66b44dcc97c31b72a28722a4fb8b15c5b0557d576d16a6819a1f024aaa7d62c5

Analysis

max time kernel
148s
max time network
161s
platform
android_x64
resource
android-x64-20240506-en
resource tags

androidarch:x64arch:x86image:android-x64-20240506-enlocale:en-usos:android-10-x64system
submitted
11-05-2024 08:57

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

33c9725d28c44915277b2756097e81b9_JaffaCakes118.apk
Size

3.3MB
MD5

33c9725d28c44915277b2756097e81b9
SHA1

211ab35aee2078fcd8fdbbecbe6dfdfbbbbbeda9
SHA256

66b44dcc97c31b72a28722a4fb8b15c5b0557d576d16a6819a1f024aaa7d62c5
SHA512

36b9f6856c05df485977f83fc2841e2fb381c7d95a815c78a27589ba102bab87936530e1fb51d6f7deafd838b09c9d616a56cc15169e8602b66275c339fd0480
SSDEEP

98304:CJy7KPSx9r0FNL5D+g64j7BVMHDgXHT/epxOtywXN3P0ZKPS8:CRI9r9QdaAr7

Score

7^/10

discovery execution impact persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

T1424

Processes:

sistemavitto.viplanchessistemavitto.viplanches:Metrica

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	sistemavitto.viplanches
Framework service call	android.app.IActivityManager.getRunningAppProcesses	sistemavitto.viplanches:Metrica

Queries information about the current Wi-Fi connection 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

T1421

Processes:

sistemavitto.viplanchessistemavitto.viplanches:Metrica

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	sistemavitto.viplanches
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	sistemavitto.viplanches:Metrica

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

T1624.001

Processes:

sistemavitto.viplanches

description ioc process

Framework service call android.app.IActivityManager.registerReceiver sistemavitto.viplanches
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

sistemavitto.viplanches

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo sistemavitto.viplanches
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

T1422
Reads information about phone network operator. 1 TTPs
discovery

T1422

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	sistemavitto.viplanches

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	sistemavitto.viplanches

Schedules tasks to execute at a specified time 1 TTPs 2 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

T1603

Processes:

sistemavitto.viplanchessistemavitto.viplanches:Metrica

description	ioc	process
Framework service call	android.app.job.IJobScheduler.schedule	sistemavitto.viplanches
Framework service call	android.app.job.IJobScheduler.schedule	sistemavitto.viplanches:Metrica

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs

impact

T1471

Processes:

sistemavitto.viplanches:Metricasistemavitto.viplanches

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	sistemavitto.viplanches:Metrica
Framework API call	javax.crypto.Cipher.doFinal	sistemavitto.viplanches

sistemavitto.viplanches
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:5056

sistemavitto.viplanches:Metrica
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:5111

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/sistemavitto.viplanches/files/ZPkFS.log
Filesize
12KB

MD5
5122fecc2d464761db5752a514c31fd2

SHA1
e50bcdc94288627df8d97f2720a19d7ea5869e7f

SHA256
3fbf5c53af8deee03f307afa85deb8c61313857bec179b692edd9643eb06c9e4

SHA512
30be1e6f475b68520dbe351f2d96d064fda7ef96a492ae123bb39f64202ff3e574432f6c695e8fb6c5cf434d09c59b68b4b931693e1c96217d82fce6ab37ac65

Download Submit
/data/data/sistemavitto.viplanches/no_backup/credentials.dat
Filesize
234B

MD5
588399988d160ffa2ad15c6936145d14

SHA1
6b40cf73bdb2c32b1d0fe26745291f1b13158c63

SHA256
b5eecc1fd2a1647d9de57348f51a2e0bb659fe84e940d890293fb463efb368c3

SHA512
66d16bbd815657d5b1269e0507a426851338e5d3645f176d2fda0475b8b9b3431d9f65379eed8d5b0b748f6718251b100d29ee06f686137b0c687d763e639a7e

