66b44dcc97c31b72a28722a4fb8b15c5b0557d576d16a6819a1f024aaa7d62c5

Analysis

max time kernel
153s
max time network
164s
platform
android_x64
resource
android-x64-arm64-20240506-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240506-enlocale:en-usos:android-11-x64system
submitted
11-05-2024 08:57

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

33c9725d28c44915277b2756097e81b9_JaffaCakes118.apk
Size

3.3MB
MD5

33c9725d28c44915277b2756097e81b9
SHA1

211ab35aee2078fcd8fdbbecbe6dfdfbbbbbeda9
SHA256

66b44dcc97c31b72a28722a4fb8b15c5b0557d576d16a6819a1f024aaa7d62c5
SHA512

36b9f6856c05df485977f83fc2841e2fb381c7d95a815c78a27589ba102bab87936530e1fb51d6f7deafd838b09c9d616a56cc15169e8602b66275c339fd0480
SSDEEP

98304:CJy7KPSx9r0FNL5D+g64j7BVMHDgXHT/epxOtywXN3P0ZKPS8:CRI9r9QdaAr7

Score

7^/10

discovery execution impact persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

T1424

Processes:

sistemavitto.viplanchessistemavitto.viplanches:Metrica

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	sistemavitto.viplanches
Framework service call	android.app.IActivityManager.getRunningAppProcesses	sistemavitto.viplanches:Metrica

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

sistemavitto.viplanches

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo sistemavitto.viplanches
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

sistemavitto.viplanches

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo sistemavitto.viplanches
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

T1422
Reads information about phone network operator. 1 TTPs
discovery

T1422

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	sistemavitto.viplanches

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	sistemavitto.viplanches

Schedules tasks to execute at a specified time 1 TTPs 2 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

T1603

Processes:

sistemavitto.viplanchessistemavitto.viplanches:Metrica

description	ioc	process
Framework service call	android.app.job.IJobScheduler.schedule	sistemavitto.viplanches
Framework service call	android.app.job.IJobScheduler.schedule	sistemavitto.viplanches:Metrica

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs

impact

T1471

Processes:

sistemavitto.viplanchessistemavitto.viplanches:Metrica

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	sistemavitto.viplanches
Framework API call	javax.crypto.Cipher.doFinal	sistemavitto.viplanches:Metrica

sistemavitto.viplanches
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Checks if the internet connection is available
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:4776

sistemavitto.viplanches:Metrica
1⤵
- Queries information about running processes on the device
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:4819

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/sistemavitto.viplanches/files/ZPkFS.log
Filesize
12KB

MD5
22e13819f3d62ee7746cd8d6982168c4

SHA1
60389727e9b6734770db3e421f178a6ef8dc45a4

SHA256
635acf77faaaa4ff0bef91b4f9a77b5b49808ff084fd1522e7c409e6714de8f7

SHA512
e20c9c2089f694e838ae33755848b28a4bff50994c72f831027ca2ebbc1c92b7686635f3da8ba8883f4a379d18d59b62723c2347ed609c07956555bbd4ad0cce

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/credentials.dat
Filesize
234B

MD5
5de3d5461d544810df7ac4e4b5aaabec

SHA1
57eb74e8906d23b0227dafe94a7d2d57d3599c08

SHA256
468fb4f37d5fffa8388fbbfbc41c6d0ccaa92d3cc0246b6e8343f73b5b26c840

SHA512
a2b71c36a86da4090420f4407f925702cb5bbbea3af67b9b4bb2b1b465605cb71ce9db759b67974e346fc4f78fac4da11ec91abe8313ff7b803f8de09d9a83a7

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches
Filesize
36KB

MD5
19405169ba8b1798a70005159f18f3d1

SHA1
2a08891d8117ce18bec2b539594f92c254573d96

SHA256
9c8c1362177fdcefed8078c417ceb7f21d84472dc5aff53c09ac50436beb4e40

SHA512
fe6351b878c601a2a6194793ed366ede1cff8d9366b47bae74e354943477e3813608eaa12d8c91c95c5c693e104afa19c84bb2c167c6d00ea7b1b85947e051d4

