General

  • Target

    52f2f89bbb0e21deba46196e5fa0dbe1_JaffaCakes118

  • Size

    5.1MB

  • MD5

    52f2f89bbb0e21deba46196e5fa0dbe1

  • SHA1

    ed1ffc91b5f0ace16909fdf5e2e4283328758922

  • SHA256

    e9fca967da7de00ae2020859ecd1a958fed3597a780443375c1405c5ef56bcce

  • SHA512

    853ff8076b8083f596221860318063ca266092657103f0b8ecdd949d78ce911896406ce10b48f0eae478e22bb78b9b6158da6fd63f930c6b222c6590ea2f718a

  • SSDEEP

    98304:LS2EbF7lCGhzbqKQC6lKjaxOM+GbxJfpQY5hMgUKg8PiHqGVCPmwPhw1F:LS28l9vq9C6lmQOM+sfV5hzgLKGQewPu

Score
6/10

Malware Config

Signatures

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 5 IoCs

Files

  • 52f2f89bbb0e21deba46196e5fa0dbe1_JaffaCakes118
    .apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

    skydownloaderv7.facebooklite.stt31.ua83247992v6

    com.vnfa.facebook.MainActivity


  • com.mobile.indiapp.tmp
    .apk android arch:arm

    com.mobile.indiapp

    com.mobile.indiapp.activity.WelcomePageActivity


Android Permissions

52f2f89bbb0e21deba46196e5fa0dbe1_JaffaCakes118

Permissions

android.permission.INTERNET

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.SYSTEM_ALERT_WINDOW

com.android.launcher.permission.INSTALL_SHORTCUT

com.google.android.c2dm.permission.RECEIVE

android.permission.READ_PHONE_STATE

android.permission.PROCESS_OUTGOING_CALLS

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.GET_TASKS

android.permission.READ_EXTERNAL_STORAGE