d486f778a0b677bcd70ea3f6ed99356e4f03d674a6bced28c9728fa625b88db3

General

Target

015a3c2358706069caafdddb612a0585_JaffaCakes118
Size

2.6MB
Sample

240426-wn9sysaa21
MD5

015a3c2358706069caafdddb612a0585
SHA1

efd4cc56a19cf7e403495a43cebc286a29531c7e
SHA256

d486f778a0b677bcd70ea3f6ed99356e4f03d674a6bced28c9728fa625b88db3
SHA512

a892776600e643754cb1fd21432868cba76676b962c1b1cb7f3767c0d24113445d3b191d008c05347db3c66af3759d6a127516165ac30e51322d53453940b11a
SSDEEP

49152:ga3Ei2Lnu2S9xphxvrymYbIelwvCjhUctRs3wZEqU7Tk5TC52QlLb9E9kNyK1g:138u2SkmYll9YqUTk5TC5p3E9kNc

Score

7^/10

Malware Config

Targets

- Target
  
  015a3c2358706069caafdddb612a0585_JaffaCakes118
- Size
  
  2.6MB
- MD5
  
  015a3c2358706069caafdddb612a0585
- SHA1
  
  efd4cc56a19cf7e403495a43cebc286a29531c7e
- SHA256
  
  d486f778a0b677bcd70ea3f6ed99356e4f03d674a6bced28c9728fa625b88db3
- SHA512
  
  a892776600e643754cb1fd21432868cba76676b962c1b1cb7f3767c0d24113445d3b191d008c05347db3c66af3759d6a127516165ac30e51322d53453940b11a
- SSDEEP
  
  49152:ga3Ei2Lnu2S9xphxvrymYbIelwvCjhUctRs3wZEqU7Tk5TC52QlLb9E9kNyK1g:138u2SkmYll9YqUTk5TC5p3E9kNc
Score

7^/10

discovery evasion impact persistence collection credential_access
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries information about the current nearby Wi-Fi networks
  Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
  discovery
- Queries the mobile country code (MCC)
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Checks CPU information

Checks memory information

Obtains sensitive information copied to the device clipboard

Queries information about running processes on the device

Queries information about the current Wi-Fi connection

Queries information about the current nearby Wi-Fi networks

Queries the mobile country code (MCC)

Registers a broadcast receiver at runtime (usually for listening for system events)

Checks if the internet connection is available

Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3