3b0d0ce4ab7caa894229663a97246022_JaffaCakes118

General

Target

3b0d0ce4ab7caa894229663a97246022_JaffaCakes118
Size

14.6MB
MD5

3b0d0ce4ab7caa894229663a97246022
SHA1

42f50d9beac44cceda42572a5de23584cc4b915b
SHA256

60fdc17e0200ea819b93723f1deb513832e0f52476e91b0036ab61f016a82e2f
SHA512

7eedda7efbe101979c3eba6333c0100d4acd360388136f7aebb6bd2abba5251de4d974dc446899be7d47d7d0de7bbac591330aba32186a49ecc5d739007c25f4
SSDEEP

393216:ipazQ4oL+Pz/Xi4hY+Kp2KgDVgGJ52ip4Ut7xNNv:ip8QxaSrp2Lb2E4C7xz

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

Files

3b0d0ce4ab7caa894229663a97246022_JaffaCakes118
.apk android arch:arm

com.duokan.reader

com.duokan.reader.DkReaderActivity

Activities

com.duokan.reader.DkReaderActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.duokan.reader.ui.general.ServerSettingActivity

android.intent.action.VIEW

com.duokan.reader.domain.dkbooks.QueryBookActivity

com.duokan.reader.actions.OPEN_BOOK

com.xiaomi.xmsf.account.ui.MiCloudSettingsActivity

miuipub.settings.XIAOMI_ACCOUNT_SYNC_SETTINGS

Permissions

com.duokan.reader.permission.MIPUSH_RECEIVE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REORDER_TASKS
com.xiaomi.xmsf.permission.PAYMENT
android.permission.CAMERA
android.permission.GET_TASKS
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.BLUETOOTH
android.permission.ACCESS_DOWNLOAD_MANAGER
com.xiaomi.vip.permission.SERVICE
android.permission.SEND_SMS
android.permission.CALL_PHONE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
com.xiaomi.permission.CLOUD_MANAGER
com.xiaomi.permission.MIPAY

Receivers

com.duokan.reader.domain.cloud.push.DkPushMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

Services

com.xiaomi.xmsf.account.MiCloudAuthenticatorService

miuipub.accounts.AccountAuthenticator

com.xiaomi.xmsf.account.UnActivatedAccountAuthenticatorService

miuipub.accounts.AccountAuthenticator

com.xiaomi.xmsf.account.ActivateService

miuipub.intent.action.XIAOMI_ACTIVATE_PHONE

com.duokan.reader.domain.cloud.push.DkPushService

com.xiaomi.xmsf.push.SCAN

com.xiaomi.payment.PaymentService

miuipub.intent.action.PAYMENT

Android Permissions

3b0d0ce4ab7caa894229663a97246022_JaffaCakes118

Permissions

com.duokan.reader.permission.MIPUSH_RECEIVE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REORDER_TASKS

com.xiaomi.xmsf.permission.PAYMENT

android.permission.CAMERA

android.permission.GET_TASKS

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.BLUETOOTH

android.permission.ACCESS_DOWNLOAD_MANAGER

com.xiaomi.vip.permission.SERVICE

android.permission.SEND_SMS

android.permission.CALL_PHONE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_SMS

com.xiaomi.permission.CLOUD_MANAGER

com.xiaomi.permission.MIPAY

Sharing

General

Malware Config

Signatures

Files

com.duokan.reader

com.duokan.reader.DkReaderActivity

Activities

com.duokan.reader.DkReaderActivity

com.duokan.reader.ui.general.ServerSettingActivity

com.duokan.reader.domain.dkbooks.QueryBookActivity

com.xiaomi.xmsf.account.ui.MiCloudSettingsActivity

Permissions

Receivers

com.duokan.reader.domain.cloud.push.DkPushMessageReceiver

com.xiaomi.push.service.receivers.PingReceiver

Services

com.xiaomi.xmsf.account.MiCloudAuthenticatorService

com.xiaomi.xmsf.account.UnActivatedAccountAuthenticatorService

com.xiaomi.xmsf.account.ActivateService

com.duokan.reader.domain.cloud.push.DkPushService

com.xiaomi.payment.PaymentService

Android Permissions

3b0d0ce4ab7caa894229663a97246022_JaffaCakes118