Overview

overview

10

Static

static

10

16eb33f11a...18.apk

android-9-x86

16eb33f11a...18.apk

android-10-x64

16eb33f11a...18.apk

android-11-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    16eb33f11a630c28b52e57b6243e8c8c_JaffaCakes118

  • Size

    254KB

  • MD5

    16eb33f11a630c28b52e57b6243e8c8c

  • SHA1

    db1efc157e18f4a190cc118c3e66e0448160fc55

  • SHA256

    5e2c2df5fae1f7e20fe953c0cfb094dffb4feff5c7cd41593cc58a026676752d

  • SHA512

    52a0e9adaa15876253ac3f40791d1bfb24d8d2fdf675024fb53a11509bc8c634811ae569bcf15a680584a705a91d5dade44da44ecacf5c2c4521d47d0301f289

  • SSDEEP

    3072:rQyPmKxXMXjCTGBUixgsvZ2n8eakQrM8ymWsEpJHsF8ksUyA+ZYluqZJcvaGxlvZ:rQyu+4jMmhjw8eyBWN2stAWYFJaHh

Score
10/10
sandrorat

Malware Config

Extracted

Family

sandrorat

C2

zyngapoker47.ddns.net:1337

Signatures

  • Sandrorat family
    sandrorat
  • Requests dangerous framework permissions 14 IoCs

Files

  • 16eb33f11a630c28b52e57b6243e8c8c_JaffaCakes118
    .apk android

    net.droidjack.server

    net.droidjack.server.MainActivity


Android Permissions

16eb33f11a630c28b52e57b6243e8c8c_JaffaCakes118

Permissions

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.RECORD_AUDIO

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_SMS

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.CAMERA

android.permission.WRITE_CONTACTS

android.permission.READ_CONTACTS

android.permission.SEND_SMS

android.permission.READ_CALL_LOG

android.permission.WRITE_CALL_LOG

com.android.browser.permission.READ_HISTORY_BOOKMARKS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.CALL_PHONE

android.permission.GET_TASKS

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.INTERNET