a3ee89edab7cf817011ea7b7eafd653ba882b49f9447c5cebcd2969c7d4c7bf7

Analysis

max time kernel
93s
max time network
135s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
15/04/2024, 23:26

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

f22a0f3e76aa9a9f4b689d5c919ef03b_JaffaCakes118.apk
Size

3.6MB
MD5

f22a0f3e76aa9a9f4b689d5c919ef03b
SHA1

08c77008f8ffe8ebfcace6445ac1688210311d8e
SHA256

a3ee89edab7cf817011ea7b7eafd653ba882b49f9447c5cebcd2969c7d4c7bf7
SHA512

c15ee9fe817bff17690eab6c83b03e1e201ccb9dd0de749b2c20bc75a5d01a3d9796207d3d40fdda19fe1c4212b44f4dcc10d12afc390c49a97234cf568f0ac3
SSDEEP

98304:DrcZ7bLYCnOBWI4bK5dzhvT0YK+UpL0zoaMj:Dry7b0COBN0K5jL0AQL0zoaMj

Score

7^/10

discovery

Malware Config

Signatures

Queries information about running processes on the device. 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.rootmsjjBin

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.rootmsjjBin
1⤵
- Queries information about running processes on the device.
PID:4237

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.rootmsjjBin/files/.YFlurrySenderIndex.info.AnalyticsData_48RJJP7ZCZZBB6KMMWW5_239

Filesize
88B

MD5
4754737b1877cf2e37b9369ca3fa7820

SHA1
0698df9629b1aa1d57cc90afd587a5d1c843ac98

SHA256
c85c880c7427db90cf158123e71c29853dc0bfcaeb27090ad71a3b747320d938

SHA512
e37d15547a8dacff7face0d444e4aab2a89c67191cd6f329430eed86fca3a2e5620918e5223d54af0c32bdb5bd7985945488f3931d4ac036d0ea00961e08858a

Download Submit
/data/data/com.rootmsjjBin/files/.YFlurrySenderIndex.info.AnalyticsMain

Filesize
72B

MD5
deae4f12e8444d320ae1db9d7c268231

SHA1
7ad2b7af358cc715992a6336aa0f00f08b3241d6

SHA256
e768be1bb891877d5ddb4608077b788953bd2a35f830872d6558354bcb345fec

SHA512
a2f3647270e1ccdb1f1160f19844c304cfa38b935bd4108459f2e307e8cddbb3b605cc13099fe0c33616c61c128b8bbbf8ad75921fbbd10f1f43388acd32870d

Download Submit
/data/data/com.rootmsjjBin/files/.yflurrydatasenderblock.d557a417-4975-4c71-983d-a710bfbdc1a8

Filesize
275B

MD5
7ae6c93f6a41c4a5e1e8bee4f41a8109

SHA1
8dbd1b607e60c9bbebb0d87c00f8cfa95da086ae

SHA256
0ba5e042dbf7ff10edc2e7ee16f38d0d038141e898307deab75d0f57b73bcb4d

SHA512
f8d2aa8a9aa91f61482d2765bd27beff8ded26fedca7eb696a45bba84ce6de262774f201bdef9c3e5dd03bab1155583ce96ba5a30b89d8f01e31f48b1ea51a50

Download Submit
/data/data/com.rootmsjjBin/files/.yflurryreport.-4284ecc46c5ffd39

Filesize
356B

MD5
9f4e9d98c4b420236560d0ccfaf56ba0

SHA1
d812d421f3c0bcd638f0f7450be79bc9bb9c4da0

SHA256
2bb922c5babe1de300fd5c7f75ef9943f68bba40c36ffdffdebf8ec7703f8632

SHA512
8fbe2a39d3c5a2d3b5beccf0e204157631f3b9e2389416bdef289773cabeeb1afef8f2045fa0704a1db3c27a3d7619d2c3bbbd8d5235ad530e5cfe83c08234f5

Download Submit