ca22cb5feec0ca512175253051853d224e8b2059f04c48704fc0a789206d0a4f

Analysis

max time kernel
87s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240506-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240506-enlocale:en-usos:android-9-x86system
submitted
08-05-2024 09:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

244573aa476ccb224887ecc4abb3e5d5_JaffaCakes118.apk
Size

27.4MB
MD5

244573aa476ccb224887ecc4abb3e5d5
SHA1

16cb8115621207b82a17bff29045a0d6a8db0461
SHA256

ca22cb5feec0ca512175253051853d224e8b2059f04c48704fc0a789206d0a4f
SHA512

79eb9cabaa0d68dcf6089eaa7554940a2f482c13d012c08d5beec03c7ade0d0c8acab0a053a743a8fbbca10230ed8c1ca7dc7b510d21dc0a9cbfb5c91ef9e012
SSDEEP

786432:x/A9iVSVVdXJYYxXg1Znvoq8kULthnwAN8kQKqsUf3xD2:x/AGuJYXvoqlULth3NtQL/BC

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.quickturtle.EmployeeSurvival_en

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.quickturtle.EmployeeSurvival_en

com.quickturtle.EmployeeSurvival_en
1⤵
- Checks CPU information
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4190

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads