f910c17cc1dcb9f764345d8b0614cacfdd25c26e0a849421c446270c28959d31 | Triage

Sharing

General

Target

fa85f648fd8177067b566ab2e45ee689_JaffaCakes118
Size

21.5MB
Sample

240419-r267rseh65
MD5

fa85f648fd8177067b566ab2e45ee689
SHA1

e5ebab292e7ceac252ab07ce77fd1a939cf5918d
SHA256

f910c17cc1dcb9f764345d8b0614cacfdd25c26e0a849421c446270c28959d31
SHA512

47d35cfd8d1e4d7fd7ac552fa1ab6a55adeb8723121b89e815b1fb5416f6e90eb3197d115dfe08bf9d39b804398e572723ec48e2ebd625481e7902999738ebcb
SSDEEP

393216:8OFYuCzemhgfunbtSQ6Oh4ZtffYKk+UTN8dEXOm7QIDaB1eJ2x9wbYtB:8OYVemhgfwSQlhMffnk+UT6dEXOm7H4j

Score

8^/10

android collection discovery evasion

Malware Config

Targets

- Target
  
  fa85f648fd8177067b566ab2e45ee689_JaffaCakes118
- Size
  
  21.5MB
- MD5
  
  fa85f648fd8177067b566ab2e45ee689
- SHA1
  
  e5ebab292e7ceac252ab07ce77fd1a939cf5918d
- SHA256
  
  f910c17cc1dcb9f764345d8b0614cacfdd25c26e0a849421c446270c28959d31
- SHA512
  
  47d35cfd8d1e4d7fd7ac552fa1ab6a55adeb8723121b89e815b1fb5416f6e90eb3197d115dfe08bf9d39b804398e572723ec48e2ebd625481e7902999738ebcb
- SSDEEP
  
  393216:8OFYuCzemhgfunbtSQ6Oh4ZtffYKk+UTN8dEXOm7QIDaB1eJ2x9wbYtB:8OYVemhgfwSQlhMffnk+UT6dEXOm7H4j
Score

8^/10

collection discovery evasion
- Requests cell location
  Uses Android APIs to to get current cell location.
  collection discovery
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection.
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries information about the current nearby Wi-Fi networks.
  Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
  discovery
- Reads information about phone network operator.
  discovery
behavioral1
- Target
  
  alipay_plugin_20120428msp.apk
- Size
  
  286KB
- MD5
  
  4a89d8a1da67ffb789e71dcced41a691
- SHA1
  
  b72bc1d8920ed03c8bfcb8e431169f4508e71976
- SHA256
  
  5dab6575a279591032487cd2b8e428f7a90ac8b1fc4eacee245522feba2b2039
- SHA512
  
  a09342efcabc691c9efdf256c93e3f326d6785c7b2d6c1d4d12dfbdb676f544fcaa08ca373a550faebe3cdab2b5f82781e28cbf5f4779c3905851876eddc95d3
- SSDEEP
  
  6144:OV/Mo6jF1cM8qgmgMPE8fRsrYQ0d0ROgE8XF2Q9WDBRa/dEW7BhDJUK:OVWjFiCgxmpsrYQ0uR48XF2Q9W1R1Wlv
Score

1^/10
behavioral2 behavioral3 behavioral4

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Location Tracking

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Location Tracking

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectiondiscoveryevasion

behavioral2

behavioral3

behavioral4