786778f9da61c71c3d1c103be286683a8cabdf28aa0e3bfa0a467a59d6315fd0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f6b162cb03595b06f0945d4a863ce823_JaffaCakes118
Size

3.6MB
Sample

240417-1776pafh86
MD5

f6b162cb03595b06f0945d4a863ce823
SHA1

5181c5eb8e5fc86c538d8d26e26c822e1b85fe2f
SHA256

786778f9da61c71c3d1c103be286683a8cabdf28aa0e3bfa0a467a59d6315fd0
SHA512

9c810829f18dee75004f9677feee6dc901288ec47ccdf64a12021bb198d036883836cae314550919ddd309dae86bce73f5e11f58b2670589f3e2f9e10d53c805
SSDEEP

98304:q2KyvlRgkKUFw32F+nYCXa4K12i0kmO1cHxhE1DZLKPsSm:q2KyIr3e+n3O2G1maB5Kk/

Score

8^/10

android banker discovery evasion

Malware Config

Targets

- Target
  
  f6b162cb03595b06f0945d4a863ce823_JaffaCakes118
- Size
  
  3.6MB
- MD5
  
  f6b162cb03595b06f0945d4a863ce823
- SHA1
  
  5181c5eb8e5fc86c538d8d26e26c822e1b85fe2f
- SHA256
  
  786778f9da61c71c3d1c103be286683a8cabdf28aa0e3bfa0a467a59d6315fd0
- SHA512
  
  9c810829f18dee75004f9677feee6dc901288ec47ccdf64a12021bb198d036883836cae314550919ddd309dae86bce73f5e11f58b2670589f3e2f9e10d53c805
- SSDEEP
  
  98304:q2KyvlRgkKUFw32F+nYCXa4K12i0kmO1cHxhE1DZLKPsSm:q2KyIr3e+n3O2G1maB5Kk/
Score

8^/10

banker discovery evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection.
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Acquires the wake lock
- Reads information about phone network operator.
  discovery
behavioral1
- Target
  
  alipay_plugin_2.5.0_1221.apk
- Size
  
  256KB
- MD5
  
  64e08a5187d7975a9b2012af0063e22f
- SHA1
  
  8ac70ba98696310b802182e727946fbcd527948e
- SHA256
  
  d70e6421e12cca2d0f2fc3de0737f8fd49d962942f12ed727e4806854627e138
- SHA512
  
  2a84e6b590fc5a97de1a36578fcd0102d5f63067c116e659f2afff09c7d486e0d5179bf57d15fec6340500f7e95bd9911b49938bc81e2df9da36848c63af6c4e
- SSDEEP
  
  6144:o2ZM+6zjjpc6Oz5Gx2MPNvfNrYx4x0ROycF2b9WcpaY75bUaJ0:o2Gzja6OGM81rYx4KRDcF2b9Wm5bUG0
Score

1^/10
behavioral2 behavioral3 behavioral4

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscoveryevasion

behavioral2

behavioral3

behavioral4