General
-
Target
00c59bcd82c7abab6e1369dad2bc73b5_JaffaCakes118
-
Size
27.5MB
-
Sample
240426-pn4hlscd4s
-
MD5
00c59bcd82c7abab6e1369dad2bc73b5
-
SHA1
5f70c747e4310c28383f88828770e3ddeb5f3a1d
-
SHA256
206a7a2c644049b04091de20e726f2735d715a562df3a04483ddaa431543adb0
-
SHA512
798fd52a054f9aff0c78c9424500ba1cc0520b06ec2eccade3353f648dbb995cad5375ee218266daeab6a799ef13c0ee243caad6d45b09503e8e4ef6fb9ca5dd
-
SSDEEP
786432:FNWBp0+IqygIrVo+fe525bf3KbssAZxtG:w0rzr/G52Nf3ztG
Malware Config
Targets
-
-
Target
00c59bcd82c7abab6e1369dad2bc73b5_JaffaCakes118
-
Size
27.5MB
-
MD5
00c59bcd82c7abab6e1369dad2bc73b5
-
SHA1
5f70c747e4310c28383f88828770e3ddeb5f3a1d
-
SHA256
206a7a2c644049b04091de20e726f2735d715a562df3a04483ddaa431543adb0
-
SHA512
798fd52a054f9aff0c78c9424500ba1cc0520b06ec2eccade3353f648dbb995cad5375ee218266daeab6a799ef13c0ee243caad6d45b09503e8e4ef6fb9ca5dd
-
SSDEEP
786432:FNWBp0+IqygIrVo+fe525bf3KbssAZxtG:w0rzr/G52Nf3ztG
Score8/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-
Checks the presence of a debugger
-