08b622c32188283f526620ac5002fb7b_JaffaCakes118

General

Target

08b622c32188283f526620ac5002fb7b_JaffaCakes118
Size

1.3MB
MD5

08b622c32188283f526620ac5002fb7b
SHA1

b3cfdc0ccd328c277d13a813bceb94d303b5f63b
SHA256

0a6d66265b7e5f7ff020a95cb3b65608139a1c126b747fb295c4c4f6c97d93b4
SHA512

eb20eaa45634f7fb6b94cfc95c871dc06ee9c7b9c76cad894388ca6b5e7e2e780d99ba68c86ba21fa99193da157c683fbdcac2d869d085503cf31889a5fa0056
SSDEEP

24576:q3q+WOcxFkRfq4J9gFwHtznzI7DF4IYHbbD9js/7xwi/5JFjUU:99OuFCfq4J9uEtrzI7htY7bD9jG7xp/r

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Requests dangerous framework permissions 13 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

08b622c32188283f526620ac5002fb7b_JaffaCakes118
.apk android

com.android.touch

com.opda.actionpoint.MyMainActivity

Activities

com.opda.actionpoint.MyMainActivity

android.intent.action.MAIN

com.opda.actionpoint.LockScreenActivity

com.opda.actionpoint.LOCKSCREEN
android.intent.action.VIEW

com.opda.actionpoint.FavouriteActivity

com.opda.actionpoint.FAVOURITE
android.intent.action.VIEW

com.opda.actionpoint.LinkmanActivity

com.opda.actionpoint.LINKMAN
android.intent.action.VIEW

com.opda.actionpoint.ShortcutActivity

com.opda.actionpoint.SHORTCUT
android.intent.action.VIEW

com.opda.actionpoint.ClearShortcutActivity

android.intent.action.VIEW

Permissions

android.permission.RESTART_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.ACCESS_WIFI_STATE
android.permission.FLASHLIGHT
android.permission.WAKE_LOCK
android.permission.CAMERA
android.hardware.camera
android.permission.READ_CONTACTS
android.permission.CALL_PHONE
android.permission.VIBRATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.GET_TASKS
android.permission.SET_DEBUG_APP
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CAMERA
android.permission.ACCESS_MTK_MMHW
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.GET_PACKAGE_SIZE
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.permission.UNINSTALL_SHORTCUT
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE

Receivers

com.opda.actionpoint.receiver.LockScreenReceiver

android.app.action.DEVICE_ADMIN_ENABLED

com.opda.actionpoint.receiver.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

com.opda.actionpoint.receiver.ScreenBroadcastReceiver

android.intent.action.ACTION_SCREEN_OFF
android.intent.action.ACTION_SCREEN_ON
android.intent.action.USER_PRESENT

Services

com.opda.actionpoint.service.ScreenShotService

com.example.pointexample.screenshot

Android Permissions

08b622c32188283f526620ac5002fb7b_JaffaCakes118

Permissions

android.permission.RESTART_PACKAGES

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.ACCESS_WIFI_STATE

android.permission.FLASHLIGHT

android.permission.WAKE_LOCK

android.permission.CAMERA

android.hardware.camera

android.permission.READ_CONTACTS

android.permission.CALL_PHONE

android.permission.VIBRATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.GET_TASKS

android.permission.SET_DEBUG_APP

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CAMERA

android.permission.ACCESS_MTK_MMHW

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.GET_PACKAGE_SIZE

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.permission.UNINSTALL_SHORTCUT

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

Sharing

General

Malware Config

Signatures

Files

com.android.touch

com.opda.actionpoint.MyMainActivity

Activities

com.opda.actionpoint.MyMainActivity

com.opda.actionpoint.LockScreenActivity

com.opda.actionpoint.FavouriteActivity

com.opda.actionpoint.LinkmanActivity

com.opda.actionpoint.ShortcutActivity

com.opda.actionpoint.ClearShortcutActivity

Permissions

Receivers

com.opda.actionpoint.receiver.LockScreenReceiver

com.opda.actionpoint.receiver.BootBroadcastReceiver

com.opda.actionpoint.receiver.ScreenBroadcastReceiver

Services

com.opda.actionpoint.service.ScreenShotService

Android Permissions

08b622c32188283f526620ac5002fb7b_JaffaCakes118