4ba057e7cef1e49089e4ce6eb7e6774452195e8b18e19776d4bf0c840e21e877

Analysis

max time kernel
154s
max time network
168s
platform
android_x64
resource
android-x64-arm64-20240506-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240506-enlocale:en-usos:android-11-x64system
submitted
09/05/2024, 07:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

28e52e897d16e1dfa670232cb42669e9_JaffaCakes118.apk
Size

5.9MB
MD5

28e52e897d16e1dfa670232cb42669e9
SHA1

a96a1db3cf72652a8c2a3e4f16e6fe97f83b2e59
SHA256

4ba057e7cef1e49089e4ce6eb7e6774452195e8b18e19776d4bf0c840e21e877
SHA512

87e9535014c86f73ee73cf069a6fc8c7057a5e994dca5bff9b38d7d9b661ce54e5fccc2fd1147bec03eda85594865783dd56fe0effe34440ba2004444908a6df
SSDEEP

98304:nzkK40Bn5rKfSO3RdZwhUyTCHPndYaaSQinFZ6/qncPNArfiyJh86JImS62XF:AK40Bn5m6O3vyhUye2vUn6/jg1o66xj

Score

7^/10

discovery execution impact persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	br.com.oneside.deli.acai
Framework service call	android.app.IActivityManager.getRunningAppProcesses	br.com.oneside.deli.acai:Metrica

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	br.com.oneside.deli.acai

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	br.com.oneside.deli.acai

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Schedules tasks to execute at a specified time 1 TTPs 2 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	br.com.oneside.deli.acai:Metrica
Framework service call	android.app.job.IJobScheduler.schedule	br.com.oneside.deli.acai

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	br.com.oneside.deli.acai:Metrica
Framework API call	javax.crypto.Cipher.doFinal	br.com.oneside.deli.acai

br.com.oneside.deli.acai
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Checks if the internet connection is available
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:4830

br.com.oneside.deli.acai:Metrica
1⤵
- Queries information about running processes on the device
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:4897

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/br.com.oneside.deli.acai/files/ZPkFS.log

Filesize
12KB

MD5
b5ae360c91781ee8e1e7eb3de042d521

SHA1
0cde2fded8b11554c2f19fed0f32f7104fe3d61e

SHA256
37bcf3a5021d9ee760d1a342cf4ca9f9f2729bc73469113928901124686763ab

SHA512
50892f239fb847e0f363aa42fa39ef5df3fe6b57bee62a58af455c88b443eb6a672cfde894fdc034d4ebb556f1eca967c18e1a93b9f2705093b8cb576579d725

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/credentials.dat

Filesize
234B

MD5
65197ebf2e0237c334a9274c6115a662

SHA1
c015e3abd20c9d524dbcafab959c51b13073af54

SHA256
bbbf4bba8d613fa313c53d284dcc70e85d1a3d36a5c5521974d50ed1428c62c2

SHA512
f8dd209ac9b07ac2c570790e468312becefe95218ee29f2562531e1fef76203010fb6d5dc0605afb2662bc7a04b13b2cbb2b6245a0b4520c153b4c6d1681ac03

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai

Filesize
36KB

MD5
ced24daf1b4d765c3850a4acf5737642

SHA1
e093f4da37a62108f79f710745b147f608be0a94

SHA256
5a67b1483be19640105ae1e4399cc3fb28550539cc8c3b511e1fb0cc9f86dbc7

SHA512
62295eec4bce1310d3caf24469af9659a5c7fc78956f500d56fad4060c670673d6090e36c1f22cebed8b134b432bdacb395cdffed923f78792352ed97a9ffe37

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai-journal

Filesize
20KB

MD5
561e8f07ef7b3ca85587c696aef746be

SHA1
4f057cf9fd36f7d90d889b34648d3a6e6d84a3e5

SHA256
697acb7411cccb65f2e2251aa6f43ae0d9b7ed95784100a1b716ec9944368e97

SHA512
4f3d473b24293eb1f2e5feaaf1c198f4b42d982e651882b54a03a61bb150be75975525e9778c7ba3d7d3b76b5098959970027e1864281ebac6e9e39ef6b62b4d

