45325e5b49dbf0d759d9ed84c3256b733fd3f355534da668f8717bfde36dc2ab

Analysis

max time kernel
148s
max time network
162s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
10/04/2024, 22:08

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

ec18be2633b4eb1bf3b44fd05ae836cf_JaffaCakes118.apk
Size

20.2MB
MD5

ec18be2633b4eb1bf3b44fd05ae836cf
SHA1

010baf91895b2fabc0f12b2d646fbe195b2903d3
SHA256

45325e5b49dbf0d759d9ed84c3256b733fd3f355534da668f8717bfde36dc2ab
SHA512

e0e4e066de97e90a6c4abe513dc9ebdf78cacd5d7fe949231542005bbb66861236cdc990e80d13044fb07d5360f01a6b63dc55720ffff8f86a123965e0bf88a9
SSDEEP

393216:wofnsxFd4WaEKACSfY0g6vdYqpBqIsZzV2PLhpOymrnuw8bYq8:woUxD4WaEKxrQjpTK0Jwn8bYq8

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.alioth.imdevil_cn_A

Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.alioth.imdevil_cn_A
1⤵
- Checks CPU information
PID:5107

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.alioth.imdevil_cn_A/files/IAD_0_0

Filesize
40B

MD5
ee878c10ecc019aaa9580e55eca65077

SHA1
6935af82af645207f328b2df1dd1bc40c5f3b6c8

SHA256
cbba4b1bb80a48dd0991e87726784886e730334abd64826e017b1519c8aad953

SHA512
bcc84b47d69f1b5735917ef515c2045fa39e124cb84cfb07d35ac2271ce1dec82f91544f16d2b7cf8c6a339165123a632399c22b12df909fb071d57e1da30011

Download Submit
/data/data/com.alioth.imdevil_cn_A/files/mobclick_agent_cached_com.alioth.imdevil_cn_A

Filesize
100B

MD5
c168d99fc54a568fa797b33874446db2

SHA1
3125166bff016d545962083a488ff8090fc0b81b

SHA256
84ae2d767f491de474c79016669c6cb1bf098dd8510d1a5bc1269fdd7b65ed54

SHA512
3bf863017c6af51b926fc8c180e2d564e5f874b7ced9804c66b7c28b5ab2058c0f2a794435ba87b29ac80253c2e525bce6f2a9067eb1b364460866f8210ae1c7

Download Submit
/storage/emulated/0/Android/Package.dat

Filesize
21B

MD5
e44be84032352d5194b12d17596e4692

SHA1
172cd70539dd65b01ef87c0a4545f6a26b931557

SHA256
e0d5fc64c238d0f59417d80df09d27ab2c311ccd8bdfda92228b73fae0326ec4

SHA512
dda4fe00e454941b40f93118b559182b7bda696000417079899bd2497ab3038c5bf679ad2551b38b7b9e4ad495b7c2064a72b4d01d5444b8202a97f09f3047bf

Download Submit
/storage/emulated/0/Android/custom.dat

Filesize
32B

MD5
2e70d14d0b12370b42ff9f4439fff9cb

SHA1
c5f771aa638fc87cff8d94e45f67e80841c5dd3a

SHA256
690df4ab18dc09376af7fe4981a54bb74bf2a2592ef6aef37a2fbfac77b780ef

SHA512
d10dfea58493ef6462cb4e4a3f289dc27a7dfc2d000ee8bab9bdce9e20756a226e77d04c1a0e8533bc153a5b39bd04551a43d329693296ca933af7be332199a0

Download Submit
/storage/emulated/0/Android/data/cache/CacheTime.dat

Filesize
13B

MD5
b08685a815d9d26a5cf08d61949cce36

SHA1
b0fe037a6b69a015119fe66ad9cc81ba4ad722a3

SHA256
1e9f44e74f56d2de8053cc26337cd6a92a179e0b0d67a7d84e5554ac90475968

SHA512
84273dea819eeef3936c8f322890647f62670aebc94ccc936f5a5821c764bc9f06bac43044e04cfc362246caca7eed9ae91f4384aae30ec18332ca8cb5635265

Download Submit
/storage/emulated/0/Android/data/cache/UnPackage.dat

Filesize
24B

MD5
95ae2316f01d35a5f45e482e98271dcd

SHA1
e78f68030570f02ab5c04166a22a660a39e2bbee

SHA256
c6cda31802c74ff7e4b220ce6be1f0ce1d4138a959a6ac741c0208eee46eb3ca

SHA512
52b6a519b0e1c91b58abff711f6c9a9c8d5702be2d2d488a00257980c4655913986e144d33a4a2b43780763966bfea55431bb809ed1adf44c80a6aea4accee80

Download Submit