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
512B

MD5
263bafe95c4ee13f281e05900f4acf01

SHA1
760dc65f2b31885766147ae9a18a5f30551d8028

SHA256
b1642bf931accc6ba817d9d93f1ab1e14992449d54729af68851a8e1718e58d3

SHA512
674ac61cc8351ead3fbc06971ffbfe16ab03d09970a9fcfc7727574b67f74032460d6aef37f031d0f9fe793f59279baca893d0b666e055122c8eec2c0aad0585

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
8KB

MD5
ae7602900c9a4cb0991bc483199371a2

SHA1
3e9de159c9e19861111352f2bc867448460b387e

SHA256
7243f8824a705ef311bb45b2c32f5da6072b1fa191e822667b06d494f8473e1d

SHA512
147c108a62d630b234fa6bca705bf88be9412dbe5c0852ffc6b8b161c8b454806aa8a12aa801ab5660a549fac18b08b403dcb6a420b5855b832a4875a3cec4c4

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
8KB

MD5
9e381d690aba81987dae2872e975cefc

SHA1
92121033c5a9e1d4e63f241294c1076e3edfbfed

SHA256
9da442c145e3f7d451a3107015559a615ebd351be1f26660eb12aa5eba0476db

SHA512
433d4d34306a8df7dd8f0969c1cc9bf97115fd88e189e2b0fb15a9b5218c92b09599bf11ca6db1154c63c50fd5762a5deac8931f618e1ed4f9bc8c4a803df66d

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
12KB

MD5
d332e1a25745911f4d428c8b025a51b2

SHA1
1e6599716e214cd2715efd150d158941ee15ca13

SHA256
78ecde93476fe88bf772a3d8650b8b263872247f96be8041cd35940db3731e98

SHA512
89f0c53e8c1e9effa171d0d374b37677057f1e31170e0c8b8b3fd6b38962abc57f74153de5d454e41758f6678ea13ec60710f1e381248c1a125d3808b9473265

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
12KB

MD5
6a3b8e7a25e554baa029fe59c8a7fc4b

SHA1
a5f1babcb70e429813b5c5eb4aec855fc3348ea1

SHA256
7ddedf67f1f646457a163ee2616932948083778a9a8300cb3b391d0541f8c2d6

SHA512
e707c7892fe882a9317705583de73c5e820bc76d9d548fbd07d48efd3cefc9181d68e6b4202b2f566ff022b1f4245e71bba34dc123c496712e4cee364196d78b

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches-journal
Filesize
12KB

MD5
1c727f25b689c61e8908703dee63eb5e

SHA1
f163e0f0aa9c1c519e0de95c303d6f79f9cf5956

SHA256
55e8e132f4930ae0d554c4fd61a724450b0a5b3ab1ae1b679ba4e1b9512e4d66

SHA512
b755bad04226db6cf4bbc1ebfd000511bf1a5e94f69e725db1a20476a698572ab31693fffd6546ae81988eeb28156d7b17eec34d677a65d92dcc1b67a3abef48

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180
Filesize
36KB

MD5
90bedb248d9466efd757a28ae7dbdd0c

SHA1
c4e5091a1517bf9c0b223aef99f555bcc73fe6fe

SHA256
10edcf543feb49c496f76095e542bbbaa82a8dd8f000229e6b04a5be8fbd5a4b

SHA512
b1ea18c66e08312a89a7c45cc43fe8d0aa5a0c1ca4af0eece8a972a44a8913fbccc31c67637a0134921e40ab7f5a5dfe6f9ee3f200c674ec86ed44a666b22033

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
20KB

MD5
468525d404f5a29637c23d975234c87d

SHA1
b375a16bd7ce1f8babe8f229ecb9126acbad8ee7

SHA256
9187f3d6ecbeb9b2295c0b5159d803cb8f6cd9a421ea7b5d00c7b95eba01442e

SHA512
507270570d48c15b500f19b67522aa2a0b2c4109173dc8ad5920f4b951930af70bd031378379476b8950894f3e2c6eded41e0ae3a26b1ad6d2dbe8825c222f0c

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
20KB

MD5
609b8b54e470220f467a8c17c2818f78

SHA1
889935bca180160e05b3d8ef2b4c620778dc1645

SHA256
89e6c104afcbda65363c40a0b356ab68f79a477d1f04d010b76a2005a95debf6

SHA512
60f625133890e798e50b71a8d6f5cc812f703694e6d2825709119a5ee76d846b412b9345240f563154d592b4d3b6bafeaf7b9046bd55cf49ebda34fe8b8dd28b

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
20KB

MD5
f030895ff67d2a0620d85f5b4217d675

SHA1
82627422f2fd03a1ec75a0a16f09dd022d81ed9b

SHA256
83cdab4df9581153a5a86025ff2cf0f314dd965c0db1ef36643707657dba010e

SHA512
69052110b8aba011181619f7812fc44a61b743ece765917000154da1331337dcc762b4d6159c179b37b4f163227cc84ea654f01b0995cd688519c4b5a929ebe4

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
12KB

MD5
a8bf7f014d838bcdd6f93bc051e7180a

SHA1
771029b4f5c6d3b8799eff4081df5e522e58b172

SHA256
81faa04a58f43a319d8af5dae5df5f18c287ef3baf4a764fdef4c625f44e215c

SHA512
981385816c111b55c19dd8493976de89733aa3a134d4732bd0788cd96e07b426047e6c8d9cb9cae9c6c0b41def50114ec118669677194bbdb44a455c862cfd5b

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
12KB

MD5
5256aaccab510cb090774b055c6ff062

SHA1
f5ddfd372c9605df8d96c99150f4cf9a319a42d2

SHA256
102549b6f286e5b84c211df23a59a06b64ff33fbae76af15d004c562d78f92d4

SHA512
54700b17ed9c393099f40a56ac8ad7c735a61978022bf20aa89469f919a6d3ca33e7864ea2cf7e643c990576423906d790233d2b8d8b40b84fe6aa942068b82b

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/db_metrica_sistemavitto.viplanches_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
12KB

MD5
97ad314a07c4181f05365a737b266faa

SHA1
389568d70906c79a356e8f9f8f80d8424744e4a4

SHA256
c9ba12b59e8b7218c66db99c3421a11865d5c6b4666062432ea8fbbae459a629

SHA512
16c6c066e6d7f5ba32c47a353f4bdcbb18ac44705b99d2a8ff7bb824e5d6b710bfd0630b3c75508d117728d35b2faeee4381ad5dad2390327fa0c2325374650b

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_client_data.db
Filesize
20KB

MD5
765b1f2c103f67e5aba5d8643e602580

SHA1
fddc88318983f615a7b0da7d8e7290dbf06829ad

SHA256
30240c896150a4ceeb38dabd95d57e3e4aaecb2180833e0d5cd2f55f8df8c50e

SHA512
4cce58afca6f0774918665071e6fd127c0705372468d086bbe9e8bf0eaa9bb0c02c2a6d8f5fdea91052ca66b30b64e26b46bd1e727cc2abb36fed1d4af055d4d

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_client_data.db
Filesize
20KB

MD5
d7ba57e1897a9339853d5804f2fa742d

SHA1
ae8f9bc9f8be70604a46acafccdb8419b1f2dc0b

SHA256
5d078bea267fc22258ec0cfcee3af81d729f2773a5a20f7bbb809585ae81d362

SHA512
e1e715e2365433f58cdc274cbff06abdea134c30ce682d916203a1165b0f963f556a77c1c921de87abc2880d1c7bc29a6626a0167ed3ec206101cc59ec1f6f70

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_client_data.db
Filesize
20KB

MD5
d0c6216468a004011fddf11d7cfd8777

SHA1
f59d660f0c7848925c77ca041725d00d3c43dd6d

SHA256
168982d1fc28361b0a4438fdb040fda0af95c6517189034b29827a6d26088f62

SHA512
c4836a64404e1eeb9544aeedce3d8a2b70b5375d2885d0ea86c86c60f89edf098962e2e4aa2e5f2627b74a1e65d3d34869408ab5def402883db130467d75e94f

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
8KB

MD5
25042af48bb4775f575f45cf774fd659

SHA1
6eb685054bb7d23048760231de52c8d629bcf544

SHA256
456881335ea2af16016978c2e024914fb31589fca3303bc403087ddb7158a93a

SHA512
45d6ac5ff86cd3b4584e2a771aa703ff11ffddfe20b7dec38bee7c0f23781e25bc8479afbb7c0942a081718f0880f91c4a676f5ff4a597bb0c4415b83aba109e

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
8KB

MD5
16e66822693a3deb7f5077e579c8c7d6

SHA1
c83b0f53b6ba123502b6f785e8e34d0240c52290

SHA256
d8dc43cc388e70698d00e295b23b15009ce156b489485efd187f837d59a3c183

SHA512
019198ad1a13e3710778f0045d8d54317dd43a8b8f8fde39a7399f25a2f3564d19e583f24375b2ee8f6d0582acb07f85b7809466f60921d3391e51f15ce06260

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
12KB

MD5
060b380a1fbe853431169a36c3bbcb1c

SHA1
dc078eb0624afed91af0e01a2d82f4aee8dd8d8d

SHA256
3a3b7be0478e2aaf26424613086d0819ec3f2125105302af1dcbe3197be99525

SHA512
007b9061918c91c0343c6c00a07d88b8b17bacc46be7fb64f6018736756ee4480e8518f8a22027fafcb25cab8a6d57523c4bdc6024cb0e6e44cb644684f4c395

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
12KB

MD5
5de66a2d507721e2b256c40dce411cdd

SHA1
001f7cf473d49f57d57ca7237bfb2058042ba491

SHA256
9c0d8a61020fdc60617551b61a02703b09e2ce710d357995e5ed17718ef34cbe

SHA512
a587edf0bfd05f30ffe7d8daac4283ada3d8bc037b5f7b255aa0521ad711be9515b73c00a29a07e0ae242f1f091a887719dc6e97f6dac8f284f5fdc7ef8b5af6

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_client_data.db-journal
Filesize
12KB

MD5
55b89ae0d0c0fae1363a10c2a4445685

SHA1
d1db5cfc4b6a82e6ca738c810f5fad167150f230

SHA256
5ebfdd65fdabea4015ba720a1d01e1c777a7fe624c233c71e68c85e5eea04d2d

SHA512
69ca9da22417483f388a8f2e460b6af3fe3301acc00d759b56e3ce52a3c5af301aaa4ec74c8d8f4ecae23344430548051b1b9a92cfe35b97d368a2d4746676c1

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_data.db
Filesize
44KB

MD5
a42b8979796640cf1e610ac496dee705

SHA1
bf09b18f5cd147314af5eea69c6e70de50b0711f

SHA256
1907fe41994747c13d34ed26c0056fc19389bfc77a4f05f6a2b84046a4811838

SHA512
99b91ff6a64900f5db41dd230bf1486149fdbfd91a69a27b78cdac91b56f21d90fac2869bc93e2f6aee250281b4e7581944f4fac00384eae74f8abdd2802e0f2

Download Submit
/data/user/0/sistemavitto.viplanches/no_backup/metrica_data.db-journal
Filesize
12KB

MD5
3a4c5736035ee2608ccd0bf22edcc044

SHA1
dda8a5379074cfd790fa92546efe8ca98cbc6875

SHA256
12d3ddac828612fa99e6b33a8a165adb9d342ef91f96b06a23e34e9864b6aeee

SHA512
6dfc7af501f4e58347e94dd94f0a77da66165590a552d44a28d866f7c4669e425b89bb81c6dc176bd9ac4bad67341c37cc79e4f3e6e683f94e86c5fe482eef50

Download Submit