c4126f476a6c3221b53ac4ff3072f735b8d5140045ae2bb74cfca80add82d2ef | Triage

Sharing

General

Target

2b9d994a3271d520842938947b68e169_JaffaCakes118
Size

7.9MB
Sample

240509-zhay8agg78
MD5

2b9d994a3271d520842938947b68e169
SHA1

c28e14165e1c14eb0b586a2c78f7f8dd04dd2fda
SHA256

c4126f476a6c3221b53ac4ff3072f735b8d5140045ae2bb74cfca80add82d2ef
SHA512

13c290c32c746828293ff15e7c6529ebe67e33aaec437831fc931ef7e1012cc5e8f6d07804993e259e2eb5fc9450c95c2b82dd9f8ba5bc145fb3ea8a6cc465bf
SSDEEP

196608:HM8mGgAH9jWEjl7pS8BndRrmYdAdaoj5lNCXxG/UWyM:iAH9jWEBRnzJ6pF3Cs/UWN

Score

7^/10

android collection credential_access discovery evasion impact persistence

Malware Config

Targets

- Target
  
  2b9d994a3271d520842938947b68e169_JaffaCakes118
- Size
  
  7.9MB
- MD5
  
  2b9d994a3271d520842938947b68e169
- SHA1
  
  c28e14165e1c14eb0b586a2c78f7f8dd04dd2fda
- SHA256
  
  c4126f476a6c3221b53ac4ff3072f735b8d5140045ae2bb74cfca80add82d2ef
- SHA512
  
  13c290c32c746828293ff15e7c6529ebe67e33aaec437831fc931ef7e1012cc5e8f6d07804993e259e2eb5fc9450c95c2b82dd9f8ba5bc145fb3ea8a6cc465bf
- SSDEEP
  
  196608:HM8mGgAH9jWEjl7pS8BndRrmYdAdaoj5lNCXxG/UWyM:iAH9jWEBRnzJ6pF3Cs/UWN
Score

7^/10

discovery evasion persistence collection credential_access impact
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries the mobile country code (MCC)
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

collectioncredential_accessdiscoveryevasionimpactpersistence