03308e5d5640a075c15274da4b0c7f911acf2560271ce45a1a6c0ce6f34515f9

Analysis

max time kernel
123s
max time network
144s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
28/03/2024, 16:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0ab62dc4766c3aef45c62362477716a2_JaffaCakes118.apk
Size

490KB
MD5

0ab62dc4766c3aef45c62362477716a2
SHA1

cfafd5a7f5592005066193e2a39db737e5e172d6
SHA256

03308e5d5640a075c15274da4b0c7f911acf2560271ce45a1a6c0ce6f34515f9
SHA512

92099b63e9626616611495525a29f3972eb3bf226c91c4811b61a711adc271a061975644b3c294d073fa49c71d6a750690fb3132f1859160a6c465458bb7747c
SSDEEP

12288:JumMj9msSoi9VRUDCLIVCglDRX/LLq42VKYG2:JtItSoWRLUTp2PG2

Score

6^/10

discovery

Malware Config

Signatures

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.txw.android.activity

com.txw.android.activity
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4238

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.txw.android.activity/databases/txw.db

Filesize
32KB

MD5
d888e83074edf0c82ce7587544a6852d

SHA1
90c504b43e5eb700c98b158cb80523972dfbbf7d

SHA256
22282e73277cdaac2d21fce966ff9d38d6808729ab28ae8bfe9310cb0f413ac9

SHA512
7be5527985554686fe562a29fc4363609477de9f8d3480a150e95d160c84d393c1e5da8e01c8b422d639a7ce4cc9d1e63ab2bf5a1c9a90861ff9c2f6a3797c9d

Download Submit
/data/data/com.txw.android.activity/databases/txw.db-journal

Filesize
512B

MD5
d2a5813af172eec5f93103b4481aacc8

SHA1
ede05db88862a94dfa1d903da4c5e4f9455c1a77

SHA256
07c86490533f3d9a8426d1dd308583c61df0d0680a73d2e7aed2a4e4b51cad92

SHA512
9a73d96cc44c777802e817def83bc5e97205b9e26d7b3bcce7bbee798d7fe120f806fd569c13e240b07cd657826208b40675da8bb053ade7ae60615b3ecfeb29

Download Submit
/data/data/com.txw.android.activity/databases/txw.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.txw.android.activity/databases/txw.db-wal

Filesize
44KB

MD5
f8779ff0b4fb54bee3cd30cb9db906da

SHA1
a05bb9aeb7a2d72aba767b858925137626dd6872

SHA256
65d084fc65e1a4e3c6f1d8e4bfad574e26f6e44b9dd79dad7fe91b9069259b50

SHA512
a94bec6fd1e3e2bc88a4f091b3094114973d371c0bc70242a6d6e949852c349de8707cb653b97ca4d356cf1eb07cce0c881bbcfd32f1288ddcabad737e96eceb

Download Submit
/data/data/com.txw.android.activity/files/CNZZEvents_1711643949478

Filesize
86B

MD5
b527ac80cef9850b479d1ffccf8abf59

SHA1
c8cbbc33a70a6c4e45754bbbc4a05fa3a021ece8

SHA256
88b56d94701ad197ceab1c676fb6522f252847c678797d2f3f23fefa4825b71e

SHA512
326f09af9c4fae062f0b08c09c4e6cabd0adc1c2458006276536c3e7b0211dfecea719e8cfb2ffad48d87fbf859d10e8e9cbcc7570fcc3d64d079ec5bc28fe74

Download Submit
/data/data/com.txw.android.activity/files/CNZZEvents_1711643949478

Filesize
141B

MD5
7dad1021856c1927b20ea1061d714d2c

SHA1
238c3bfed79c2d2cdbfb5e795a83e6c3bab0095d

SHA256
a75e6b9eb8605a48a1895368a4e6897d60889e8d56c6e724597413394e757350

SHA512
3382e6a8ad588cd50e4c3ec3c4eaf9603562467efb1d2816f443eec87db8481ae5a18925b2822606572ba504600f994c2043b859be8907f59b04a282e45b2db7

Download Submit
/data/data/com.txw.android.activity/files/CNZZEvents_1711643949478

Filesize
183B

MD5
9fb4a4b7b41dcb850765c927c1f68605

SHA1
ecd58973ade562306faabe499d69f9dd655d4232

SHA256
c0b1eb0d0825774034429f001d6d758eb802174fa0eba2b1d9ed437a0bcb9767

SHA512
bf7cb8d8856414440caf720b791808580c80a950bf403057af1217042dbbc1d92701b4bb4f354d8cb4b902504d2bbd830e136884ea541c313776ffde487d2894

Download Submit
/data/data/com.txw.android.activity/files/CNZZEvents_1711643949478

Filesize
223B

MD5
eade47bd9e66bf7f3d072e0caa3621d4

SHA1
1c76674ad46ecddc1add5ed0c535995d53679a0c

SHA256
1e65dd6bedcce9ec07330793fc7f14e925aecc1008720bc2d5da6c4ccb7b3603

SHA512
e8bd79cfdf6f5fc2080e0174e7a8197647e0e7a0b4bca9006c9d2bfda9da857c86d4bfb99d6888f044dedffb431b76bf27e524a37d2e2e219f499720f3ca4eb6

Download Submit
/data/data/com.txw.android.activity/files/CNZZEvents_1711643949478

Filesize
287B

MD5
b2cdc58aa2884d842339e4db57ed6175

SHA1
737fd75ebc3d9c3ef323a403da081a7f39d755ea

SHA256
42b23bca61a7e4b781a93db88177707e2bf995e3a0e7846d5363328bfce5a612

SHA512
0f0672b4f4596973650773d2ac11ad255663fea88036529bf48685edb8c2103c58f72ed32e52712aa2bf3f7e198819b8e4ee166300aecfa80dd4876585cd6639

Download Submit