76a8c3a66dae36facd5b9cd6b50606dda9fdd92c53294a38bc01fc83db32acb5

Analysis

max time kernel
123s
max time network
136s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
28/03/2024, 09:14

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

01fa3b489174c8ad64c22b13f35c789b_JaffaCakes118.apk
Size

136KB
MD5

01fa3b489174c8ad64c22b13f35c789b
SHA1

2992555c853477b5aa71e2890a80a4f316e6502e
SHA256

76a8c3a66dae36facd5b9cd6b50606dda9fdd92c53294a38bc01fc83db32acb5
SHA512

ddcc3af8283f50fb650a6fa02ce133ba74db28bef05acd0ddc655879e0fe2452a6f74f86126f2bd9ba85353b7cec5ab85ed42eea8c8b2bfd7360c3ee3f216f64
SSDEEP

3072:vzo03wwknHIWBRbzXqu3aHo7wDN23DT3QbI0bx7ett963:LJ3wnn/1ZJ7wDQ3DzQbrbctO3

Score

7^/10

evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.example.androidr

com.example.androidr
1⤵
- Makes use of the framework's foreground persistence service
PID:5118

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.example.androidr/databases/rusucitaDb

Filesize
20KB

MD5
0b32f47e660e9ebba5a332cab23b7bdc

SHA1
58a7e2c757ada13a0df0546de45015887d1ae085

SHA256
f0e9a5efebe44cfde10504321d309e4dc3099527df2c41360d9f33abf48dd77f

SHA512
85e07d8e701cfcac811c575eccf47848c364937c36198e4988c2c7ee396948b883a15908f86e6d95197fbf4268d9fec67aaa09237a7bc23b6e9dd60f30077475

Download Submit
/data/data/com.example.androidr/databases/rusucitaDb-journal

Filesize
512B

MD5
a41295ec4d175a7646405de161fe20d4

SHA1
74dd3f4d953d8b0f8c6e59d23e8c6ffff9a9a211

SHA256
cc6147bce7652e50ad6be67156d46873369ac5e98aeefb0b58dd9310b18c0988

SHA512
ff3a5eac2fa66a33f56ff97ab303ff04b33505269edf085d51ffef135fb661c2c0c604dcde67cd72c0205baf5284ce2e9076d5c846820e2934d55a66a44e3734

Download Submit
/data/data/com.example.androidr/databases/rusucitaDb-journal

Filesize
8KB

MD5
efd8e553542018fcfb3d22116a5fbb10

SHA1
9410f75c4011506b9fa2692212b56254bfe77bef

SHA256
fd20c2f2e6d864e550c952a4411dda0c48061e3dde335af63ff3920b55c4fb57

SHA512
f7199e39de5c963e7a21b650f63d2d88bf92a45e0490f6764f9a8915b56204387b8eef21c401cffea41d9e11f252e6b8590d0d7d5bb7ccd3014c47aaf9139a70

Download Submit
/data/data/com.example.androidr/databases/rusucitaDb-journal

Filesize
8KB

MD5
861a5626ce416c5abe638ff497cbe5b5

SHA1
b06289c13ac800ea4c842c0535008b4157272ce4

SHA256
ce45d314e0c7d713290a8c089858ad01f0c6f40e7a190e99b99e74b6f412d309

SHA512
f6106646aab59f632d35d5d629bb45ae1988762b00a156a537864ba86879f0c3d17c7f40c02f5b2bd6e7ace325308ca1d7dd508f5b492e177995b5afedad6f15

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads