f099a6aede3b4f8940a13c2b0548209ff1849c6ebaf99ac54337d3ddb69637d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f00312b40f53db08f63851efa2b74890_JaffaCakes118
Size

3.2MB
Sample

240415-b7cx4seb6v
MD5

f00312b40f53db08f63851efa2b74890
SHA1

a2512063a59f0815331c81579f1800f38f0fb11a
SHA256

f099a6aede3b4f8940a13c2b0548209ff1849c6ebaf99ac54337d3ddb69637d1
SHA512

2dbc7eb0b7d5b104106a1fa4a4d61ed3fa9555fede33765047ae81a4c4695a11dc23ee3aea6ac9ff1b542a407e888f65c2d5f1c3afe86ca36440792da0d02f0c
SSDEEP

49152:cernNpFZldaoNIvJMkDv1krmka9Z6mnjybIpDfIm0T33Rhk3R0ig1XWfIhOxiYHu:1k8Invgs6kwfm0jw+iEWfIhOxtXuKG

Score

8^/10

android banker discovery

Malware Config

Targets

- Target
  
  f00312b40f53db08f63851efa2b74890_JaffaCakes118
- Size
  
  3.2MB
- MD5
  
  f00312b40f53db08f63851efa2b74890
- SHA1
  
  a2512063a59f0815331c81579f1800f38f0fb11a
- SHA256
  
  f099a6aede3b4f8940a13c2b0548209ff1849c6ebaf99ac54337d3ddb69637d1
- SHA512
  
  2dbc7eb0b7d5b104106a1fa4a4d61ed3fa9555fede33765047ae81a4c4695a11dc23ee3aea6ac9ff1b542a407e888f65c2d5f1c3afe86ca36440792da0d02f0c
- SSDEEP
  
  49152:cernNpFZldaoNIvJMkDv1krmka9Z6mnjybIpDfIm0T33Rhk3R0ig1XWfIhOxiYHu:1k8Invgs6kwfm0jw+iEWfIhOxtXuKG
Score

8^/10

banker discovery
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Queries information about the current Wi-Fi connection.
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Acquires the wake lock
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscovery

behavioral2