38ddd8d601a05c76ad511a21e619c51c_JaffaCakes118

General

Target

38ddd8d601a05c76ad511a21e619c51c_JaffaCakes118
Size

5.2MB
MD5

38ddd8d601a05c76ad511a21e619c51c
SHA1

ffe16c917c8ff58de5ab93514aa53e5480f1676a
SHA256

8996355ea24bf74d9ecd3031b7ff829e5291e446f871416a438e689eca33cfe8
SHA512

a7e56bc87e4715f0dc63a3c3b1b685d08cf6e0a65ddb33a13d14307d8eb40f0a750ac276dfb9954a58b68313a6bc99e589633cb218f9c092742275907f0ac087
SSDEEP

98304:DPZa88qw7+nYTS71eGQ0x2BI7De/AllcVtFVqgzzo4xxSL3c515IPUdAN2+a9O:DPZOC1JQ0x267DeXqgzM6ac57kb

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

38ddd8d601a05c76ad511a21e619c51c_JaffaCakes118
.apk android arch:arm

com.zhiqupk.root

.NewSplashActivity

Activities

.NewSplashActivity

android.intent.action.MAIN

com.opda.actionpoint.MainDialogActivity

android.intent.action.VIEW

com.opda.actionpoint.MainDialogActivity2

android.intent.action.VIEW

com.opda.actionpoint.activity.PreAppUninstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.PreAppInstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.GameSaveActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.GameSaveDetailActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.AdKillerActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.BootStartAppManager

android.intent.action.VIEW

com.opda.actionpoint.activity.AppInstallActivity

android.intent.action.VIEW

com.opda.actionpoint.activity.AppUninstallActivity

android.intent.action.VIEW

com.surplusclear.SurplusMainActivity

android.intent.action.MAIN

com.umeng.update.UmengHtmlwebActivity

android.intent.action.VIEW

Permissions

android.permission.CAMERA
android.permission.ACCESS_MTK_MMHW
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.GET_TASKS
android.permission.RESTART_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.WRITE_SETTINGS
android.permission.GET_PACKAGE_SIZE
android.permission.CLEAR_APP_CACHE
android.permission.FLASHLIGHT
android.permission.READ_LOGS
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.RECEIVE_USER_PRESENT
android.permission.BROADCAST_STICKY
android.permission.DISABLE_KEYGUARD
android.permission.INTERACT_ACROSS_USERS_FULL

Receivers

.InstallAppReceiver

android.intent.action.PACKAGE_ADDED

com.zhiqupk.root.receiver.AppListenerReceiver

android.intent.action.PACKAGE_ADDED

com.surplusclear.SurplusAppListenerReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED

com.zhiqupk.root.VorboseEventReceiver

com.zhiqupk.root_vorbose.event

com.umeng.update.UmengInstallReceiver

android.intent.action.PACKAGE_ADDED

com.umeng.update.UmengNetBroadCast

android.net.conn.CONNECTIVITY_CHANGE

com.umeng.update.UmengUpdateReceiver

android.intent.action.USER_PRESENT

neo.proxy.DistributeReceiver

android.intent.action.ACTION_POWER_CONNECTED
com.secneo.plugin.action.HOURLY
com.secneo.plugin.action.DAILY
com.secneo.plugin.action.APP_STARTED
android.net.conn.CONNECTIVITY_CHANGE
com.secneo.proxy.action.CUSTOM

Services

com.opda.actionpoint.service.GameModifierService

com.opda.gamemodifier

com.opda.actionpoint.service.SpeedTimeService

com.opda.speedtime

Android Permissions

38ddd8d601a05c76ad511a21e619c51c_JaffaCakes118

Permissions

android.permission.CAMERA

android.permission.ACCESS_MTK_MMHW

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.GET_TASKS

android.permission.RESTART_PACKAGES

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.WRITE_SETTINGS

android.permission.GET_PACKAGE_SIZE

android.permission.CLEAR_APP_CACHE

android.permission.FLASHLIGHT

android.permission.READ_LOGS

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.RECEIVE_USER_PRESENT

android.permission.BROADCAST_STICKY

android.permission.DISABLE_KEYGUARD

android.permission.INTERACT_ACROSS_USERS_FULL

Sharing

General

Malware Config

Signatures

Files

com.zhiqupk.root

.NewSplashActivity

Activities

.NewSplashActivity

com.opda.actionpoint.MainDialogActivity

com.opda.actionpoint.MainDialogActivity2

com.opda.actionpoint.activity.PreAppUninstallActivity

com.opda.actionpoint.activity.PreAppInstallActivity

com.opda.actionpoint.activity.GameSaveActivity

com.opda.actionpoint.activity.GameSaveDetailActivity

com.opda.actionpoint.activity.AdKillerActivity

com.opda.actionpoint.activity.BootStartAppManager

com.opda.actionpoint.activity.AppInstallActivity

com.opda.actionpoint.activity.AppUninstallActivity

com.surplusclear.SurplusMainActivity

com.umeng.update.UmengHtmlwebActivity

Permissions

Receivers

.InstallAppReceiver

com.zhiqupk.root.receiver.AppListenerReceiver

com.surplusclear.SurplusAppListenerReceiver

com.zhiqupk.root.VorboseEventReceiver

com.umeng.update.UmengInstallReceiver

com.umeng.update.UmengNetBroadCast

com.umeng.update.UmengUpdateReceiver

neo.proxy.DistributeReceiver

Services

com.opda.actionpoint.service.GameModifierService

com.opda.actionpoint.service.SpeedTimeService

Android Permissions

38ddd8d601a05c76ad511a21e619c51c_JaffaCakes118