0c4674fb0d0fa60ef046532cabde201e_JaffaCakes118

General

Target

0c4674fb0d0fa60ef046532cabde201e_JaffaCakes118
Size

11.2MB
MD5

0c4674fb0d0fa60ef046532cabde201e
SHA1

740c16834e002f40abbdd2eaf8353acf494881f5
SHA256

d9042fb769c64335d4c61956ce28797389d37e2380686a622309dd155f9ebe3d
SHA512

d6670fb56d6c7f5959c4d4b51cd8e143d63b39d40e595308c5f5f2c18b1cc51b8d31e5a19969863d029e3e3ea39896ff3d6c55a0c0232e77537071f347604b05
SSDEEP

196608:d7+KJTDhxiLtEYNDzNC0J+FvUUmgbJcRm4/3KkWMn76NhuOaPMRPJJrq24LmlCe:lRxi5EYphC0Je8yZ4/P2hupw748j

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

0c4674fb0d0fa60ef046532cabde201e_JaffaCakes118
.apk android arch:arm arch:x86

com.sxiaoao.farmTD3

.LogActivity

Activities

.LogActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.SEND_SMS
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.VIBRATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.GET_TASKS
android.permission.DISABLE_KEYGUARD

Receivers

com.sxiaoao.farmTD3.BootReceiver

android.intent.action.BOOT_COMPLETED

Services

com.xiaoao.sdk.Xservice

com.xiaoao.sdk.XserviceStartd711bdc3bb

com.xiaoao.sdk.download.DownloadService

com.xiaoao.sdk.download.DownloadServiced711bdc3bb
alipay_v3.5.2.0425.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.notify.permission.PUSHSERVICE
com.alipay.android.permission.BOOT_COMPLETED

Receivers

com.alipay.notify.BroadcastActionReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

com.alipay.notify.push.NotificationService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

com.alipay.notify.poll.config.ConfigService

Android Permissions

0c4674fb0d0fa60ef046532cabde201e_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.SEND_SMS

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.VIBRATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_SETTINGS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.GET_TASKS

android.permission.DISABLE_KEYGUARD

Sharing

General

Malware Config

Signatures

Files

com.sxiaoao.farmTD3

.LogActivity

Activities

.LogActivity

Permissions

Receivers

com.sxiaoao.farmTD3.BootReceiver

Services

com.xiaoao.sdk.Xservice

com.xiaoao.sdk.download.DownloadService

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

com.alipay.notify.BroadcastActionReceiver

Services

.AlixService

com.alipay.notify.push.NotificationService

com.alipay.notify.poll.config.ConfigService

Android Permissions

0c4674fb0d0fa60ef046532cabde201e_JaffaCakes118