e2a456de0dc5fef82b65f77207be53eb76c4c1cf2c1a272b3e9ac007eae453a7 | Triage

Sharing

General

Target

c23a497ccaa7c54b8b931b7378267199_JaffaCakes118
Size

13.1MB
Sample

240404-zf7keaae68
MD5

c23a497ccaa7c54b8b931b7378267199
SHA1

742d3f33952523a9df17101d5672e88600c443e1
SHA256

e2a456de0dc5fef82b65f77207be53eb76c4c1cf2c1a272b3e9ac007eae453a7
SHA512

e553438fc1cb7de63d5437e5d831b98aebf45863aa1d6785b7136bbf1334bb8debe910cf2d26711360422cb8d9206796fe6461a65e3ec714e125f79ea958dc58
SSDEEP

196608:RNrqHmP0J2YVFjmaRswuT9fvHK+HdpF2+kQQ+bwOcrjluw12BCH9mDLDZEDOkmQv:rqg0Jcp93I/QqOcriBrPaL1j

Score

7^/10

android discovery evasion

Malware Config

Targets

- Target
  
  c23a497ccaa7c54b8b931b7378267199_JaffaCakes118
- Size
  
  13.1MB
- MD5
  
  c23a497ccaa7c54b8b931b7378267199
- SHA1
  
  742d3f33952523a9df17101d5672e88600c443e1
- SHA256
  
  e2a456de0dc5fef82b65f77207be53eb76c4c1cf2c1a272b3e9ac007eae453a7
- SHA512
  
  e553438fc1cb7de63d5437e5d831b98aebf45863aa1d6785b7136bbf1334bb8debe910cf2d26711360422cb8d9206796fe6461a65e3ec714e125f79ea958dc58
- SSDEEP
  
  196608:RNrqHmP0J2YVFjmaRswuT9fvHK+HdpF2+kQQ+bwOcrjluw12BCH9mDLDZEDOkmQv:rqg0Jcp93I/QqOcriBrPaL1j
Score

7^/10

discovery evasion
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Queries information about running processes on the device.
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Acquires the wake lock
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Process Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2