4dae7313a796cd664f1caccd607d302bec4d561d5cd17bf480edbeae2c241bc8

Analysis

max time kernel
10s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240506-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240506-enlocale:en-usos:android-9-x86system
submitted
09-05-2024 23:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2c43716ca9b5283e0e0748dc77a38ca7_JaffaCakes118.apk
Size

30.4MB
MD5

2c43716ca9b5283e0e0748dc77a38ca7
SHA1

de1dc39729182e2bcb0068c002cdc1ff42321714
SHA256

4dae7313a796cd664f1caccd607d302bec4d561d5cd17bf480edbeae2c241bc8
SHA512

a3495cea07eebbd26c61304175d45b56724aaa9e7df6f3360ebb808dc7edda6ddbd49e50b44e5cf029cbb90d1f3d2da1761d3c060bd4597f58fac305e9eb548c
SSDEEP

786432:eQ3SPVaWXCoaOGDczRxt6zyetoRajohYoEnbqVXY2Gke2xLDg+4Mcr:DSnCcGDMLcSa8h0b6ZS3r

Score

7^/10

discovery evasion impact persistence

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.ubisoft.accovenant

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.ubisoft.accovenant

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.ubisoft.accovenant

Checks the presence of a debugger
evasion

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.ubisoft.accovenant

com.ubisoft.accovenant
1⤵
- Checks CPU information
- Checks memory information
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4265

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.ubisoft.accovenant/databases/DownloadsDB

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.ubisoft.accovenant/databases/DownloadsDB-journal

Filesize
512B

MD5
e5a68c86f4469a946f431a0125701d45

SHA1
6036dcfb43237f5d1e6d939bba52b0248b9c01b4

SHA256
b18d3c0f543f5929e3e95edf378101bc7a7b82f8e4209ca4608f1df184e08f85

SHA512
fba188f6e26058c9f371e26b300d293257a32cfafcd3205b00c187231c6ea92abe06f9166577db1479de02e36d9d83da8646a03fb3008a6a7240e5af949c09bd

Download Submit
/data/data/com.ubisoft.accovenant/databases/DownloadsDB-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.ubisoft.accovenant/databases/DownloadsDB-wal

Filesize
40KB

MD5
559db76c8af7f9e766ea5b56f56cc480

SHA1
92928ad6268671d1486332491615c0811237a0b6

SHA256
0794f7688f065fa1d3f881af64f6def26b1f7e791c6d7c11fbeb26b982007566

SHA512
18daab22980c9bef567cf175e84fc7fa9b41cbdbed5dc6211cbfcd83d14cb430da1c5ff757a5165ee6ed6030620714046866e50ae05cb400b36c82c2f10dea23

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/663D5E910356-0001-10A9-6C6B0FAFB9CABeginSession.cls_temp

Filesize
79B

MD5
b113236708a584ef35289261ed00aa07

SHA1
75afe47b8890d821b32443b2f707cb09ead7cf2a

SHA256
3d4d75a1c76e55378e6697112a0e37ac0070ad78c671d0780a728bfade08253b

SHA512
dda5c948f6762a3d100eb8eee7f1db819a31bbcd949623bb995b8e5e22d189e5801f91f5d17158f6f2c465dc34bd6d68d3231805d7f948c9e7f8b56387c6886f

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/663D5E910356-0001-10A9-6C6B0FAFB9CASessionApp.cls_temp

Filesize
135B

MD5
89968de747ceeff6c4bdcc3c43e6356e

SHA1
3ee8974366f176b7fd69ef22c4c85258ec46ff82

SHA256
865ef95ee503addc78fd7674e6d76f6333ef95f1472ab00298a74ae25be5fa61

SHA512
d93729203cff50ee64da0d636b9d832f4f27868f8ae611b768f12c5f109a20f1d95a30e27d41196b5caf38be7e8a2f35a309bc1d9e7e5e8a5788200b78b33ef6

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/663D5E910356-0001-10A9-6C6B0FAFB9CASessionDevice.cls_temp

Filesize
131B

MD5
3ba5d9be9bfc1432a3307fc5bfdfed65

SHA1
8305000930c3e752842fd8cc24ef6419418ee9ef

SHA256
3f175efa0248799791995b24aac9b8ab23b9c90ee882535ad9789161b45495fd

SHA512
7983c3599c08a2ba207b47a725d6955009c71bd3dce7ec146e0ecd669384b97cdf72e43be2ccc9c3941de8fdc3e936ffba837e44b743c2cd6c590d858df7f13a

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/663D5E910356-0001-10A9-6C6B0FAFB9CASessionOS.cls_temp

Filesize
14B

MD5
9b3d4522944ce6396563812bfdb92fa9

SHA1
6d2a6133c8f01938a48ccc77ef86ad8ca335c020

SHA256
d32805d685a3f50caa7f1c0bd7c8804c4d937a866513289f60e3184f7a591ed9

SHA512
091d87643712530bf9006135db42a5a50742bb5ca3026bcc5f2c1c17bf4fd984a8938d29263b0abde3d15cac196d2230902534e200b0b79485e3a1bd97d95727

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/663D5E910356-0001-10A9-6C6B0FAFB9CAkeys.meta

Filesize
24B

MD5
d3852424c0e36c89cf69cd8f4d681be9

SHA1
e97b2ea013444616e22e7406631527a175580e6e

SHA256
e92c16fbb5ea797814b287eab33081cd97e4a3b4e39fe1cb388252bf86ab2f11

SHA512
6efb725c4878628d947adacd702e6099d02a07e3d098673709c0113908f4db6e774561a37fdf053c5ea280921ab1f1bcc1b7918bd7231fbdb4516913664f3d57

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
523B

MD5
185e70b8d77b8a946e575e6c7e529477

SHA1
8f927e3adbae4f4519ca56c3d60347f8f1be89fc

SHA256
eb38d56f2861dbf5fb74d4dce4c26de30982f2e9426ab17ef66eef43b6ea07de

SHA512
9e5bfef1ec1d416aa22a90d2ad163c3ac96a33c6553b7705644d070c22e20b1dd647aed5e4c0ec82c0a9c4fe7431c9e85dd98e473125c765666357d9f8ba75ec

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
2KB

MD5
44a2da2972b2a55cacc02b5e8f99c77d

SHA1
e23cdfe4346aba42b8c82182475278aad9819732

SHA256
4c9506fb5bc62a36d87887ad0176ad73c1220e8b948f01ff5a83c235c35738a9

SHA512
c3c3e0593713af46fe76f10a52d86f50c348875d8f53981bb45818af5790c4f236c5ff4dc2e312ccf39b17fd125db4abffe0cd62f8e03449c11ec20c2af30936

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.ubisoft.accovenant/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_5b897722-b87c-4f87-9aff-5b4f43922fe9_1715297937967.tap

Filesize
401B

MD5
1d5e339b85e96d2d6e742725ecbccbde

SHA1
95a29af81035171658ba62252d0d277fdb53a84c

SHA256
5ff4c574a7e09026462c931029b8f488cd81680e255ca9838bc1477068602a36

SHA512
b820e5eef28d2e057d87a00eb71a4cb136be42b7a3d3e95ba1e023cadef1e421157bc5682553c3dc5bd73b88d77b9ba8e69257b88149cf03666628183bc3a69a

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/Unity/9e629434-ee87-41e1-aa02-9b05ce55b463/Analytics/config

Filesize
293B

MD5
8673a8ac0b06a9d056d08d62f857ba4b

SHA1
a351bea1932270bafbe468584058fef20dcfc31e

SHA256
83b3f90c4edf1f122c8faf9784ca0aee4dd017c65493ac181c1814211703db96

SHA512
edf28eb7fcef654f139285d308f817ee230d6f064a4c865109d6dfe6f73c11f8f35737c8159c8a302118237ab980899ba5773f547cc9da4028643a53b08e324f

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/Unity/9e629434-ee87-41e1-aa02-9b05ce55b463/Analytics/values

Filesize
132B

MD5
f4fc584463db18d2f51a352d427604f8

SHA1
5b89ac635522ac62012e8a55853904399988da7e

SHA256
db0aad0aee5372043afaa8b758fd7cc28dd2e755bae748e238277f410861f6ad

SHA512
02aaafc391d5cdaae7cc988794d9611007f3eed1bec268a8376fd91eec2b06681bc5e98cd028c48653e0fb7a36a495e80fb8ddeac7137005b92261fa139edb50

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/Metadata/global-metadata.dat

Filesize
8.6MB

MD5
94714527c86b402973165d1151315228

SHA1
043ef5ce8fb77def7b9ed01919c9115e3862d65d

SHA256
7bc74df62fa3489578ea2377ac06a48d7fd29d2dd84678eedc3fe001d12704a9

SHA512
500cde55486632a89890559d1342cf75226d95a3f82929b0f263748229626fdaf70c7c40743f97c5e9ecb3ce639270e9145d140a4c2a867d62b0e3a4488c7934

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/Resources/System.Runtime.Serialization.dll-resources.dat

Filesize
2KB

MD5
30d30059f180a4073523c86781081106

SHA1
96bba8700090dbf98ff6ffd86e945308be9f7ae2

SHA256
598b68e46146a2e7036a7a462795cb2956abb7ba8bdfc9acfec4fe0aaf0562f5

SHA512
20ece472fccfdb798c32c6c2c6ca724b4f094f771ac0de4338d50c20ad7dd378ecd770a6adf73940f863eb8637af2fd2b571c87c8ca3f73b7dc62598c69e50ea

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/Resources/mscorlib.dll-resources.dat

Filesize
329KB

MD5
21d06dbc8af6432b2b49536ed30609af

SHA1
11a1c0e2ab2f8c06fe4507535ed47e0dd279a60d

SHA256
c5baa176a5b72cd545266340e42102d393a5e43d38c95796bc828918bb95277f

SHA512
2971f54eaa14c3ce6e2352e5a1aea5b044f0894bf4eac92de8cd92515b6473b5ca56ebfcad4369a9d4935cbefea2540a83f332fd4d832c37768310e8776ceb5e

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/SymbolMap-ARMv7

Filesize
1.2MB

MD5
a3d664aa4c09e95bccc909571b757442

SHA1
4bca06ee0222eb2321a7a180e4625dffb1760923

SHA256
d78a468415526a4738e418a570bb58e5f34474d266eeaaf58d7d76cc72d1715f

SHA512
7f747afd3d105d27e4113cb3392934ea3ab52622fb00820ade903939446711ab2d4235ede3adc2b7e063d77af6b4b86e3def99d76eea94cab26aa2367d7562aa

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/1.0/DefaultWsdlHelpGenerator.aspx

Filesize
56KB

MD5
66fed2411c14a0fc8ce4c593ef601bfb

SHA1
4680a34aae1193f1e4a6aac1a5dd3c307de257fb

SHA256
d87d5196b2ae2abf4e673315e1fd22c3a44df80192f23e89b78108579c287524

SHA512
331874a9956c87db0646e4d21937a88009804a59fdf5f5882ea5b1dfb7dd7ef17724e09877d98f52e7327bbf38a46dde0c54d5c85f1e860b88322bdfad64679d

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/1.0/machine.config

Filesize
16KB

MD5
4bad452a2ffc4c6f982e2f43fb44f6b9

SHA1
4445d53dc755ca2f977b01bf9d77357b3dfb0cc7

SHA256
eded908c507a7a230ee7ad3146d8893cf140638e6eaeab58bff05c95c2f3a7e3

SHA512
1611968d2c19f3c9472a43d692a4451fd140dec1d6d5da6b819d33e62936f1d69d69e65c13b893158aacf985093bd7167f50d9c80c0789a79303fe66a9ad956c

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/2.0/Browsers/Compat.browser

Filesize
1KB

MD5
0d831c1264b5b32a39fa347de368fe48

SHA1
187dff516f9448e63ea5078190b3347922c4b3eb

SHA256
8a1082057ac5681dcd4e9c227ed7fb8eb42ac1618963b5de3b65739dd77e2741

SHA512
4b7549eda1f8ed2c4533d056b62ca5030445393f9c6003e5ee47301ff7f44b4bd5022b74d54f571aa890b6e4593c6eded1a881500ac5ba2a720dc0ff280300af

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/2.0/DefaultWsdlHelpGenerator.aspx

Filesize
59KB

MD5
3b3452c399f27a24ea5a589c7bfe750b

SHA1
b06cb1d09ad3bbdf1d8214c910e3da2a228d113c

SHA256
ae044cd9cc2c7c42f8864195125ab440472d657e5f0d55e131f7890bd45c518a

SHA512
41c099350159e942be8bc04c8f59c7fb0fd4bd99db46f1c0158f0fa053c08ae0c73e9d169f6816b77376283cce5beafdcfe5d3d5e3b98e8b358d67c34b954a04

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/2.0/machine.config

Filesize
26KB

MD5
433d143955ab359dff61c0bff982a176

SHA1
7eab623c58d853d733c0a5e586a47e09c4e3efdb

SHA256
531d0d5bc30466a8a7ea6c032639721d7f16aab57c9701ef0afab5fdb432792f

SHA512
914e7043806fcc2788dbe388f94a2c9cbc6b0d5eae59609ee411a4815926d879b05ba8f338ee07b88e95a44304ebc9cbefa19a948fa52ffc0f786957c9729c39

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/2.0/settings.map

Filesize
2KB

MD5
55dac562878b7dd98ee8a7ad203a26e6

SHA1
d16baa15e7d3042bcf9d7318209c696f4daf2cb0

SHA256
ca89036b7d7f1ae9311a6a2fbcf05fc5b997bd43fd21dd54e11c18018ef65f08

SHA512
987c5cd86a9825953de670e5c15404694feb15cd5fa9afa8af4c2d5bda9d805839c9695d44122b32e0ffafe08d720c3df58000e89c8822fd9a5eb28eaf2ad478

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/2.0/web.config

Filesize
11KB

MD5
2b6303c4f12762b71051db6e947f90a4

SHA1
a4d7e05516f63d6ab67327b299d4fb2852cb840b

SHA256
3c1a76a5849074b437d297656a208a3bef6d84b982153542b9c797046c601dfc

SHA512
80f5da60654e1851ef21526e434b32d94e18883a08bacbbaa0e1f85b80469c46510b6ddb9b429f16cc4be89c6f2bb2627bbae9cb1d0c7e45b665efb7721c6d86

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/browscap.ini

Filesize
304KB

MD5
378be809df7d15aac75a175693e25fbb

SHA1
2d5454e161de8a5b65910f27bd70d9d0ad8fa476

SHA256
4ddd50f31fb968f30bedefc253a46dc3f2890192d05cdaa9e0a64a056eee807e

SHA512
d0d181e806cbd2c016eb0a8786f7d9db877463eaac0195db4e891be111c9ed87491a1abcfa0d9ed7c2743e004e1f4a3f4789333d0b535e63358c672ae833c363

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/config

Filesize
1KB

MD5
f95c345c1c53b820487f6b72e62d5485

SHA1
957e4e50e74c50347af92abf240c2c7aab3f3f79

SHA256
b585c70c70c88b3e03489361558f5d711c2ef71df9baaf37d92dbf95fbf6cd92

SHA512
6b06434d07ee51be064a3efdca65b73e6c8e7560b43fb61633b08c7d2a0d792fe0670e57088c1dabd23929e0b7f7a27f65f503f2b640587042c8bbe98946368b

Download Submit
/storage/emulated/0/Android/data/com.ubisoft.accovenant/files/il2cpp/etc/mono/mconfig/config.xml

Filesize
25KB

MD5
f34b330f20dce1bdcce9058fca287099

SHA1
936520d5bb5c00a1985d7a4c4f0ef763a9031862

SHA256
0c56e34c69124510fa8c19e7b4c2ca6c1c4ff460ae19f798dd0ca035809e396d

SHA512
d6d4a8321eb44c117755a41a2590296be86a0568d27a5347f9d7f32f2d151d8f7e169675c83faed2dab5ad0f8d81858f8cd1167e439cd4bff7e68c243e3544fd

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads