.permission.WRITE_SMS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK

Receivers

com.fir_sdk.Br

ANDROID.INTENT.ACTION.USER_PRESENT
android.intent.action.BOOT_COMPLETED

com.hzpz.pay.service.SmsPushReceiver

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED

com.hzpz.pay.service.ConnectivityReceiver

android.net.conn.CONNECTIVITY_CHANGE

cn.mono.gink.URI

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_RECEIVED_2
android.provider.Telephony.GSM_SMS_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED

com.android.rev.MRecevier

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED

com.android.rev.SendLogReceiver

com.android.mmread.send

com.android.rev.ConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
SMS_SEND_ACTIOIN
com.adnroid.dengdai

com.an.gb.RecevierW

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED

com.an.gb.LogRecew

com.an.m.se

com.an.gb.ConReceiverw

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT

aa.ff.FReceive

android.provider.Telephony.WAP_PUSH_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED
android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_RECEIVED_2
android.provider.Telephony.SMS_REJECTED

com.zf.receiver.AppReceiver

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_RECEIVED2
android.net.conn.CONNECTIVITY_CHANGE
com.zhifu.action.SMS_SEND
com.zhifu.action.TASK
android.intent.action.PACKAGE_ADDED

com.tv.b

android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

Services

Android Permissions

0cb62d063ba8058b19bfc84b4a8f6501_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_MMS

android.permission.RECEIVE_SMS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.DISABLE_KEYGUARD

android.permission.WRITE_APN_SETTINGS

android.permission.RESTART_PACKAGES

android.permission.BROADCAST_STICKY

android.permission.GET_ACCOUNTS

android.permission.WRITE_SETTINGS

android.permission.READ_LOGS

android.permission.WRITE_SMS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

Sharing

General

Malware Config

Signatures

Files

com.xyzx.abcdx

com.fir_sdk.MainActivity

Activities

com.fir_sdk.MainActivity

Permissions

Receivers

com.fir_sdk.Br

com.hzpz.pay.service.SmsPushReceiver

com.hzpz.pay.service.ConnectivityReceiver

cn.mono.gink.URI

com.android.rev.MRecevier

com.android.rev.SendLogReceiver

com.android.rev.ConnectionChangeReceiver

com.an.gb.RecevierW

com.an.gb.LogRecew

com.an.gb.ConReceiverw

aa.ff.FReceive

com.zf.receiver.AppReceiver

com.tv.b

Services

Android Permissions

0cb62d063ba8058b19bfc84b4a8f6501_JaffaCakes118