76a8c3a66dae36facd5b9cd6b50606dda9fdd92c53294a38bc01fc83db32acb5

Analysis

max time kernel
123s
max time network
129s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
28-03-2024 09:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

01fa3b489174c8ad64c22b13f35c789b_JaffaCakes118.apk
Size

136KB
MD5

01fa3b489174c8ad64c22b13f35c789b
SHA1

2992555c853477b5aa71e2890a80a4f316e6502e
SHA256

76a8c3a66dae36facd5b9cd6b50606dda9fdd92c53294a38bc01fc83db32acb5
SHA512

ddcc3af8283f50fb650a6fa02ce133ba74db28bef05acd0ddc655879e0fe2452a6f74f86126f2bd9ba85353b7cec5ab85ed42eea8c8b2bfd7360c3ee3f216f64
SSDEEP

3072:vzo03wwknHIWBRbzXqu3aHo7wDN23DT3QbI0bx7ett963:LJ3wnn/1ZJ7wDQ3DzQbrbctO3

Score

7^/10

evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.example.androidr

com.example.androidr
1⤵
- Makes use of the framework's foreground persistence service
PID:4287

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.example.androidr/databases/rusucitaDb

Filesize
20KB

MD5
1eb17d20813dfb442f47a9e748bc5eda

SHA1
b985021add067a265db2390075a95d87b9394850

SHA256
313e25c7824bcda8c54ab02466767a4c4601388e42aaf0eb5dae7a4ae136f9f6

SHA512
38f98c4fe3843219fc7de2b55f0dcbfac2c21a62272ee7ae98ead49dbb823cf9bda37c37ed85afad9164606b847d439153aff843d500ec37e33a1d12b0b05e79

Download Submit
/data/data/com.example.androidr/databases/rusucitaDb-journal

Filesize
512B

MD5
de61de3d42fc70efd75dd6d93eca119b

SHA1
52952333a92939e06135ead01dfde1f0d79f0be0

SHA256
fadf8a48acaf5188e95a4e5025cc046f07edb40219a2d4ac1732e63e1b2e33c2

SHA512
002fa17428a7686b35c79ce795034e7ccc1eb1cf76b53fa30f22241247092022a4cba4b16add731ca778821ee613f1064b8fbb9991d536fbe8bc297cddb35cb5

Download Submit
/data/data/com.example.androidr/databases/rusucitaDb-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.example.androidr/databases/rusucitaDb-wal

Filesize
32KB

MD5
98640b185b14cf8bbf94dbcaa807c40c

SHA1
4a2d6f6a15515058d9fda4d7c0d1e7eb8a900d48

SHA256
56a7737f9847932d7d9c3ffb069462b30725249737d00dbca8c3391ffce24f27

SHA512
d278976b457c26b381a9fe23678b1d8b916bfece7dabc114d44af28c9cac0f83bf3541134a7d6af2eaf4f78801557e47a2865e23f539f1375cc192bb0b6243fa

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads