Overview

overview

7

Static

static

6

064dc86c7d...18.apk

android-9-x86

7

064dc86c7d...18.apk

android-10-x64

7

064dc86c7d...18.apk

android-11-x64

7

Analysis

  • max time kernel
    18s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20240221-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
  • submitted
    28-04-2024 23:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    064dc86c7d7b2d43316c258385d93923_JaffaCakes118.apk

  • Size

    2.1MB

  • MD5

    064dc86c7d7b2d43316c258385d93923

  • SHA1

    ea7e4304ed518954f51502f4d084ac5e61e11097

  • SHA256

    6b4e409b678d2fe6812bbb658d98da9f6a02c9d2c2f2dacd3c0593ced7df262e

  • SHA512

    94449e297e60ac3b6e3e5d3c2f7c6138825ca240541919518d5a8d6a4f793e4d497aafbc9d9b55d60e52f3711d278edefdbd54efa722f5972a2f6f50f87d0fb7

  • SSDEEP

    49152:EePyvtaDVa634dx8Bw14BtjrhGTrBqherI:Eemtek6odKC6BdrhW6eM

Score
7/10
discoveryevasionpersistence

Malware Config

Signatures

  • Checks CPU information 2 TTPs 1 IoCs

    Checks CPU information which indicate if the system is an emulator.

    evasiondiscovery
  • Checks memory information 2 TTPs 1 IoCs

    Checks memory information which indicate if the system is an emulator.

    evasiondiscovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery

Processes

  • com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79
    1⤵
    • Checks CPU information
    • Checks memory information
    • Queries information about the current Wi-Fi connection
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks if the internet connection is available
    PID:4186

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79/files/.imprint
    Filesize

    841B

    MD5

    49780268158ae81f70245d63fb3cc571

    SHA1

    50ce362f7998a5148501a3a3e4cdffb1116f1bf5

    SHA256

    068b7428326a7c87ff503b8ee2a71b280a72b2b888e5f78b2f7f59475d6156ab

    SHA512

    2e6ffd6d00e73dc89fa794cb82cf52764406f587282cc44f769c352edbb345f20778b13d68ce979eba27c9f388fc28d5301f42fa2e991d839715dd4d0d411263

    Download Submit

  • /data/data/com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79/files/uuid.md
    Filesize

    32B

    MD5

    dd21ef3057ea3b30d8722940920e9806

    SHA1

    1668e0c3129fd6b5e30d2c64f283522e34560b9e

    SHA256

    871373edd3cdd605ebc462ab60008625c3d1677c0b55787be06d560b29247568

    SHA512

    68c0a624dc24c3f8d89b309f25e0ce8dc9661d9cd0baacdd50414eb384f800778f4cc27460d6462559fbdb274186a0f11cbc694deb146f058211040b5709d9ea

    Download Submit