bb94f1b126db8e6e43c522fe0d2e008111c8b8a0cf5ac2a122fbc039f8727c7f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c6eb1a6eb3ae5ecca5da160e504cb31_JaffaCakes118
Size

20.0MB
Sample

240501-wah33scd51
MD5

0c6eb1a6eb3ae5ecca5da160e504cb31
SHA1

fe1d13d481c121e970e4872d43b0602aa6551432
SHA256

bb94f1b126db8e6e43c522fe0d2e008111c8b8a0cf5ac2a122fbc039f8727c7f
SHA512

1350b157f3eed61a95730862a911f7da8f504b04d4ef3be59c52dab5480d81a9db54e58110b853fafa221d31052dbdf520b1b5b2b0c94c0d211cb704c6bef699
SSDEEP

393216:y+dNPM1pNYw11u1ItuBMK4u1rkIRTbZ1wGYXviAg7wQ7B4n3CwiMWgZjzOuM:y+dy+w6dBMoRkIR7wF/iAg7e3C1MzquM

Score

7^/10

android discovery evasion impact persistence

Malware Config

Targets

- Target
  
  0c6eb1a6eb3ae5ecca5da160e504cb31_JaffaCakes118
- Size
  
  20.0MB
- MD5
  
  0c6eb1a6eb3ae5ecca5da160e504cb31
- SHA1
  
  fe1d13d481c121e970e4872d43b0602aa6551432
- SHA256
  
  bb94f1b126db8e6e43c522fe0d2e008111c8b8a0cf5ac2a122fbc039f8727c7f
- SHA512
  
  1350b157f3eed61a95730862a911f7da8f504b04d4ef3be59c52dab5480d81a9db54e58110b853fafa221d31052dbdf520b1b5b2b0c94c0d211cb704c6bef699
- SSDEEP
  
  393216:y+dNPM1pNYw11u1ItuBMK4u1rkIRTbZ1wGYXviAg7wQ7B4n3CwiMWgZjzOuM:y+dy+w6dBMoRkIR7wF/iAg7e3C1MzquM
Score

7^/10

discovery evasion impact persistence
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Hide Artifacts

User Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence