269a7587997cf8c8e729ee5012a66f74_JaffaCakes118

General

Target

269a7587997cf8c8e729ee5012a66f74_JaffaCakes118
Size

14.4MB
MD5

269a7587997cf8c8e729ee5012a66f74
SHA1

524cdbdffaa0f23ae217fb54fa089136c7639c1e
SHA256

20c6874da86c62d3a045f84f806975a1b07ee6a33005d800257f7eb9dce0a80e
SHA512

0d693d787530c253cedaeae9baaf2543db26b27c1dc80cff58d45ccde3302ff46bf5e4efa93c641129cd82d3d677169ad2ec7cc6d93a14724e3eb3029727cbfd
SSDEEP

196608:2jaxcBASIjGGuZ54CqG2UQjRjSYO3Utmp1Y10xzJYW97QoA8sKDkyW943rw07:wbASIGGukCq4QjR+7PK2zJYR8rLWowo

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

269a7587997cf8c8e729ee5012a66f74_JaffaCakes118
.apk android arch:arm

com.tencent.mm

.ui.LauncherUI

Activities

.ui.LauncherUI

android.intent.action.MAIN

.ui.qrcode.GetQRCodeInfoUI

android.intent.action.VIEW
android.intent.action.VIEW

.ui.tools.ShareImgUI

android.intent.action.SEND

.plugin.voip.ui.VideoActivity

android.intent.action.MM_VOIP_Video_PAGE

Permissions

com.tencent.mm.oauth.permission.SEND
com.tencent.mm.plugin.permission.SEND
com.tencent.mm.permission.MM_MESSAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CAMERA
android.permission.GET_TASKS
android.permission.INSTALL_PACKAGES
android.permission.INTERNET
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.READ_SMS
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_CONTACTS
android.permission.WRITE_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
com.tencent.mm.location.permission.SEND_VIEW
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.BROADCAST_STICKY

Receivers

.booter.MountReceiver

android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_EJECT
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_SHARED
android.intent.action.MEDIA_SCANNER_STARTED
android.intent.action.MEDIA_SCANNER_FINISHED
android.intent.action.MEDIA_REMOVED
android.intent.action.MEDIA_BAD_REMOVA

.platformtools.SensorController

android.intent.action.ACTION_HEADSET_PLUG

.ui.skin.SkinManager

android.intent.action.PACKAGE_REMOVED

.booter.BluetoothReceiver

android.media.SCO_AUDIO_STATE_CHANGED
android.media.ACTION_SCO_AUDIO_STATE_UPDATED
android.bluetooth.device.action.ACL_CONNECTED
android.bluetooth.device.action.ACL_DISCONNECTED

.booter.MMReceivers$BootReceiver

android.intent.action.BOOT_COMPLETED

.booter.MMReceivers$ConnectionReceiver

android.net.conn.CONNECTIVITY_CHANGE

.modelvoice.RemoteController$RemoteControlReceiver

android.intent.action.MEDIA_BUTTON

.modelstat.WatchDogPushReceiver

com.tencent.mm.WatchDogPushReceiver

.plugin.base.stub.WXEntryActivity$EntryReceiver

com.tencent.mm.plugin.openapi.Intent.ACTION_HANDLE_APP_REGISTER
com.tencent.mm.plugin.openapi.Intent.ACTION_HANDLE_APP_UNREGISTER

Services

.booter.CoreService

com.tencent.mm.booter.CoreService

Android Permissions

269a7587997cf8c8e729ee5012a66f74_JaffaCakes118

Permissions

com.tencent.mm.oauth.permission.SEND

com.tencent.mm.plugin.permission.SEND

com.tencent.mm.permission.MM_MESSAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CAMERA

android.permission.GET_TASKS

android.permission.INSTALL_PACKAGES

android.permission.INTERNET

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECORD_AUDIO

android.permission.READ_CONTACTS

android.permission.READ_SMS

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_CONTACTS

android.permission.WRITE_SETTINGS

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

com.tencent.mm.location.permission.SEND_VIEW

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.BROADCAST_STICKY

Sharing

General

Malware Config

Signatures

Files

com.tencent.mm

.ui.LauncherUI

Activities

.ui.LauncherUI

.ui.qrcode.GetQRCodeInfoUI

.ui.tools.ShareImgUI

.plugin.voip.ui.VideoActivity

Permissions

Receivers

.booter.MountReceiver

.platformtools.SensorController

.ui.skin.SkinManager

.booter.BluetoothReceiver

.booter.MMReceivers$BootReceiver

.booter.MMReceivers$ConnectionReceiver

.modelvoice.RemoteController$RemoteControlReceiver

.modelstat.WatchDogPushReceiver

.plugin.base.stub.WXEntryActivity$EntryReceiver

Services

.booter.CoreService

Android Permissions

269a7587997cf8c8e729ee5012a66f74_JaffaCakes118