f0bab5b14b84651b74247860b2d4b0eb58a8c1f95f535725b5e4f9ae13629e0f

Analysis

max time kernel
151s
max time network
151s
platform
android_x64
resource
android-33-x64-arm64-20240229-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240229-enlocale:en-usos:android-13-x64system
submitted
26-04-2024 17:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

013f7c7572ab67a38b21cdda18c5e6d8_JaffaCakes118.apk
Size

11.8MB
MD5

013f7c7572ab67a38b21cdda18c5e6d8
SHA1

9ac49dc6cfc2fa6d7ba966ade712617df1c078da
SHA256

f0bab5b14b84651b74247860b2d4b0eb58a8c1f95f535725b5e4f9ae13629e0f
SHA512

674f09af83ac37a25e238beb20093c525090731c0307602df3ae0776b70250455c38b7ae229e25fd5730f640d96656777d118ce1983ad751b59abb745fd4931c
SSDEEP

196608:u++ahaJD3h4i9/6ntvYMNpVpcbbiCKfCiIjrE754Ncz+cPDd5LzioXr3Rbn:u++awDmuCtvV0HiCKCRs6AbdJzioXTRb

Score

8^/10

collection discovery impact

Malware Config

Signatures

Requests cell location 1 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
collection discovery

T1430

Processes:

com.wangjia.zhaokaobao.activity

description ioc process

Framework service call com.android.internal.telephony.ITelephony.getCellLocation com.wangjia.zhaokaobao.activity
Reads information about phone network operator. 1 TTPs
discovery

T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

T1471

Processes:

com.wangjia.zhaokaobao.activity

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.wangjia.zhaokaobao.activity

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.wangjia.zhaokaobao.activity

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.wangjia.zhaokaobao.activity

com.wangjia.zhaokaobao.activity
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4317

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.wangjia.zhaokaobao.activity/databases/rep.db
Filesize
24KB

MD5
9c6c05b150611ffce829e41a4707b796

SHA1
76f0a7b714622d62f687c4bb2d5d0f17ff92f2af

SHA256
9c6869feb1d744dd73e65d987d064a0b91a13553687a90877966758778763dcd

SHA512
d8ef6d794db2b528201de94b2009bfa8751a43c0598a31cd47c9c98ea056077efe197e2ed7cc22c044bf9b0150629075a22cf5c273bcf2d17e4c94e0e3c870b1

Download Submit
/data/user/0/com.wangjia.zhaokaobao.activity/databases/rep.db-journal
Filesize
512B

MD5
e8f016d1b20c75a66d604d57f1a3197d

SHA1
7be05b613a6abe794f893861517bd45811c4f3ea

SHA256
be80382f6e418e887d4d7b4d330ecc1c2572e1d1f1a826bef2c88e3d0656a2c5

SHA512
6f45f06dfacc37a24d45db10c29e699abf6f69e7b1c5e81f592f4c74d1fb8f38b4f02e851237727791ba82bf14a1bb0d1c8cfa46104a5a610713752ebc0c7838

Download Submit
/data/user/0/com.wangjia.zhaokaobao.activity/databases/rep.db-journal
Filesize
8KB

MD5
e3cd0c325b8b65d439a9b0dece291b86

SHA1
3b3544043ccddd99efd6feb2113fbaf92d101203

SHA256
a6ba1fe261ffb1872fe3814a6f4c2382575f78188fef87adf7ea2cb86e6a572a

SHA512
36250f754bf8fe4acbd8b1218a8f20ec85ba4668fd36b72b1c11bf628bcfa34b361094774a2d5853aa1db117227a0cf77cff3b4c298f6973f21867632ab2e5e7

Download Submit
/data/user/0/com.wangjia.zhaokaobao.activity/databases/rep.db-journal
Filesize
8KB

MD5
1d8739ab2674e553923c0a794e9cd81a

SHA1
7805438f625882ce911990bae56f437ae9347db7

SHA256
3ee100df34124d747e9b7b2abcad4f3804d7cf8ee3f184671a6958ed1148491b

SHA512
4f6640548f8524ba5b43938b3f3b3bdd32aa5f6448a1db2fb962914571fca5928fc5a20e2233eec8d0fbe1cbfd1da49620eec93b747fd8183476c1fa3c6edc13

Download Submit
/data/user/0/com.wangjia.zhaokaobao.activity/databases/xUtils.db
Filesize
12KB

MD5
6d527da87c4c692e2091d953eacc7523

SHA1
1ff367e91ec7428668218c1bdc0dcb49541f40b8

SHA256
b78ed93c9a3f339ca2eeb511aa6d79e594931a0279815b239f7065dcb5f810fe

SHA512
5402292ce8d85214e91e24be0c314b41a9846e9dee8ad6ea405553bb04c2597084829a99cad810e6ca327f6fcb80bc99bd42c95f2f6a247d681eb19444d362b0

Download Submit
/data/user/0/com.wangjia.zhaokaobao.activity/databases/xUtils.db-journal
Filesize
512B

MD5
6f428779208ea859fcf73265b0811288

SHA1
40603e6c7bfcca69d1d0bb3ae2c9bb3d3000f2a3

SHA256
8652041821e3a26a67eb38f601118db143c327656a72747d0c740515c924c573

SHA512
879d632129d7dfa9fc65e13c65651c7a1f768812a745390f3b3365ae4a9923d065d8c04df5848d77475d0bb0bbc8e765201c3c510ddf8660b7c63bce2b3367f3

Download Submit
/data/user/0/com.wangjia.zhaokaobao.activity/databases/xUtils.db-journal
Filesize
8KB

MD5
f2a0d35745a087cbc93a74e8cbc04e33

SHA1
414bf31e1b9dc074d35e382eff0b9a3af7e0c406

SHA256
777e6e0a97f9ce20ae3f17df3ebca24eea11e7650c4573afbe87273478f2da69

SHA512
a78863fa7074c053b73f7b3624f6c377717a985e40559d0763713e827256a5d484302a858913c41be81e763a2e54ae7d099e83e8f54910e1d43935d16093356b

Download Submit
/data/user/0/com.wangjia.zhaokaobao.activity/databases/xUtils.db-journal
Filesize
4KB

MD5
eed1a1b4971fd37e07a05acc43d233a4

SHA1
2452aed3b3f1390b3000183473d2230598610363

SHA256
7c26786618f67a290510283696d89ba5cd3c0d99bd851b3f209b19ece20f183d

SHA512
8eaaa2c14f1e61d215c5c84eea71d5aca72b7b314376d606ff02c361f4a3752a01846708704d088863689d008616a9b8c4133ba13364884741604672411f3332

Download Submit
/storage/emulated/0/Android/data/com.wangjia.zhaokaobao.activity/cache/newlocationCache/journal.tmp (deleted)
Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads