0b39a2fe0d43a5f68d6e4fc9aca8abdc_JaffaCakes118

General

Target

0b39a2fe0d43a5f68d6e4fc9aca8abdc_JaffaCakes118
Size

8.3MB
MD5

0b39a2fe0d43a5f68d6e4fc9aca8abdc
SHA1

9765408a8cb7f46e9f3af0840f334edffb5af14c
SHA256

e49ee674e633ea305f990be6d57d98bc603d12171c9be36044ad1d06a63be0de
SHA512

6f70474cc174016d70b9f18479028c94ee8ff89c06090e31ed7f2973fa608c29c450d5d6f3e378f645be6c5750760cd48613d8c402eff2412d1634a59c3bb6c9
SSDEEP

196608:uOuWGrgu3ml+QZqECZ2GTxjfSFx1lrvWvoDRhFy44NGZL9z3Xl6dg:zuWGrg4hAqEu2ify1lrugDFyNNcLGdg

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

0b39a2fe0d43a5f68d6e4fc9aca8abdc_JaffaCakes118
.apk android arch:arm arch:x86 arch:mips

com.shanbay.news

com.shanbay.news.activity.SplashActivity

Activities

com.shanbay.news.activity.SplashActivity

android.intent.action.MAIN

com.shanbay.news.activity.HomeActivity

com.shanbay.backhome

com.shanbay.news.activity.NewsThirdPartLoginFinishedActivity

com.shanbay.thirdpart.login

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE

Receivers

com.shanbay.news.task.NewsBroadcastReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
com.shanbay.leancloud

Services
alipay_msp.apk
.apk android arch:arm arch:x86

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

android.intent.action.MAIN

com.alipay.android.app.pay.TransContainer

android.intent.action.MAIN

com.alipay.android.app.pay.HyperlinkActivity

android.intent.action.MAIN

com.alipay.android.app.pay.PageForBrowser

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.android.app.gphone.SHARE

Receivers

Services

com.alipay.android.app.MspService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

Android Permissions

0b39a2fe0d43a5f68d6e4fc9aca8abdc_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

Sharing

General

Malware Config

Signatures

Files

com.shanbay.news

com.shanbay.news.activity.SplashActivity

Activities

com.shanbay.news.activity.SplashActivity

com.shanbay.news.activity.HomeActivity

com.shanbay.news.activity.NewsThirdPartLoginFinishedActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.shanbay.news.task.NewsBroadcastReceiver

Services

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

com.alipay.android.app.pay.TransContainer

com.alipay.android.app.pay.HyperlinkActivity

com.alipay.android.app.pay.PageForBrowser

Permissions

Receivers

Services

com.alipay.android.app.MspService

Android Permissions

0b39a2fe0d43a5f68d6e4fc9aca8abdc_JaffaCakes118