54d94953d0f4648454ea9e50c7b5b84e_JaffaCakes118

General

Target

54d94953d0f4648454ea9e50c7b5b84e_JaffaCakes118
Size

655KB
MD5

54d94953d0f4648454ea9e50c7b5b84e
SHA1

3065f3cd8665d0858cb44a44153c6dfd93668106
SHA256

2fbf7020f1feb0395b3d955407045035e7aa4c0dfd4ec554f13e7d653d402b5b
SHA512

dc92ffadb2f68fb0a11ff116810b95979973cdbeefd514beebc32934867719ec121e33cd2f297514ca16a854cc2f7ba21a16fdd3e94d86baf25bf5d88cdd4473
SSDEEP

12288:Nhwj1Y+vOSKu9P3waSxXKU6pfagZO8Ex0jm/Kn3wWA5thBOs7G9nHctWjO:21vyZMfV8K0Kn3LYXBOjFI

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

54d94953d0f4648454ea9e50c7b5b84e_JaffaCakes118
.apk android

android.system

com.deal.core.MainActivity

Activities

com.deal.core.MainActivity

android.intent.action.MAIN

com.deal.core.InstallShortCutApp

com.deal.core.InstallShortCutApp

Permissions

android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_LOGS
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
com.android.launcher2.permission.INSTALL_SHORTCUT
com.android.launcher2.permission.UNINSTALL_SHORTCUT
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher3.permission.INSTALL_SHORTCUT
com.android.launcher3.permission.UNINSTALL_SHORTCUT
com.android.launcher3.permission.READ_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
android.permission.ACCESS_WIFI_STATE
android.permission.VIBRATE

Receivers

com.deal.core.BootComplentReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

com.deal.core.AppInstallReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED

com.deal.core.NotificationBroadcastReceiver

install_action

Services

com.deal.core.CoreService

com.easy.CoreService

Android Permissions

54d94953d0f4648454ea9e50c7b5b84e_JaffaCakes118

Permissions

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_LOGS

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

com.android.launcher2.permission.INSTALL_SHORTCUT

com.android.launcher2.permission.UNINSTALL_SHORTCUT

com.android.launcher2.permission.READ_SETTINGS

com.android.launcher3.permission.INSTALL_SHORTCUT

com.android.launcher3.permission.UNINSTALL_SHORTCUT

com.android.launcher3.permission.READ_SETTINGS

com.htc.launcher.permission.READ_SETTINGS

android.permission.ACCESS_WIFI_STATE

android.permission.VIBRATE

Sharing

General

Malware Config

Signatures

Files

android.system

com.deal.core.MainActivity

Activities

com.deal.core.MainActivity

com.deal.core.InstallShortCutApp

Permissions

Receivers

com.deal.core.BootComplentReceiver

com.deal.core.AppInstallReceiver

com.deal.core.NotificationBroadcastReceiver

Services

com.deal.core.CoreService

Android Permissions

54d94953d0f4648454ea9e50c7b5b84e_JaffaCakes118