0d0512e31a03679ce304d014f1e87b35_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0d0512e31a03679ce304d014f1e87b35_JaffaCakes118
Size

5.4MB
MD5

0d0512e31a03679ce304d014f1e87b35
SHA1

543b273e4b546ff049952f51815100e075749c3f
SHA256

6ca5874460941935864c265830f795c98e2a33a42dbd08009ebc6bc267c80663
SHA512

9c80a3b192e216b4cf59aa29a06cdec91e51fdd7be435b03b71d168e35c87262ade54c6c028a6e053fdb0247c0b4b5f8d14788bc01fc43cece6933656e49c994
SSDEEP

98304:ORUDTR3KtSlo3ANfqbLDBgFJ1GIgBnRDXkDvOh02vQEcQAgCbpiOFS997KaMhtOY:MU88lv4BgNd6D0DvOGuQEcRbpiF9Zoh7

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 13 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write and read the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

0d0512e31a03679ce304d014f1e87b35_JaffaCakes118
.apk android arch:arm

com.gzyr.tianjiangmengchong.game

com.uking.petrunaway.poppet

Activities

com.uking.petrunaway.poppet

android.intent.action.MAIN

com.door.pay.sdk.DnPayActivity

com.gzyr.tianjiangmengchong.game.com.door.pay.sdk.DnPayActivity

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SEND_SMS
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_COARSE_LOCATION
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RECEIVE_SMS
android.permission.GET_TASKS
android.permission.WRITE_SMS
android.permission.READ_SMS
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_LOGS
android.permission.WRITE_CALL_LOG
android.permission.VIBRATE
android.permission.WAKE_LOCK
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.READ_EXTERNAL_STORAGE
android.permission.CHANGE_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.READ_PHONE_STATE

Receivers

com.door.pay.sdk.sms.SmsReceiver

android.provider.Telephony.SMS_RECEIVED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BATTERY_CHANGED
android.intent.action.SIM_STATE_CHANGED
android.intent.action.NOTIFICATION_ADD
android.intent.action.SERVICE_STATE
android.intent.action.NOTIFICATION_REMOVE
android.intent.action.NOTIFICATION_UPDATE
android.bluetooth.adapter.action.STATE_CHANGED
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.ANY_DATA_STATE
android.net.wifi.STATE_CHANGE
android.intent.action.BOOT_COMPLETED
android.intent.action.SCREEN_ON
android.intent.action.USER_PRESENT

com.tg52.os.ServiceReceiver

android.provider.Telephony.SMS_RECEIVED

com.tppay.sdk.manager.TPBroadcastReceiver

android.provider.Telephony.SMS_RECEIVED

com.ehoo.sms.receiver.BootReceiver

android.net.wifi.WIFI_STATE_CHANGED
android.net.wifi.STATE_CHANGE
android.intent.action.SIM_STATE_CHANGED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.ANY_DATA_STATE
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.USER_PRESENT
android.intent.action.PHONE_STATE
android.intent.action.DATE_CHANGED
android.intent.action.TIMEZONE_CHANGED
android.intent.action.MAIN
com.ehoo.action.SEND

Services

com.door.pay.sdk.sms.SmsService

com.door.pay.sdk.app.action
Plugin2.apk
.apk android

com.door.pay.sdk

com.door.pay.sdk.impl.MainActivity

Activities

com.door.pay.sdk.impl.MainActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.WRITE_SMS
android.permission.SEND_SMS
android.permission.WRITE_APN_SETTINGS
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_COARSE_LOCATION
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CALL_PHONE

Receivers

com.door.pay.sdk.sms.impl.testReceiver

android.provider.Telephony.SMS_RECEIVED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BATTERY_CHANGED
android.intent.action.SIM_STATE_CHANGED
android.intent.action.NOTIFICATION_ADD
android.intent.action.SERVICE_STATE
android.intent.action.NOTIFICATION_REMOVE
android.intent.action.NOTIFICATION_UPDATE
android.bluetooth.adapter.action.STATE_CHANGED
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.ANY_DATA_STATE
android.net.wifi.STATE_CHANGE
android.intent.action.BOOT_COMPLETED
android.intent.action.SCREEN_ON
android.intent.action.USER_PRESENT
TPPaySMSCore.ml
.apk android

com.tppay.sdk.sms

com.tppay.sdk.sms.PayActivity

Activities

Permissions

android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.GET_TASKS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.WRITE_APN_SETTINGS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
unicom_resource.dat
.apk android

com.xiaowo.resourcepro

Android Permissions

0d0512e31a03679ce304d014f1e87b35_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.CALL_PHONE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.SEND_SMS

android.permission.DISABLE_KEYGUARD

android.permission.ACCESS_COARSE_LOCATION

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.RECEIVE_SMS

android.permission.GET_TASKS

android.permission.WRITE_SMS

android.permission.READ_SMS

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_LOGS

android.permission.WRITE_CALL_LOG

android.permission.VIBRATE

android.permission.WAKE_LOCK

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.READ_EXTERNAL_STORAGE

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

Sharing

General

Malware Config

Signatures

Files

com.gzyr.tianjiangmengchong.game

com.uking.petrunaway.poppet

Activities

com.uking.petrunaway.poppet

com.door.pay.sdk.DnPayActivity

Permissions

Receivers

com.door.pay.sdk.sms.SmsReceiver

com.tg52.os.ServiceReceiver

com.tppay.sdk.manager.TPBroadcastReceiver

com.ehoo.sms.receiver.BootReceiver

Services

com.door.pay.sdk.sms.SmsService

com.door.pay.sdk

com.door.pay.sdk.impl.MainActivity

Activities

com.door.pay.sdk.impl.MainActivity

Permissions

Receivers

com.door.pay.sdk.sms.impl.testReceiver

com.tppay.sdk.sms

com.tppay.sdk.sms.PayActivity

Activities

Permissions

com.xiaowo.resourcepro

Android Permissions

0d0512e31a03679ce304d014f1e87b35_JaffaCakes118