2c9ae352ff5747ccc6a78eee7bbd0501b3f4bf940b90823ccba005bfb2f8d827

General

Target

02a52236fc528e38923486e3aa05ae3f_JaffaCakes118
Size

30.7MB
Sample

240427-hdlrgsdb62
MD5

02a52236fc528e38923486e3aa05ae3f
SHA1

7897cb23b6940ccf92a52fabde75346b6486bf2a
SHA256

2c9ae352ff5747ccc6a78eee7bbd0501b3f4bf940b90823ccba005bfb2f8d827
SHA512

d75ac945903e967ca0502407d07f885540d3830c0749668a44d0f5099979273ab3744edacf41cc67455b2ffdbcd9fabeaa58ad5d6719257b0b38850d72dcc8c2
SSDEEP

786432:bgH0It51aZWaftf+KG2//aDB08JhLtHPX0pxdBqqRL3NeV:y0Ib1iWZNR/hHPEpxdBK

Score

8^/10

Malware Config

Targets

- Target
  
  02a52236fc528e38923486e3aa05ae3f_JaffaCakes118
- Size
  
  30.7MB
- MD5
  
  02a52236fc528e38923486e3aa05ae3f
- SHA1
  
  7897cb23b6940ccf92a52fabde75346b6486bf2a
- SHA256
  
  2c9ae352ff5747ccc6a78eee7bbd0501b3f4bf940b90823ccba005bfb2f8d827
- SHA512
  
  d75ac945903e967ca0502407d07f885540d3830c0749668a44d0f5099979273ab3744edacf41cc67455b2ffdbcd9fabeaa58ad5d6719257b0b38850d72dcc8c2
- SSDEEP
  
  786432:bgH0It51aZWaftf+KG2//aDB08JhLtHPX0pxdBqqRL3NeV:y0Ib1iWZNR/hHPEpxdBK
Score

8^/10

banker collection discovery evasion impact persistence
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Requests cell location
  Uses Android APIs to to get current cell information.
  collection discovery
- Requests cell location
  Uses Android APIs to to get current cell location.
  collection discovery
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries the mobile country code (MCC)
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
- Reads information about phone network operator.
  discovery
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

Requests cell location

Requests cell location

Checks CPU information

Checks memory information

Queries information about running processes on the device

Queries information about the current Wi-Fi connection

Queries the mobile country code (MCC)

Registers a broadcast receiver at runtime (usually for listening for system events)

Checks if the internet connection is available

Reads information about phone network operator.

Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2