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai-journal

Filesize
20KB

MD5
0d0064d59ed1303863ddbe5c85bc3c57

SHA1
ed26b89023f79e40fcc5f1f9d8fc49e85af2e46c

SHA256
2da5cccc6502b96428f2d0b93001835e097349ee8d3b6d741426bb9834ded314

SHA512
c37bdf98d20bb90946de877e900b83aabd5a63bdc517816509341983f88b0b10b1d0dcc3bdcf7c53aaf57e29cc3f6d88f0ab94cd14abad202355172501cab395

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai-journal

Filesize
8KB

MD5
81438079dceb00b24e50a754db9b2561

SHA1
c1b7491f68e3829629883b6cd1bbd6de7e324032

SHA256
bed9bcc3a7e432a89a6a32e8210289b35b164b5caea572223eecdcb236394469

SHA512
157af1c32ca70b5ddb1caa533599e1b1a8abf0666ce0a874692601c75447fc6b40ee6b1d8b05c54d61e5b5108fe343ca1e06d21d4f21ddec7cf7f83e7c1c05e0

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai-journal

Filesize
12KB

MD5
718150ddb87e7f5d45598a0eeee7d211

SHA1
19f37646e36dbfb78375d95b7149182a7991a688

SHA256
08b8366966aeee0b5c384ae01b77c3ceaf618609dc0e311fe08258f7901bb294

SHA512
aacdbc92a61e8b648cdc4ceb8bc629b75070d9c2777b8f648044244d3f6560e29ee0162d7f251142abe6d49f2fc1832dbb1cc46b36c785023c817d2d2e891ddf

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai-journal

Filesize
12KB

MD5
60adbc11802783a21cb0b78e95785a4b

SHA1
0ea7d7651fec83c0d7c1cf6ebdae81bf01c6852c

SHA256
2ca3d874a0fcfc718aabda614a5beb7c744c0751e8c0885a99c123ad434ebff0

SHA512
9d0417ed68099cd675947a8db5e25f26ca5a6180abd5445e7a525aaed31fb500a536776a8133c9ed205c2a3dc371ac82716bc9352bb13f064beea9a3fefbd8b0

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai-journal

Filesize
12KB

MD5
0caf214a083ea32882a649715b1c4ad3

SHA1
3b8ce83e2b93e905a9f8936c5679c42fe214c3d1

SHA256
b48693682a95c153fb3c8d20de5ed2bf37da59d1972ef52317608725674a1287

SHA512
0560f1ab59507fee78942d13300c86c6eba37549abbac44d3de11c6d79b3ca9c4ce962c20de7f1535a509a784d751d751b9d2e66a7d710f8fd1d3ca98e8bbb14

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai_20799a27-fa80-4b36-b2db-0f8141f24180

Filesize
36KB

MD5
9192eb099694453b248595efc7ea2279

SHA1
b3340990c40d913aca41a7432851c37269e598a8

SHA256
51e9bdf94b5a0b7e70b593005389bb1adb628c47993c91eff51baaec01eb3fd8

SHA512
3ef27916221c39c384624022804479bb9e0be4dfb3e513d2fc94743d47363a7208e56ed2b62e2916c140ffab4a9dd95374571cce5fbaa0803e537a443f2bbe0a

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai_20799a27-fa80-4b36-b2db-0f8141f24180-journal

Filesize
512B

MD5
e182f1a253a4888dab0b4351ba6708c1

SHA1
9270fe4cf17703b62c931911949446a9a8695258

SHA256
338716b1d47db8ed1cb16d281ffe0649d4b01336099ffd9f9dc8f5f6a063f9b4

SHA512
303242c549a0a0f9bf6ca4df60965332c482c7a24afead04e82925da001a23d6dcc8b1251c5c15b79922f1e3f792bd0ae18494a64947be2831a5471e0cba2e54

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai_20799a27-fa80-4b36-b2db-0f8141f24180-journal

