3d3d7d09fc5d0284fa2077573af2d397_JaffaCakes118

General

Target

3d3d7d09fc5d0284fa2077573af2d397_JaffaCakes118
Size

5.2MB
MD5

3d3d7d09fc5d0284fa2077573af2d397
SHA1

f715a182706487086667968bd42617546d30fc30
SHA256

ea6b501d2b363723f399bb97c13b9da97b40c992e1d95a2e5ef704ce8b8f8fba
SHA512

7e22ac079ee227174ba1d0d60262c5e05705eacec8794899f11a47b5be1bc383e4308bf48068326049563d09ed1f6a42cf327276cb3d2b337a7c542669a30cd4
SSDEEP

98304:PXKVnEQZJdcAgUTYiH6NgSzQj9jNgSzQjmpk2reFtGWQepbPvLDwbzQ:/6EKzTdSBzQjfBzQjOXrGHQQl

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

3d3d7d09fc5d0284fa2077573af2d397_JaffaCakes118
.apk android arch:arm arch:x86

com.putaotown

com.putaotown.WelcomeActivity

Activities

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.putaotown.WelcomeActivity

android.intent.action.MAIN

Permissions

android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
com.android.launcher.permission.READ_SETTINGS
android.permission.BROADCAST_STICKY
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_LOGS
android.permission.GET_TASKS
com.putaotown.permission.MIPUSH_RECEIVE
android.permission.VIBRATE

Receivers

com.putaotown.mipush.MyPushMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

Services

Android Permissions

3d3d7d09fc5d0284fa2077573af2d397_JaffaCakes118

Permissions

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

com.android.launcher.permission.READ_SETTINGS

android.permission.BROADCAST_STICKY

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_LOGS

android.permission.GET_TASKS

com.putaotown.permission.MIPUSH_RECEIVE

android.permission.VIBRATE

Sharing

General

Malware Config

Signatures

Files

com.putaotown

com.putaotown.WelcomeActivity

Activities

com.tencent.tauth.AuthActivity

com.putaotown.WelcomeActivity

Permissions

Receivers

com.putaotown.mipush.MyPushMessageReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

Services

Android Permissions

3d3d7d09fc5d0284fa2077573af2d397_JaffaCakes118