c1d988f6b880019d7a2bb996f09783d4cbac6122b839db9d74effbe2ecd2aa0e

Analysis

max time kernel
148s
max time network
159s
platform
android_x86
resource
android-x86-arm-20240506-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240506-enlocale:en-usos:android-9-x86system
submitted
11-05-2024 11:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3475da3ce780ca3d71024a1a539f402b_JaffaCakes118.apk
Size

3.9MB
MD5

3475da3ce780ca3d71024a1a539f402b
SHA1

66d8a64ba094974704d04cf03d2010ffebb9b7b0
SHA256

c1d988f6b880019d7a2bb996f09783d4cbac6122b839db9d74effbe2ecd2aa0e
SHA512

055f6ac8654c33af3393c989ab3381a6f27a4579002e6aba66e25962e2c4ed57a0ba1c5a194ad24c99b16c5816345117210464a2dc79fddef6595ac89db2a160
SSDEEP

98304:GeZMesXrtHu25IeSl/4yqFb9co+30Y7pNt5gKzw:G2SrtO2iFl/4yWZcV3Zt5y

Score

7^/10

discovery execution impact persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

T1424

Processes:

com.viralapp.juicerecipes.viralcom.viralapp.juicerecipes.viral:Metrica

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.viralapp.juicerecipes.viral
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.viralapp.juicerecipes.viral:Metrica

Queries information about the current Wi-Fi connection 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

T1421

Processes:

com.viralapp.juicerecipes.viral:Metricacom.viralapp.juicerecipes.viral

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.viralapp.juicerecipes.viral:Metrica
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.viralapp.juicerecipes.viral

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

T1624.001

Processes:

com.viralapp.juicerecipes.viral

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.viralapp.juicerecipes.viral
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.viralapp.juicerecipes.viral

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.viralapp.juicerecipes.viral
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

T1422
Reads information about phone network operator. 1 TTPs
discovery

T1422

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.viralapp.juicerecipes.viral

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.viralapp.juicerecipes.viral

Schedules tasks to execute at a specified time 1 TTPs 2 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

T1603

Processes:

com.viralapp.juicerecipes.viralcom.viralapp.juicerecipes.viral:Metrica

description	ioc	process
Framework service call	android.app.job.IJobScheduler.schedule	com.viralapp.juicerecipes.viral
Framework service call	android.app.job.IJobScheduler.schedule	com.viralapp.juicerecipes.viral:Metrica

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs

impact

T1471

Processes:

com.viralapp.juicerecipes.viral:Metricacom.viralapp.juicerecipes.viral

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.viralapp.juicerecipes.viral:Metrica
Framework API call	javax.crypto.Cipher.doFinal	com.viralapp.juicerecipes.viral

com.viralapp.juicerecipes.viral
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:4299

com.viralapp.juicerecipes.viral:Metrica
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:4336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.viralapp.juicerecipes.viral/files/credentials.dat
Filesize
484B

MD5
3b392b89026895eca93605c5d24ef7a1

SHA1
430c3a99f6f885e5fcd08b8869af87b5b69de935

SHA256
337874acacc9722d950890c08d06e603dd2914f208462eb792e96a74fd57521e

SHA512
2c5b6468ae7cd080d09cf0e0d741d10f4c5c04dcca79917c1453115aa1a5eb0c2267e582d56f9549c6c41c8fa561750442cbb8b54b887c69e146533378317ea1

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/credentials.dat
Filesize
20KB

MD5
c2a5c622a672dfdd6661190d3c9bab3f

SHA1
92bc14b989d5c3b5767602af10c7e2558f53e647

SHA256
bd4ed03de8a0d2952313c3ee438a855568f8a60fac2de1457a0b80cef3e073a4

SHA512
e9041822906ccc7756479e7a9a786df0671bdc9d51db82ce0afa55024e69ae08cfc47bf90841d85fdfef636286a79f2597017ff2a75274c72bae34112c8860a7

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/db_metrica_com.viralapp.juicerecipes.viral
Filesize
36KB

MD5
68c426dc2a77648f269235899fa88c7e

SHA1
c6f4dfc5bc8943a29fe5d25e24ea24ec2c16546e

SHA256
83324e5b144f2587cfa7781edf773d5cd5640a97188a6b535c951facc9286f1e

SHA512
42c3eb1ec064b084897a497d1a890f692848a39ea12916bf0b897f51ea3d92d8827715e76d30d8529aed49ebb67e2ffdd4e8505657f8550f032d54db3e396711

