6b4e409b678d2fe6812bbb658d98da9f6a02c9d2c2f2dacd3c0593ced7df262e

Analysis

max time kernel
64s
max time network
147s
platform
android_x64
resource
android-x64-arm64-20240221-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
submitted
28/04/2024, 23:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

064dc86c7d7b2d43316c258385d93923_JaffaCakes118.apk
Size

2.1MB
MD5

064dc86c7d7b2d43316c258385d93923
SHA1

ea7e4304ed518954f51502f4d084ac5e61e11097
SHA256

6b4e409b678d2fe6812bbb658d98da9f6a02c9d2c2f2dacd3c0593ced7df262e
SHA512

94449e297e60ac3b6e3e5d3c2f7c6138825ca240541919518d5a8d6a4f793e4d497aafbc9d9b55d60e52f3711d278edefdbd54efa722f5972a2f6f50f87d0fb7
SSDEEP

49152:EePyvtaDVa634dx8Bw14BtjrhGTrBqherI:Eemtek6odKC6BdrhW6eM

Score

7^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79
1⤵
- Checks CPU information
- Checks memory information
- Obtains sensitive information copied to the device clipboard
- Queries information about the current Wi-Fi connection
- Checks if the internet connection is available
PID:4601

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79/files/mobclick_agent_sealed_com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79

Filesize
542B

MD5
4fb6144776a9ee6d1901a6f236ea82a4

SHA1
99e72f9a9871ab2ce6e6e6cf5c45f656b693cb33

SHA256
c5162d0efe05eea8619f286170a8185e96884fd890899fd97d00deb592bceb48

SHA512
643e2f7a959bea470d60ef1564acc01492cc3920aa88cc3c5ff1957d0ce16f36c69821c52785e47407e2fbb65bd04d8aabf763b8562bd0947034d8b5f6e72f33

Download Submit
/data/user/0/com.cyou.cma.clauncher.theme.v545c23270bea5d3764996e79/files/uuid.md

Filesize
32B

MD5
e15ad9a7c3ff6e425308b0ce23213693

SHA1
95bb5528de8f3fcc4fecb58d998918d8b048b7ec

SHA256
6ee583fab24f53ada755d9d9b97b2b14ef003d8376767431e23549f731194cd5

SHA512
ce484dc8c1938f073f59c5e5f11941baadc2b983c91ca30ccda2ca14de0b202040e8aafc32acba1fc005e78fa3059da66a722399f8081613730dd86f34b74986

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads