Extracted

• • Target

    277197d06a08fc30d53cb2ae4d104a65_JaffaCakes118

  • Size

    4.9MB

  • MD5

    277197d06a08fc30d53cb2ae4d104a65

  • SHA1

    112d458d90bd4a376e8703e05dde99478238f6e0

  • SHA256

    ffc5fec63d4ba736708db32aa2494449cf0a61c1f8025b99b361e4a7539806bc

  • SHA512

    5e91e8a6a925b7d666f088de2219821e009c6f5651bab9a733c1dec0bd952f713033a2a0c33f0f8894964a2290a051bf2ea5eea18a5b323f63c6fb338b76b51d

  • SSDEEP

    98304:axpzhCz/He0AqP3x+HT1lRTWKca9A9eNVsb/ryO:WVmHekPCxDaK7A9e0b/N

  Score

  8^/10

  bankercollectiondiscoveryevasionimpactpersistence

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    bankerdiscovery

  • Checks CPU information

    Checks CPU information which indicate if the system is an emulator.

    evasiondiscovery

  • Checks memory information

    Checks memory information which indicate if the system is an emulator.

    evasiondiscovery

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

    evasion

  • Queries information about running processes on the device

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery

  • Queries information about the current Wi-Fi connection

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery

  • Queries the mobile country code (MCC)

    discovery

  • Registers a broadcast receiver at runtime (usually for listening for system events)

    persistence

  • Checks if the internet connection is available

    discovery

  • Reads information about phone network operator.

    discovery

  • Requests cell location

    Uses Android APIs to to get current cell information.

    collectiondiscovery

  • Listens for changes in the sensor environment (might be used to detect emulation)

    evasion
  behavioral1