f09c8ec97b11fd680f0e613ee7e80ff62277d15bdac386b4b5579f4174138826

Analysis

max time kernel
9s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
05/04/2024, 01:15

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c6d32a08a27ce448114bfc96fcdf832c_JaffaCakes118.apk
Size

6.2MB
MD5

c6d32a08a27ce448114bfc96fcdf832c
SHA1

557ea327f350dcaa964febe2ecac5462b12ce5c2
SHA256

f09c8ec97b11fd680f0e613ee7e80ff62277d15bdac386b4b5579f4174138826
SHA512

cb138e164391edae7dbc98902a811c123a3c572e37cee9c240237e900331b0d9f58cce17c2d93ea39aa4f2fc5c60ad3697c1db88f31a5868b221404ddd8e4ae8
SSDEEP

196608:6+fxbvsb2zYgZLV9lMTrY0Zo1CDFmh1J0Y51:6+fxTsSVZLhMI+mP31

Score

8^/10

collection discovery evasion

Malware Config

Signatures

Requests cell location 1 TTPs 1 IoCs

Uses Android APIs to to get current cell location.

collection discovery

Location Tracking

T1430

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.vst.wifianalyze

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.vst.wifianalyze

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.vst.wifianalyze

com.vst.wifianalyze
1⤵
- Requests cell location
- Checks memory information
- Uses Crypto APIs (Might try to encrypt user data)
PID:4262

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Location Tracking

T1430

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Location Tracking

T1430

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/WifiAnalyze/crash/2024-04-05-01-15-37crash.log

Filesize
7KB

MD5
1206c8e85b54f4b133c42666e727ec9b

SHA1
5b4af0f0cefd69056ac8f390720ee274d5b1e524

SHA256
96b8b88d76684c0b205989fddd59fd19b0591b8a22b8bf33effa6805b712c312

SHA512
a2f561d013d88134896f75c4aff91ea3e78e512b8eb06f5e11f51061dc37c70a59c400c938af20b240f0b8c419aed4e28876980ce8912c4607ec83e0515398ae

Download Submit
/storage/emulated/0/WifiAnalyze/log/2024-04-05Log.txt

Filesize
78B

MD5
8191029c40d57818f441e13644222eb7

SHA1
f652526192ba4117d7727159744b7edc071200d4

SHA256
72963280caa04b9348c46fcfb047171c400a7a146bccd2c7871f0100dd61ae4f

SHA512
6abbb385912330aa67fd191ce943a8d976ddc00c0bb52ae3ce970a94365a9286a0e8d9db76d39836c74873dd4122fb6bc62e54d4fd76b61bce4099c4e290151c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads