7e8d8293215d0d94b7cc649fc4d80008b6c69b16624c23c3f27201110a4e91f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25d64ed5b4866f28432ae5614f16dd01_JaffaCakes118
Size

31.8MB
Sample

240508-vkgsbsed6v
MD5

25d64ed5b4866f28432ae5614f16dd01
SHA1

044866d01c34640ed184e25b5d77846b89b637bd
SHA256

7e8d8293215d0d94b7cc649fc4d80008b6c69b16624c23c3f27201110a4e91f2
SHA512

dbfa15fd4a2c115938da0b5ca4e9efeacc57647f67cb89e6d5b51d121134219ad485b0ee1d36104fb3a44b13c5638eae4ed423da4e7c7088dd7cc22059015dab
SSDEEP

786432:yjlmMN9gyafDW5eeg9yqRUw/2qKwi13V5uqXAIYNU:yB+fC5eeXqRUHPJL

Score

7^/10

android discovery evasion impact persistence

Malware Config

Targets

- Target
  
  25d64ed5b4866f28432ae5614f16dd01_JaffaCakes118
- Size
  
  31.8MB
- MD5
  
  25d64ed5b4866f28432ae5614f16dd01
- SHA1
  
  044866d01c34640ed184e25b5d77846b89b637bd
- SHA256
  
  7e8d8293215d0d94b7cc649fc4d80008b6c69b16624c23c3f27201110a4e91f2
- SHA512
  
  dbfa15fd4a2c115938da0b5ca4e9efeacc57647f67cb89e6d5b51d121134219ad485b0ee1d36104fb3a44b13c5638eae4ed423da4e7c7088dd7cc22059015dab
- SSDEEP
  
  786432:yjlmMN9gyafDW5eeg9yqRUw/2qKwi13V5uqXAIYNU:yB+fC5eeXqRUHPJL
Score

7^/10

discovery evasion impact persistence
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries the mobile country code (MCC)
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence