Analysis
-
max time kernel
152s -
max time network
159s -
platform
android_x86 -
resource
android-x86-arm-20240506-en -
resource tags
-
submitted
11-05-2024 00:29
General
-
Target
31d204f580e01f8439cf87e815f6d143_JaffaCakes118.apk
-
Size
30.8MB
-
MD5
31d204f580e01f8439cf87e815f6d143
-
SHA1
a59921eb65bef582c9e420be59fbd88cd11858bf
-
SHA256
d2830c8e0c3f2896cdd4e685256883ea95077ca3cb7a54e942622b8a714fa6f5
-
SHA512
7863a3152a0b92f60ab2063250bc66491ce07260c24935903b58d8383fbc16168a32cb0999e566b5ba6fe124236ced46bf80d48a7ef3cd6abc3560c11834b514
-
SSDEEP
786432:sIThbMVx+FRLUU7ZiaJ0LrW4YlxXlzmyQcIYrTPZCEytL:LbQ+FR4U7om0LrWVvN3Sx
Malware Config
Signatures
-
Requests cell location 1 TTPs 4 IoCs
Uses Android APIs to to get current cell information.
-
Checks CPU information 2 TTPs 2 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information 2 TTPs 2 IoCs
Checks memory information which indicate if the system is an emulator.
-
Queries information about running processes on the device 1 TTPs 2 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC) 1 TTPs 2 IoCs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs
-
Checks if the internet connection is available 1 TTPs 2 IoCs
-
Reads information about phone network operator. 1 TTPs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs
Processes
-
main.opalyer1⤵
- Requests cell location
- Checks CPU information
- Checks memory information
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
-
sh -c id2⤵
-
-
id2⤵
-
-
main.opalyer:mult1⤵
- Requests cell location
- Checks CPU information
- Checks memory information
- Queries information about running processes on the device
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
512B
MD55508f09e8cedd115891b6cd23dac97ae
SHA16dcd140761fb45283b04106efcc234b44dce7223
SHA256e23deb7785cbb0b6720f1fbd66f43caaade15607f579cecbf369ef450c046ae2
SHA512656f081a551a1a821462be877f4df5df7973ed02d849d460e8aa21fdbb849080738ac83b87b6917ee4b5fefac0b2f132d91a0059d865c10a4b19dd0fddfe42bb
-
Filesize
40KB
MD5ecb8f6296d620ee33393d129a94400d4
SHA1a073a411deb32489e3a7d4467c1d0dfe054abf70
SHA25666ecd011af5bbf52788c42220035f4ece2ecdd12c916614fc1687ab44658542b
SHA512db5256fe0f98fb747451e154ed1e004cb11075bd45467c4621731bf7d848200c0b16e9d0d7fe4960864e60748b726e8accdf1be7c9aa314465da3870e7b0057d
-
Filesize
4KB
MD54cd3b58fb019c49142df1f5d40bd152a
SHA1a3ea8d113ae32bc0dd1b3f1be4d310afa585b6da
SHA25622af87dd08bee029b33251532fb69415be4492865803135f68e0fd39898fec08
SHA512d929f84c94691fc333a2f871f48f566f056db5117aaa51906e3f0b7f341c48947798f456b7899ee30f8785685593fac8efd4b6058d9ef2b4917c406a4ec7c907
-
Filesize
512B
MD599111ee21fd3e2f70094afbd1c55256d
SHA101ef37e4c47a372eec1f9a9496ebc9ffa4e89e2e
SHA256fbd3534f0818d7915803bbcddf91776216cfae0829e79db1edb0c47b18347614
