General
-
Target
232af40fc869b39b829c327f39392166_JaffaCakes118
-
Size
31.0MB
-
Sample
240508-eyfjesac9y
-
MD5
232af40fc869b39b829c327f39392166
-
SHA1
852497a769449411277e8d8736fd2479bbaa194d
-
SHA256
b24a7952af18799b1df3b78dcef5589ebb86b7622f32ad5c1c95ca7ea70bcdc0
-
SHA512
e95d872384d324958fa9837daa7611371f20d752a58fea3ec4a8038184cd97b6f54a10b39fef7d474bbb14f9bc1ff7b4e787a40ae30bda0ab070758949d6672c
-
SSDEEP
786432:yL25FwsyAC+rC/gr4YJwuAqtGdIFf1sxBghPK7OKvIN3wE:y65FC+6gLNXtGdIFf1sxyP0O1X
Malware Config
Targets
-
-
Target
232af40fc869b39b829c327f39392166_JaffaCakes118
-
Size
31.0MB
-
MD5
232af40fc869b39b829c327f39392166
-
SHA1
852497a769449411277e8d8736fd2479bbaa194d
-
SHA256
b24a7952af18799b1df3b78dcef5589ebb86b7622f32ad5c1c95ca7ea70bcdc0
-
SHA512
e95d872384d324958fa9837daa7611371f20d752a58fea3ec4a8038184cd97b6f54a10b39fef7d474bbb14f9bc1ff7b4e787a40ae30bda0ab070758949d6672c
-
SSDEEP
786432:yL25FwsyAC+rC/gr4YJwuAqtGdIFf1sxBghPK7OKvIN3wE:y65FC+6gLNXtGdIFf1sxyP0O1X
Score8/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-