2214ab07c8641836d687bcb48bf6463b192d2b6719bf140f7599f82cc0b7f066 | Triage

Sharing

General

Target

30db97839a17e5a37d083a315fef0a28_JaffaCakes118
Size

939KB
Sample

240510-y1vwnsae62
MD5

30db97839a17e5a37d083a315fef0a28
SHA1

f5b2c2cfda0ed2e44bd358e77baa7be64168eb82
SHA256

2214ab07c8641836d687bcb48bf6463b192d2b6719bf140f7599f82cc0b7f066
SHA512

91b34913f57d05e6904788c448a8a2e48a98bce6ea645620a35b3f0c88ad9e40a6a70a0186641d70e10b10fd7e3897219de6723e19bedc715e4b3df08d0834a5
SSDEEP

12288:R8G/4vFJXZQXkKy6hmJGL66vMjajil3ZJOL6CsYIjP3cryKuV5G0ipUzMV:uFJXnQS0vFjW3OL6RjPcrlI5GPpUYV

Score

7^/10

android collection credential_access discovery evasion impact persistence

Malware Config

Targets

- Target
  
  30db97839a17e5a37d083a315fef0a28_JaffaCakes118
- Size
  
  939KB
- MD5
  
  30db97839a17e5a37d083a315fef0a28
- SHA1
  
  f5b2c2cfda0ed2e44bd358e77baa7be64168eb82
- SHA256
  
  2214ab07c8641836d687bcb48bf6463b192d2b6719bf140f7599f82cc0b7f066
- SHA512
  
  91b34913f57d05e6904788c448a8a2e48a98bce6ea645620a35b3f0c88ad9e40a6a70a0186641d70e10b10fd7e3897219de6723e19bedc715e4b3df08d0834a5
- SSDEEP
  
  12288:R8G/4vFJXZQXkKy6hmJGL66vMjajil3ZJOL6CsYIjP3cryKuV5G0ipUzMV:uFJXnQS0vFjW3OL6RjPcrlI5GPpUYV
Score

7^/10

discovery evasion persistence collection credential_access impact
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries the mobile country code (MCC)
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

collectioncredential_accessdiscoveryevasionimpactpersistence

behavioral3

collectioncredential_accessdiscoveryevasionimpact