Filesize
8KB

MD5
9dca4dddbcaa1d664d41d6e5e0a9526d

SHA1
e708c71701bdb0a721e8a20fee8dd13754afd8cc

SHA256
9699e20adc9794ad18f5008e6e1e2a4a5028ad1216afc1862614ff30c6d32ab1

SHA512
160994a89b95096e989e2acf8e509293710be578ee78549f005820c6a0c9c11fa74c43b6dcd13a7713b0a859daa79d688e771ede6c711be129892830d046a711

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai_20799a27-fa80-4b36-b2db-0f8141f24180-journal

Filesize
8KB

MD5
359f321b279bd3c8a500a3e2a0ff0a37

SHA1
57948adbd4aecb174b14bb69b45a2a35539038a0

SHA256
f9af3ace561f963b0c518723d747e85f6acc563acce4b7804e843755919b1766

SHA512
9a5db55137a72114f3cabc71e5ddc26dda6956b6cef1d974c38305b201c6ac87a7d8dafe4a475eefb329702ec2ad3ecbe16ca15625c94a552d11b9716d78936b

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai_20799a27-fa80-4b36-b2db-0f8141f24180-journal

Filesize
12KB

MD5
3e20f95711d736bf3f34e9835da9826e

SHA1
11998f488fa49e69832ca9e12bb7348a4db5cca0

SHA256
9d039424961eed4fbac81e89f98745a949b645718e90c40ce55a646cd67992b5

SHA512
1b266dbdb407c86037f855ba50a097118e68c56b64cf84ca562ab0c22437b0b5b7136a99f1bbc467738ff361a84b5a1e3858d96d34ce8cbf82e5c27fc74da391

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai_20799a27-fa80-4b36-b2db-0f8141f24180-journal

Filesize
12KB

MD5
fc08e8c284656fa5c626738707ab7717

SHA1
0f208d952809c724c348c29491694fd79030ed93

SHA256
34edecc99b8d7211f073a140a5a66d4977f455d3b60bd7a932025a00f186da23

SHA512
4d946dc41d4e0234d2406ac08508a8edf191fc559259562651bfc9dc709c867eb2fbd857bce30defdb8fd97171723da55d8eea7c056df14379bc15553f8dc7ec

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/db_metrica_br.com.oneside.deli.acai_20799a27-fa80-4b36-b2db-0f8141f24180-journal

Filesize
12KB

MD5
20f70643e700f4ab1f666429f048f11c

SHA1
3882bce2947b9748e33e65d232cdaf5385674fe5

SHA256
98de256e615b1a60f982fa9b3c7d57591ac91b1a1288e14c0fb3a86963d79237

SHA512
7cff1b5da64ebedc3afb6d43fe1d9a7d19a85238d976c4134889db4a1dff843ce4c3408419102c8dd7882b5e8f8b71b3d58e74f624aa093bfcc0202c5091cf8f

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db

Filesize
20KB

MD5
7753da6c562dbc98a28e472f4f29e9ed

SHA1
13f1de2312c7a058f5cb0f86d409a6780bab3868

SHA256
7f88551020ef25b292e74e8164244227b50ca5e74db7f22ddabb4271cc7e30a5

SHA512
ab6cd68a038142d38b8f262b3aac41da3ee7b6d4359d30338119b39d87edd6b74a2a662790134848fc7477be86f2155b33053ad297079950d67f078f8b3619a6

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db

Filesize
20KB

MD5
49d5e7d10c5013dd8088312591d6ecb9

SHA1
e2eb2438ba9664447e801efc841bc873b26b11ea

SHA256
3a56d2ad105f94f5c3f6e4713dfe504a7acdd2c68178f80b15a8a5b53ee12728

SHA512
daff8aed309222adb7fb90120b3aacc113474b4918d2ece4a4739b85331553b1fe0271d3adda6dba369156873373c28772b0da0960489d15edc7c1060c9940b8

