46e754d70b7aca83f0b0d3ba190ca372e85dbd6b03dad12fca2900481a31b97c

Analysis

max time kernel
36s
max time network
160s
platform
android_x64
resource
android-33-x64-arm64-20240229-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240229-enlocale:en-usos:android-13-x64system
submitted
11/04/2024, 17:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

edf7c0b3fe6d367eae0c07b97df35b02_JaffaCakes118.apk
Size

22.0MB
MD5

edf7c0b3fe6d367eae0c07b97df35b02
SHA1

0a98f7938c627476aa64ade0d6e4e8efe0e4ddaf
SHA256

46e754d70b7aca83f0b0d3ba190ca372e85dbd6b03dad12fca2900481a31b97c
SHA512

9ccbebae01ac92b11cc335c48c1e5bae4f0fbda260f9973ec93d0e3e300317da67e4c2e2bff2181b995901d27afb85219e8a5cc6996ac832e21dd0700a3a6830
SSDEEP

393216:qteYh1G758+sLRjG04HUZR5bVAz6KT/W0eo8g3jFT0SL3jz/uIZjFX19h5Z:keY6poS5UzZVAWKb6o73dXWIRFfhH

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.buychemi.blh

com.buychemi.blh
1⤵
- Checks memory information
PID:4296

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.buychemi.blh/databases/bugly_db_legu

Filesize
60KB

MD5
450e84f823de975e1abd3b10b90edc8a

SHA1
04f9b27d57f8f0ca1dace8235d9a3797a5c124d1

SHA256
0443a1bce4d6d7ddf2a82a46713123f920ad86ff72b6cf4346b64b8da7e0d80a

SHA512
16337f7b05e0a546f9e8fee27f75a68d06f5b55aa8cea41049da8e7a319cf2ecea6b160fd1bc78577180e0a3046e95c4531c93f5e5e66232aa4e1dae8831df3f

Download Submit
/data/user/0/com.buychemi.blh/databases/bugly_db_legu-journal

Filesize
12KB

MD5
3351d82bd6393d9fbd0c30360077aaa2

SHA1
121dbc8383e61f59838ababb6224fa251d8d02dc

SHA256
41c66cda8b24af166cda4463d1a0d1b40d2abf8f19b335187dd29f3a5c406862

SHA512
d7a681ea73fbbd34ac01ce1f2eb76cde17c89ee348e992cf5fb9a2114cf54907f3b0d0f5a09b1d511304aa96fd6b3d92e4d56e13c6328d5f3f1bf3ec59dc0c5f

Download Submit
/data/user/0/com.buychemi.blh/databases/bugly_db_legu-journal

Filesize
512B

MD5
ab6ac88e9a5e1f74d531f88dd987627f

SHA1
b084595780a09dcfa4fadcf1fde74dd729aa1202

SHA256
f5ad573f21c982b60494e1a3af7e5af1ba2ab3713e92055eff2a4435debe6198

SHA512
ba344675854437090572f9aee3d984b944acc1899d9e48313e0590d882f8b0b69002d0d3d7f50ac16c4d054f32ddf8633fd9ebe0c5c485c6b0822f37a3701001

Download Submit
/data/user/0/com.buychemi.blh/databases/bugly_db_legu-journal

Filesize
8KB

MD5
c30555a8d433dcabd54f881026e4179e

SHA1
d51ae5c3a995895cb98fbec121bcdbf0c80a27bc

SHA256
6f22894bafa84177798b4ea3fd5b6df9c9ec772e17aa1d7d13529d6c35cd2ee5

SHA512
30c88ab95b24f2fea01bcbacd6bb0597896a862880a9c5bfa76365e4cc9d55658e3f725b891d6cd2f3936ae6ff05b7cd05bf67ef38fe343ae46cdd237230b445

Download Submit
/data/user/0/com.buychemi.blh/databases/bugly_db_legu-journal

Filesize
8KB

MD5
137ee30f1f4ed83cd17d95a437d00436

SHA1
a8d733059675e16bd10688e17e66593f841da94a

SHA256
20befdd99ded70be9577076a7b1fb00913cf32b84931e385645d8edcf779a4e7

SHA512
721f2e412eca875ac72000955cf123179d8a20eff905ec594fc0ccaff9c3331be98498ab25aee40f7ddea2f12907c17743f86050adfdf95e2749a5197f2818e2

Download Submit
/data/user/0/com.buychemi.blh/databases/bugly_db_legu-journal

Filesize
8KB

MD5
1abf3dd34f497d2f9d3419073a869441

SHA1
86c68205941a82991f6d8566aa121efc47df38c6

SHA256
ea4c27fbc927c33b7776f38df2d95da867aa4d848dd8cd39cf6d0d1cc634bfba

SHA512
2b38bfc8ffff93e7cd4a87993a4b11e11c5d813c6a61afe24fa16291d13be7b1979e5a8c661561c64fb04c1bea9ed4cd253cb4d996df1409fa7438c64c4f071a

Download Submit
/data/user/0/com.buychemi.blh/databases/bugly_db_legu-journal

Filesize
12KB

MD5
4f05d874dd328c4c23b591417ae1f9ba

SHA1
bb1d0751aec37b8498638125a92e724c18ce320b

SHA256
4b9e32eb786f94266dcf5b0f7a42ce2b24347ece723e85c8eb3b751a0fca481d

SHA512
5897be37ca5e0f3a43a1ddf53a680e96a0d343255609608f73a3d8bd07edd0d46f138342bbf68235676bb97c8f8fe0589e1b4f02622362223cb8ea1aedcf2b7f

Download Submit