SHA512f26a4faa06ac12191c97cfcd581e701e256eed366532595742e55f21974f9f09341896d12d596a5f5ceb4d24fe4821f1ef6f237c9ade985104bd1863c27d0a3e
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
60KB
MD5fb9521fe12540dd2619823f75aae0d5e
SHA140b7ffc03cb4b14b3c6218275ed6161929670641
SHA2563862a2c9b9163376ebd3b686270373b6942785cad3e083d5a978ab1c226e4a3f
SHA512ad009f1a2329c505bea400b1a3693a788fa30c8662c147e7701088b5c6fc6962b3b15c29af9fe36eff7818aad199c53e6cda63f3256a30c3835f48e2983465a4
-
Filesize
2B
MD599914b932bd37a50b983c5e7c90ae93b
SHA1bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA25644136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
SHA51227c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd
-
Filesize
32KB
MD572ab49f670926e4b1367ac033996fab8
SHA1014bc08c7a954cd448016acb95ce81ccd4907acb
SHA256eb83e4b8c33127ce285040c5955188c27cc250c2c9a598a1b8f17e281befd065
SHA5125a940ddbc92276b9931a8e40330b695d19a2f2f8c1cc87b2a317d24cda854d5ba96c2cb005980478e97aa847da710362a363d201d36d7a7f6187e50b08f23e26
-
Filesize
2KB
MD5606c9e3d5c7e822f89659426319f124f
SHA1bb3e754bda29014113012945623433bf67b5d9f3
SHA256c76edac8abc270d07638bc4ea5aae4a9ba2ad62a2b485820e4672deb69688efc
SHA5128c8fe303fa0dcf56c744216c8939bcc1f44dcabfeddca970c9b17d4be39996571477bf08dd768cfc69a0f43d818a363da94b76988480d95b34396622ab1224a5
-
Filesize
32KB
MD573f3818e8b884d54f6ad19f41a666519
SHA11d867d789efa9564e283863fa0d3a21229ae12af
SHA256473966b27a11446ee8a293948ddbfc90d5bcb79f70ba14ad70b57c2838e5a199
SHA51210a5821e27fe94a4b4212cce376b36be2ac9d7d89b9c21dc9179280fe7f865fa45ef9f53cc5c717d88604b88788860ce95ecf12412ef1b702d78a3341372b459
-
Filesize
72KB
MD5a482d25e50b53b85dfdc08daf616b980
SHA1dcc9f0ec186959243fea3e6052b8d06670feee2f
SHA25626358dc6dbee706e162f1c77b7d832e81920c4424d68b38d10af44e64d921897
SHA5121ecaa39e97db068b60b6a8fb5764c82e86746fe204b4e972a76cc9d5d164410b9af6d5dd1ea0ddf33efedf44ac9f365e609c44c8f027540b7f96b6c380b7355f
-
Filesize
2KB
MD5e1c6610a34deb8e3f16c2950d075c696
SHA18673db8dfe48630fdca60374116f0adaefe72c6b
SHA25662148f220db81f081172bf484aa6725b864bb73b98e339caa1dc3bd38decfcbb
SHA5122721e4de5b5f0e6bf68e527843c7da8726cd502221320295c31a3f3abb4a52b39d1fed77ccfd5402318f18177ce2d822955016df2db3ee21ffb23ad3171696ca
-
Filesize
2KB
MD583114ca0ce0a0ce27fac66c382acc145
SHA1ce3ca10e567cc3c1c941b8706950387c7040831a
SHA2564888da2ed3f62a4598ff239f0df417599edfc293e6ef3aa7bd52f5c657f17f25
SHA512b681d74993591dd23af259af5dd880a42473528b6cb3d072e01611a9c379ea00e22437d3783da274f408e14d60f6bb5f8ff7b3eba154f1dd9d3e8a57763aa193
-
Filesize
3KB
MD504bb01d63268dab84dd92ed9fd43a19c
SHA186715f5927e7630f75ed1b53ca7baf1d476ea15a
SHA256ecc1316a81b3c7fd60de436bb1451dd17c85e875bef0e0a6e150b6b4077ded6c
SHA5124b9b0dde7ea5590bbacf47449261745c9194ca38c56ba6e2c60916181ab83187d36d8a154ad478ab8ce7e2b0b58b335e15d244fbdd57173c77ff1f875a437c65
-
Filesize
2KB
MD592b2a2eb9bc30b651ad012b5b3f8a55e
SHA118b01c59cdc0259abbb0b25def2c022ba76d0512
SHA25621c76999fbde13525a4ceed8137bf8e307c3e2f67adcda33e94b634253e88026
SHA512addcef9a5721448805a066797423dbb04a1ff43847d70447e3a9416206e80a61b201719d3c2d30b7bef83104bb9c0a8dd54cc3684e5b8263fb6b6c5f774e693b
-
Filesize
2KB
MD51aa0ad181c0fca4af63ab0e7511689f3
SHA11217fcd99dc5b545570c09ae1339e0e204133430
SHA256c5b63e47b23d7d7739f7673a5a571a92684cd930fe9e36f69a00cff43e99682f
SHA512213d6bd73ff0da27fac4d62affc67b8a64970c41c86cea0776834b435a6885b92f93e2a01f00f788a6effb6198c157ae7dfc3c6f67c6dc1c0c7bd1cc12506636
-
Filesize
2KB
MD527fe3c89ba1863a631dd8803fb964f94
SHA1b98f5c39738db9aa78d79372f1098a54a0d53988
SHA256bcd6a886cb51c3319bafa2c811a14ec6d84454a9bddc45988cda2b01b477e397
SHA512ab8c230b82d5cc4c6fcaebafb29ab1bb95f8deeb269231fe45ea7a926e64b37fbfdcc37bc883384ef9d00672553ad520f180d6ef30d17e394c8bed091a99d4db
-
Filesize
4KB
MD5f10062a3e5f1412f5864248744b6dfff
SHA127c2383bedac0cf83b880c269be84a7f2c44b89c
SHA2564653c7eae72e53ec7cece78d00d026c1d84bd312883f4c12f9a405caeb227eee
SHA51282d14a42dba8eb11dcce271b6716d7ba4d231d9264e299f0bc39fd0b06b1ee53a992ae543e095cf0dccf5f21bc5412d61b4cf7d0b868febb686cd982196c794f
-
Filesize
4KB
MD57c5ff08a6788f82e4496a1189bd526d0
SHA1a46af42faa72d9ad69ac7bc12d3c68f3942a29d9
SHA2565c6401c31e452deb8458182e5ebaf0366775685951a0d635c08c464e48b3d6ee
SHA51291adf1985d409aecbdb7746e0679d573917c89f3b738d55e7c371c2910838d7e24c2d92befbff5f088a2ae2ff97b75d3fecb23777e226348f6e967ecd7991b4f
-
Filesize
33B
MD5e0345311d773d08729d9a888a0c9c497
SHA1af2c9a56134d3741561e71291d5aa90c56b6383c
SHA256fb125d85fa1fd1fc36915e74cf7624359d65baab9ce12a3877bc09a1d169424d
SHA5125fd2ef55e68bb8405811e5b9fe625c60563177a122201dbc101d48cca6695266ca55de3dd672e72c1a075cbbec4e1658ec12ca3087f389cac289c772bc6c7990
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
130B
MD5f321656a466363e5192773d92000e401
SHA13a6abe9be1a6f4deffaa98fd27f3449c888d3c4a
SHA25653efd5207de6ed80429ec3c7865eed2b64023a0ed66e0fd29e7f45b708a1751c
SHA512fcf6884bf5ce8d10b3a3dd461fad96cb6cf0bc4129e01788de112551230fbc4d8ea6961b04411d1c7816e248437c4560277069d9c544e5450612abc0e2c0171d
-
Filesize
57B
MD570a42cba408700f9a6c01c7941a8829e
SHA1eab01cc2c0671538795fb0b1146017dc099d0984
SHA256499576707ce2623293166979e59c832be5b8636c64ad39aa63ebcf961910c35f
SHA5128900d4dc8eed0430babbacb72942401bd22ef7fe5430cad90d3ce0c2c53010220d666aa0e2eb1026f3ec81d574c7fa12585b49222a5f15b01637f6ba134fe70c
-
Filesize
32B
MD5494e42a27fb0871f11248c555c8de86e
SHA100c484e8d822751e02e2af3d61e978db3f4539e3
SHA256ce68a19158a26c39afcdfc599f2bcf34afaca8323654a61d280ad2525082be62
SHA512e0bdd8a5bdcdbffad4c1df0bb862c5babdb36e59e1e35aa65d9101291bb570b5a8b75256bc0952779f9227850169d14defa611189948a96c49301bb8c3348dcb