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches
Filesize
36KB

MD5
f3b17c4fe661e93753c4b157c1a64873

SHA1
38376a17ee634d68f08b0777f59e8305c59155d6

SHA256
e967cea7db29cb0a17b44e6afd7313a36424045481a1b278d8e96f6255956217

SHA512
51d6a7a3db70992b757c4fc741ae4a8fbd58f7a12bba7e68a70360b71665175755bd67f8f53b2a10272e2422b64f856ca301ce2461567fc01a3e91f36cbce728

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
20KB

MD5
2174e4c8f7c9cf006fcbcb21b2afb7e2

SHA1
5b59485fd99967cb77e583819a3315812c5b1cdd

SHA256
6b59bb41bfa8eaeaae55f320cfb3875c002f1905adefa86d72f3e6c1d866fe94

SHA512
4cd71a6c2afb698ec2c328dc69947ce152eaf5641eff27e5f5b1355a094ea0dbffb803bb988a99d7bba7c3b7a57619de97e550a745dc9deedd95f50afd50b24e

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
20KB

MD5
3c964a697d0390e2aaeaab29212f5e0a

SHA1
b5d4402d3ffdd826b911fd12fec3bcdfa9e283f7

SHA256
dbba1d70474d265ee43245062d05e94332fe06f0c800c79b819911fdcc3a731f

SHA512
28e523fcfeba589049ec188a57d4b18b57af83508aa85c437656a7bb35b9b6e00c3f2105da6e67fd7e42f251534e80ac5d94e21007297cff62e15c0c01bc6df4

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
8KB

MD5
77baa0231fd6ad903cdee82cfc11dcac

SHA1
c9f8ed5aa4ed8283792d12402b11d40d01f2aa2c

SHA256
e476e877e8aacc59b9a901e4890109e8d28414412952876831e3dade66b9bb4b

SHA512
27e097c1c0c8fc4e1492c253411ad12d6efa56448e7f5f7ea033c7c528f24cb0a3b906d1d479a36e1621ee626658e34010526354f11b012818af75928fcff257

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
12KB

MD5
8d86646070be9b1fd3bb8ad58b45dbea

SHA1
bcc516367d270138f3c8d765c552a3d9f656a97f

SHA256
c7cb1dc88ce356b5aa91bcc477eb8af0d5e376c632235f4e6951a2824972ea95

SHA512
b49f9aa0992927861cc35d99e530f04b87628a8b103951e737ff2e0f4a0e73d435b4bcf93593b5959938526c820cabf5da4e1b4560ea4b7305cf58042c4cdf32

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
12KB

MD5
187d52bf42906c8c0ec4c1f1dcd2049b

SHA1
9d830af32d6061a78ed0f7080f89bed348f773c1

SHA256
8e633980c90a6a602b9eb341dc9899e68c07d7583d7733525d876148a0204873

SHA512
52d685674993711c4ab1afe83e0357d6b43ebcdfbb772f37475240d27817899bbee051f251951d53294c5f050f5ea50d4b28b879f234e5931a8ebb7959116f5b

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
12KB

MD5
5f80fd47a02aca1d7109bc48de270c57

SHA1
2507be4e30bf133c718519c1a400e86b2508f71b

SHA256
1066e75dfb662fec7375f07f2468e57322d81e6518cef1e9cb4919a354057afc

SHA512
7a8bc9a2bb0cbed4b219a887ca87b21fdb1e1fea0bfe1907a6301d618568229cf4d9f731a1373a6ad464fe82aebe094cf4f82776688d2c75d03897a02f3b8d90

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180
Filesize
36KB

MD5
6ed39cdf98b2295e4aa1bc9c3d90af87

SHA1
3424cbc38f6f54ca2f18084c26cd68b848c766cf

SHA256
0a7c1824fa024ee0fa04a789da8970fd59fc3d0047ecc7cb9ad46f9b14a858f9

SHA512
bee0398c2ce3889a9e6b4ee8902b733ccd1d0055b14c9df3951abefbbc374c56165e1b97257d3b51ace09dde208eb73b74315897ebd2f17dd6790983d4258515

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
512B

MD5
1f1bc23e668c3fbeb45529492b2a6835

SHA1
28ef4254f6a6679040b88f71b753bbbdc432a95a

SHA256
ca1c92541e919236c05961d25bdcc8d1452575004c8ce0fd01e924fface4569b

SHA512
bb8605bf9ad9b671a5e3c017d4a2da04ff1f77c08eb6e4bde071db790316e15b4998eb47922fbbc9a9f63d72ae9d5f338d03dadef1fc15df677f965a77bc89e3

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
8KB

MD5
454ca8c34cf5d2e01f8982815f54b5cb

SHA1
91473d839976cc280b0adbb7215229970cca9b07

SHA256
aa7360e9bdf22b6e42c79a6419c66d99173b7840d81c2a04fadc9e44e17db9ba

SHA512
cf2d6d3924f7e929d53c5483ef3504f92bc850e1fd29a2d64d5d982141a0123d661254d1d3c53ab87afe2f3bbfece4b02d69f1c1cc8bc37ae304d294f5273434

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
8KB

MD5
a002f71942969eb78c018e5b86a44394

SHA1
b47f0e1a92b15a95c8977c944383924bb02de510

SHA256
f7ce74f2723b5aeb805e5270a1452a9f4afe492b3903ee62ab8e136f3abe3e06

SHA512
63469ddeea0dc2bd3efa2e8024cafb83f08ca8ae72cab754aed43c88c62bb76fb7b984444cd492e642762f01b460993d33acf3dc101d5b71d173bf7a38522fa4

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
12KB

MD5
f62a6443e6cbc4f87ab4bdc5f5fc94d7

SHA1
b2f749d4dcdb9e9e993c8f65b627e706d9a17589

SHA256
2b2029985d2a12ff4ecf9dfeda6288a68f0f0901fd7a1ee04285d3f7066411d9

SHA512
daecb2adc0a5fc7df8c8a7f33fdadc5fb1d0b3f45fdce36486540bef7b1f58321ac96fa2fbd708b5f23ca94e49efd299808b3795a8958da10b96e59aa40308c9

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
12KB

MD5
6bca84e6e68886895397de643e58d8c0

SHA1
7d5ab15ea32fd9e848c77d5104a1b0445819b2b5

SHA256
d41953789378fda086eafb3570cd28041f15dd3c8bf68cde05d85be52c44beba

SHA512
1fb39e4f2935a9be5f2ad8ce49746ea4b83f0e67ed5d30363712ff8e4a345ba6272a447d66d6b5a942a5d17bc057436a658f5cb31ef98b4abec7286e6ec75f82

Download Submit
/data/data/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
12KB

MD5
19fca5b6e2b38f7c4a15c85018a0fe24

SHA1
52df5d54acd8b1f7f92128ec81bcb4a11e708015

SHA256
83603ef9075d8db7144714d1f6c29516a1b3b1c5fb539b2b10ff88b92081d6bb

SHA512
a1072e1090dfeb29b35316aebcc80c23f195b8e345cc943bc3fd5b5d6521384dd3c1c1b701bbf5dbbd74b5367d5e498f12296e81e9283b46c5c9e60b1638590f

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_client_data.db
Filesize
20KB

MD5
ea9c2dc01d788f2ed7ad6a455e32335a

SHA1
3da6ee06226734e9a402c3ef2b542af3b509b6af

SHA256
ddcb0e1970efc2dcb42a4dd328ef8c10f3512b39a47277d5b075fd3b92dfc3a7

SHA512
5b834f25f6f8afea98eec78cf8e148671ceca48aee8019e09308389c1f336e47e55666fedf66e09c97e827c375ade0fad635b98686ebd2f72240108670d25e76

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_client_data.db
Filesize
20KB

MD5
cba8d49a2f890dfdee1b1414e66ae673

SHA1
34e6ed6f35f64a223e8026ecf1b405e9b9cdd279

SHA256
275093c125c753b520575ce16d10ff6e958dfe98ad4e87d722149bc3042d8dd9

SHA512
0408d5d935c7fb6249971e5099737700bd0d59482ade5b887510729480ba18c512028e8028fafa231fb712960b099dbf1c2af2f9ba23432f1f949bff312a7da3

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_client_data.db
Filesize
20KB

MD5
484df068dc370197c0e37af4f433f772

SHA1
5d071329bf5182e60b2d268adca542901d492001

SHA256
3ebaaa9fc7a9245b413f62f91d9e689d468456dd4b6ce2408bcd2003cbdbfbd0

SHA512
587e7b68f2c167d39dd50744f2892a461a67cb073e8cf9f6eb2ab752e07841440dbe212af32958248d15af5d4001e7fa12f86cad62578ef31999355a86c3b0b5

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
8KB

MD5
8833466c866f15d1c7add94ec09a92eb

SHA1
ec4a06207f56f49ca2a700ce1fd25facb8a810ad

SHA256
427c0c90d49de5f3a8191c6d10938cad32db9e73d838449b5f68ac10e650d13d

SHA512
7d4cfae346f1d381f7fcb3446d9fee99571adb048ba252bf7324c007fc4a6d00f09982ba4e9fb825ec30b27dd64832c5a6db6451e99470a66ed575fce23483fd

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
8KB

MD5
9545ace54aabcc8e657a6fcc6b4a73fb

SHA1
bb324a25f24193d2927224d1ec3f6e9de6ad998c

SHA256
c33970ee0a21ae12e610f828202d99c28abbff8cc17df654c9ec7d4668286d34

SHA512
322beb425cf83de2258b3d2a317c99e63bba76b074c473a4418cfb7ee4ccdf90cc2720c3a840b7f065215261c0d5a3e16f725b14a2489c542a20fc9ca5243faf

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
12KB

MD5
b52380775c6cbe22084d107366710be1

SHA1
5ba38928c9c1a330f6701d507055a5f6a03af188

SHA256
c5e1e087d747d379cfedd3d4232e1d7cf8098c3933361a01433bb86235c3b677

SHA512
70f28f24193509e7d8319c47a9575ede3e49076324bf58522575571b2697f96a93d655fdfb08b732070957e85f59f284c07a79431b8ea390a5a4833d030020a8

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
12KB

MD5
2be40778bbd0cdc2c124eca8f7b27754

SHA1
13a39b0b7667d082cc9f72f84fbefd9ca92d16a2

SHA256
df63e49327ad78e54d02264d0d0071a027b6ab6d4022359f611b17e309f626c3

SHA512
bac32172507c345e57af762489dbbae3e18d920da7adf3dc1a1b0d1dc50e7e3f36b48ee4ab11e06bef199508440abb4d4afdec41bbb036c3cfd4cd1fe1f622a9

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
12KB

MD5
11ed69c623dd6af97af4c0837ffe5c0c

SHA1
65e20ececf226fc7de2a760ee528ce6fe11df961

SHA256
dadddfad2677ef147e5948c69f31a22b54a1df6b8c9e344d99e07f086ba7f8d8

SHA512
63e0ad833fd4548fac3b4a8c32f7e2f9e291a8cb91fc0c93f6d87901cae81e38c83d024a1de17a15ff3927f2880a87afcd80696544285e1fa205d48f0b9b8e1c

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_data.db
Filesize
44KB

MD5
dd192a3e72b4fe67d821df0d62b9d5f6

SHA1
b03b1079e223014d69eb9ad6ceaf41f1ef3500ef

SHA256
950cc908ca1214694fc3ab65ab70ebda20598d2524cce8ac3af0ca04b392e7f4

SHA512
967c18580ad52c9509714a5ec43b8c306da111a2ae9fd91c8ad69c2971c789859964f86c6ed3d9152c5b4c8238f2eda7c6da6bcec9605f5b0c3088a0b619b91d

Download Submit
/data/data/sistemavitto.viplanches/no_backup/metrica_data.db-journal
Filesize
12KB

MD5
b1fe9a614539f6844c92683d3cd54aab

SHA1
ce6b30f047ec4cbfac8f7e4e329a021094b0ecd2

SHA256
e79ade625e423f88cf629b8475fe7e60843070ed4d0226663fec900b9fb20224

SHA512
81fa48ee59928b35a6485944fa612492abbddd0b8939159591f133c7b3405402e67214354bb0f92c3ca43c8ec9659ec5cd6018e70fa5647f7c575845bd59c2d8

Download Submit