Overview

overview

7

Static

static

6

275123a24d...18.apk

android-9-x86

7

GH.apk

android-9-x86

6

GH.apk

android-10-x64

6

GH.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    275123a24d9c0d46cbb0c30d05f07532_JaffaCakes118

  • Size

    19.8MB

  • Sample

    240508-3y1rcshb59

  • MD5

    275123a24d9c0d46cbb0c30d05f07532

  • SHA1

    61fd87bbf0541158402a95a1bc0224851c90f52e

  • SHA256

    fb57f1623e6e8c052014091812d5635c56a755d7a1b4ce8536174de62142466b

  • SHA512

    40933388998d126ba65acc37131c1bf3dfe3a8bd1539b77ced22dc556c21da988a38e15de16d434c4b6e0d4f999639509695694af42879ed5638b46ae0b4ea68

  • SSDEEP

    393216:fpIoV2JYr9LJ9Y8PVucH1T1gF6AKEr1FF6mh7KKXTwWvYQOCZ7ZiIW:fpI4gYr9LJ9F/T1gFhtrJhGKDwgYkZ7Q

Score
7/10
androiddiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      275123a24d9c0d46cbb0c30d05f07532_JaffaCakes118

    • Size

      19.8MB

    • MD5

      275123a24d9c0d46cbb0c30d05f07532

    • SHA1

      61fd87bbf0541158402a95a1bc0224851c90f52e

    • SHA256

      fb57f1623e6e8c052014091812d5635c56a755d7a1b4ce8536174de62142466b

    • SHA512

      40933388998d126ba65acc37131c1bf3dfe3a8bd1539b77ced22dc556c21da988a38e15de16d434c4b6e0d4f999639509695694af42879ed5638b46ae0b4ea68

    • SSDEEP

      393216:fpIoV2JYr9LJ9Y8PVucH1T1gF6AKEr1FF6mh7KKXTwWvYQOCZ7ZiIW:fpI4gYr9LJ9F/T1gFhtrJhGKDwgYkZ7Q

    Score
    7/10
    discoveryevasionimpactpersistence

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

      evasiondiscovery

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

      evasiondiscovery

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery

    • Queries the mobile country code (MCC)

      discovery

    • Registers a broadcast receiver at runtime (usually for listening for system events)

      persistence

    • Checks if the internet connection is available

      discovery

    • Listens for changes in the sensor environment (might be used to detect emulation)

      evasion
    behavioral1

    • Target

      GH.data

    • Size

      1.6MB

    • MD5

      e6647c7982823f7e0c49bf9de9e8ca1c

    • SHA1

      56669c77eb3bbb867a470d623496a555d935aa1b

    • SHA256

      6da698faf823ce4cd97d214609d54291da5e3a18561c9a648cba8bbe47595f02

    • SHA512

      bcfc2924ee57b898475fd5c3fb8c9cb001ad2ebca717e60f384720c05441fef4ec00ad777d144c9d15dad8c2e34e3b8b78e067bd1b72a8dc59c2f20d5002b05b

    • SSDEEP

      24576:ygaJGEBLRACbCG4jh4k3QiDkrsPTVwogNeAranxYfks:ygaJGENRACubjh4k3Q0WmHgNlr0xwks

    Score
    6/10
    discovery

    • Checks if the internet connection is available

      discovery

    • Queries the unique device ID (IMEI, MEID, IMSI)

      discovery
    behavioral2behavioral3behavioral4

MITRE ATT&CK Mobile v15

Tasks