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/db_metrica_com.viralapp.juicerecipes.viral-journal
Filesize
8KB

MD5
f46625db05a3c2703249d81d3cca3d3e

SHA1
46b9e963d8f79b13feab0455876380b3c8091fa6

SHA256
fb99eef62599b7372e66ac78d79f96f664ae0fe0b2ed42d2600b5e6a572033f9

SHA512
9c41883f7cb61f51d1316d971207f23dda10c5450acd8dbcc0a9cea32327c8b58aecf3ab79e9f06b3ca794faa82311498e69e548e7220fb0045588a95821d521

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/db_metrica_com.viralapp.juicerecipes.viral-shm
Filesize
32KB

MD5
49b066e351ec03cccef7ff1b1df7af75

SHA1
1ada64b8d3112f5323794d3cb818f391313d85df

SHA256
cce7c1211e353750c139060fabbfb0031e84b83a0633db3a89945e60b13b987d

SHA512
46fd0b04249dd2ee80f800611dd138765cda8a5a8d8dfce9eb562a992cc1353572438fd037c50bb311a04768ed469f049045eb0d838dee05a7bcafb1591f44fc

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/db_metrica_com.viralapp.juicerecipes.viral-wal
Filesize
402KB

MD5
86db39752c8f184e268906d682c2c0ac

SHA1
18c55322db70d259629f9dc7506f27034eb28a4a

SHA256
7ea4d485a98856098afc98a19fab784b66384adb2216cf5822eb436e33612566

SHA512
de1287cb910119c4cce2b312cdd1ea862728d57b058407526b60ca0911ea4ecbea08b203fa7750e92370837a2125b99bcb811d07c99f143ceade1fe712c9e3c4

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/db_metrica_com.viralapp.juicerecipes.viral_20799a27-fa80-4b36-b2db-0f8141f24180
Filesize
4KB

MD5
2c56ab3d473c52ad9a41fa71a39e2457

SHA1
db0c685b491819c1f5cee89fcf14a104eeb9b3f4

SHA256
69a1ab5b81c9e197e1fe8b921582397b79c493b12f6bd3b671fe9f2708e8e00a

SHA512
81d81a88f280d65c56a2ee15d48d66f2a466bf01e1f4bffd1a6665326e4528e49e2f0fcf1c5857aff54f16d78c82c623be3af5bd7e3dc2c0898fb6ce10bb2e21

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/db_metrica_com.viralapp.juicerecipes.viral_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
512B

MD5
0c386361e2e298788675c2463a69b648

SHA1
14541b7f013739dcdef51ab1f9d4a87987aa5931

SHA256
53fe32c0f9bf1092dd620c9e0b3eb8047561292146ad699b6b0eb8620ec905bd

SHA512
17bda79c9ed8a4be1bba78275896cc5d002ab7d9de3790b2767a6479c54f345ff794c80ac2c642a0a802680246803f2422f3668bba18815254f75e992cdeae50

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/db_metrica_com.viralapp.juicerecipes.viral_20799a27-fa80-4b36-b2db-0f8141f24180-wal
Filesize
173KB

MD5
5679217b51f8681264e6feef0c74e176

SHA1
690a889371e0fe930bc5e65ee1a5c3b0bedc7f83

SHA256
20498b6e2e9d132a429642e1065328b728bbf93246b3930515d380a715ab277d

SHA512
9faf73f82469092cf7f3cb253ae69644cd600361f8ca034dbfbabbd315efb8ca42fad7111f3fdbee819de017951521b002e45df57b6b089bfb92ddb596101432

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db
Filesize
20KB

MD5
24e43d357f28c1165c5261b515d04b21

SHA1
e6d56bded052c6ae6506303e706cc0d68863162b

SHA256
a8c15aece332c93d3104c635a32a374dd59bd370f28813a6e3c32f5ce9e8aef3

SHA512
ab5a0e967b4cb30c32c6d073b8878865ce28cbed355b84d111ced8e4c6dfc4535bbebf7e5b3d79f9db94ed4b9d5b42410ab220c4451cd592462e233451481c39

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db
Filesize
20KB

MD5
20eade2863f5564faff0d414b22d494a

SHA1
ed65adc21864f222fb6cc7f42b40066f47aa733d

SHA256
84dd164116248d785dbd392245753620cbfd561d11045033ba188a46274d8a99

SHA512
ffc7f62066d9d830f0400a5a0c0ab04c598ebb93ad83612c2da684a871a1387505bc5f3d50d7e1f580fb3bb05a0d85e226ec1fb977dc8ed7e91148f425f196a2

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db
Filesize
20KB

MD5
44def4f6e42c3ec63f229d23af8c804a

SHA1
f5956d9295778b539bced03215343fd3cf7a9dd8

SHA256
882faff2a0f007164d5dbda7bd7f803306423b5eb48a88b1bb72bde65b77e50a

SHA512
a14770398044635a8a8fc0d59dc95af3a97ae78146a9ace3795d600a44098a5ff7099aa3d0ac40442f8ff8c5d3b5ceecb4b360bf47f3e8c7c902879e2e76228d

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db
Filesize
20KB

MD5
62f6f20afa02317159e691ec1d6070b8

SHA1
562999d5cac04473cb5603675589299b366cceae

SHA256
98a8d28855227d418fcd268722e8d2962b6da033ed6e2b3531d5188a42a3f348

SHA512
c62a9945a48117a6556a52e141dd775051fd4c41de46022df3f7935538df767b196256900b93c80fbaaef44529bf6f01dfd626bf7fb40f72532a37465b6c6fb4

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db-journal
Filesize
402KB

MD5
2a1b9af91065ad3e33b830433570e116

SHA1
48eca8677bea5c956d0cb9dac1af0e3fed81ebcd

SHA256
d869832198b0b8a9b1ed45bd1005a6a3b0ba45648bd3bcf8ce7d56aa8106ad0b

SHA512
dc2efc14af96f36c288e71c6bd606f84faf72a2b7277bafdd30d952a44932aaefe15f216d0496c9d65610ebf589e58dfaf7a8c3aa99731243d6fdbdfc7d7314a

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db-wal
Filesize
32KB

MD5
8dea09e11b08b1296c85d3a32b280e93

SHA1
d2f1c006c9b12ce53c9c79fd47ffb195b657ed61

SHA256
90bcfbbb8e133f4445d89d3108a0e540b0fc2c0594fde299eb9e119453570e47

SHA512
0deca564b75792e7f70387eb203f88544d8296656093fbfea36565589069366ac9581feb1001426520335aeb172bee8005332b39e253304fb7ac60ad10690a33

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db-wal
Filesize
8KB

MD5
d80cc868ebb8821ce372cbcef925b5ac

SHA1
089dc4c2ed6eb9e18150131aba8c48304cbcdfae

SHA256
82dfa5faf403a36ff09c2b0241810d00c0e6b9210f7c51ebbf45077736ff95ae

SHA512
ae7dea14a91543547000369eb1b4ffdb615c0ae37c57f962d49beac422e8e5b01f4355ae9bbbdf02cee743e5d7f9bfcffeaaca6aa0dcf940572c16957f03489c

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_client_data.db-wal
Filesize
32KB

MD5
14b3e17f75ab6fa00d7a7a902d7f373a

SHA1
6e23a43a523666907a62910726e0fdb227cd5a00

SHA256
2b0d36213bbb153ffeaf99656f0389f8a394fa27a97bec04c16a04265c9d9668

SHA512
030058ba21d63a4a4071def207869542eed77b31e48d63328901da81f02f6815de8f28738afabfc08ce7af57bc98768c03bf1cc265fdcc1960e5fe668d18b6ef

Download Submit
/data/data/com.viralapp.juicerecipes.viral/no_backup/metrica_data.db
Filesize
44KB

MD5
ef7ffb388b5b6efc4f3cfe0285854403

SHA1
7d2ea061548f3a0091b11f876b77eae45c2b15c4

SHA256
03617ce822cf047013f9b05964cc3856f091cb7d14737e02d945fee8c6997c79

SHA512
86b6589a6ec325856984301960452e52238a937743605e7c671355bca73c3b8bc12d65ffdfe7e155276d65714a693d39842f6259609e3c0ef7481fcd557f9b49

Download Submit