cf31fede7854459d310f45c4f6c906a33eede77f3f2a1b44e88c5756fb858b37 | Triage

Submit
Reports

Overview

overview

8

Static

static

6

f73948ec0d...18.apk

android-9-x86

7

f73948ec0d...18.apk

android-10-x64

7

f73948ec0d...18.apk

android-11-x64

8

Sharing

General

Target

f73948ec0df230c10c3dd3def4f5793e_JaffaCakes118
Size

1.5MB
Sample

240418-en1rlsae38
MD5

f73948ec0df230c10c3dd3def4f5793e
SHA1

c8541a3e31cc65181f4ae6df8bf431e14f043001
SHA256

cf31fede7854459d310f45c4f6c906a33eede77f3f2a1b44e88c5756fb858b37
SHA512

f9c80c2b27034253f158ee703f206a6191593ba8279bd77e3073b64bc6b520f304e0857497ea8dce7eeb5a07173c90634e781c28470ce4df72f216134bc64ae0
SSDEEP

49152:ad9tsZOXsbQJ8heP99iRs4rC80Fgzi68iqp:kiqWkP99N4rC80/F5p

Score

8^/10

android collection discovery evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f73948ec0df230c10c3dd3def4f5793e_JaffaCakes118.apk

Resource

android-x86-arm-20240221-en

collection evasion

android-9-x86

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

f73948ec0df230c10c3dd3def4f5793e_JaffaCakes118.apk

Resource

android-x64-20240221-en

collection evasion

android-10-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

f73948ec0df230c10c3dd3def4f5793e_JaffaCakes118.apk

Resource

android-x64-arm64-20240221-en

collection discovery evasion

android-11-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  f73948ec0df230c10c3dd3def4f5793e_JaffaCakes118
- Size
  
  1.5MB
- MD5
  
  f73948ec0df230c10c3dd3def4f5793e
- SHA1
  
  c8541a3e31cc65181f4ae6df8bf431e14f043001
- SHA256
  
  cf31fede7854459d310f45c4f6c906a33eede77f3f2a1b44e88c5756fb858b37
- SHA512
  
  f9c80c2b27034253f158ee703f206a6191593ba8279bd77e3073b64bc6b520f304e0857497ea8dce7eeb5a07173c90634e781c28470ce4df72f216134bc64ae0
- SSDEEP
  
  49152:ad9tsZOXsbQJ8heP99iRs4rC80Fgzi68iqp:kiqWkP99N4rC80/F5p
Score

8^/10

collection evasion discovery
- Requests cell location
  Uses Android APIs to to get current cell location.
  collection discovery
- Queries account information for other applications stored on the device.
  Application may abuse the framework's APIs to collect account information stored on the device.
  collection
- Queries the phone number (MSISDN for GSM devices)
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
- Reads device software version
  Uses Android APIs to read software version number for the device (IMEI/SV for GSM devices).
  discovery
- Reads information about phone network operator.
  discovery
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

collectionevasion

behavioral2

collectionevasion

behavioral3

collectiondiscoveryevasion

© 2018-2024

Terms | Privacy