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db

Filesize
20KB

MD5
d7ba57e1897a9339853d5804f2fa742d

SHA1
ae8f9bc9f8be70604a46acafccdb8419b1f2dc0b

SHA256
5d078bea267fc22258ec0cfcee3af81d729f2773a5a20f7bbb809585ae81d362

SHA512
e1e715e2365433f58cdc274cbff06abdea134c30ce682d916203a1165b0f963f556a77c1c921de87abc2880d1c7bc29a6626a0167ed3ec206101cc59ec1f6f70

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db

Filesize
20KB

MD5
27b511cbbf80deda2df6714f92c512a9

SHA1
30f789f75ee8582eb81450a9d4ff7fd2af0f550f

SHA256
8747aea1ea53b8c722d2a8d7ae3a5a39163fd6eedcfdc76088a85662737238be

SHA512
7ef0f3a9104bf415ece0ec3c3ac4f1d8bd9ce31f205f8f6536c1e037f1e95fbc294192b03423375525369ac05685b0e28315b0fbf079c3442d4d041ebc50e3b1

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db-journal

Filesize
8KB

MD5
9551496993eff730eebbb02bbb9ff41b

SHA1
3d7ebd20d021721993f65c0561bf1727b01fec11

SHA256
70998f4ea6385566fb7f36e8a8565aaf3c402265585b3289f4ad101db49edce2

SHA512
1ea7e38aebea6aacc169dfe363cb4dacd24edbb31fff96ec7f43b64f135498fceb77d7006daa21b310db57faa1e16b006cbc48ff6ccf9e09b9c4f7101a69458b

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db-journal

Filesize
8KB

MD5
4abee9b05baeb4b52da0de41a62d7a03

SHA1
c414951c8ecb81485c8414184aa7213ed1ae8618

SHA256
75facb6c6999b26e52c457738af92c5216e5a8c57c9000789ca4c2092e428219

SHA512
e37a1a49351b8adc57d41d5cc9f67da8415376bf8d85ee576b68b9f2a1c4c50ec09c90f67336a576f92197e04fd0ec49cf82cf8c40400f97a77a3b042d3f2dec

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db-journal

Filesize
12KB

MD5
57d9eead2ab341d60262527fcc4bff09

SHA1
b90c0c0a4fae79bee9941b12cf0e16177e8f2523

SHA256
7088b37fc930b2faa505feaa9ec6390fdacce6b47312bdb067dddd069e647674

SHA512
c2d0585035cff1583d590597e158870d4b64077e456d0473d873bb6652639121ccd4f956f93966ff457d58bb7a7ff77b5539716d4a77ec80d769b074aa0fcd0d

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db-journal

Filesize
12KB

MD5
ad2ac8a2971a17d005a623a14893fc14

SHA1
dfcf9d1bf22627bfb74ba1ddbf2603166e0fa20f

SHA256
cdf957aa8c67e6f9ecb2c78cb55a2e58688ee4f093664d1c64d3d09bb28c52be

SHA512
c875fc205730bef9773a5d9317d1faa68c482639adde2b3cc50f442e6c09867e88bdaf015a7e8f060b80562e66053a294762a8ffec9d1990b90535663e27ff1d

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_client_data.db-journal

Filesize
12KB

MD5
8962737827a54e21e99212ed6e1293ea

SHA1
9d8b318eb1a3858a2bc24d9799208c47cefe30d3

SHA256
399dd6361c95b7dd8ca6dc0e944e532c832cd68e79e680607be2ff0df9c0d2b5

SHA512
8511c8df113c45ffd53d3a736aac4464a9c8fc4df71682a21be9b6b522de7388f90913bda280461e9feebfea7d3f209070ac743d957c712bd53bef3ddb2475ae

Download Submit
/data/user/0/br.com.oneside.deli.acai/no_backup/metrica_data.db

Filesize
44KB

MD5
ee6ff7c0c51702f3f316327aa18f6cc3

SHA1
233eb07d80f8b4a4127bdb721317009736f04c5d

SHA256
7a7d41603fa5e3d9a2214e52ec38f4873b5d0bc34ebc07358c564d473b5d4316

SHA512
c31c1298c725af693a9619c14f03a71321d8177355cb182e404022c3d0d8870dad1076667a3324dddd1e8394c1726970d314a895c02840c9d239a5c80bbfa25f

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads