444759985eb10a2defcf276caf0516c1c36588ecf6b5cb83476062b2f0a84ff3

Analysis

max time kernel
4s
max time network
131s
platform
android_x64
resource
android-x64-20240506-en
resource tags

androidarch:x64arch:x86image:android-x64-20240506-enlocale:en-usos:android-10-x64system
submitted
11-05-2024 16:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

358f3acac285d20ace0608aed000fbcb_JaffaCakes118.apk
Size

28.5MB
MD5

358f3acac285d20ace0608aed000fbcb
SHA1

93274cfdc4c4bfdd859361d318db7c43a45f4b5d
SHA256

444759985eb10a2defcf276caf0516c1c36588ecf6b5cb83476062b2f0a84ff3
SHA512

5393a25acc6a2b40c15df6ce88b912b9e9de20d29e3f6fa77511c71044f095c5ec0fa248e6f1336e704dbb0e457d06fa5104661eda80664622391fe26597912d
SSDEEP

786432:SGfPqt9VLWasltY/y4YEl7J71GYWnFhvExcqjBMS:SGmylmJY47SYGMOqjh

Score

7^/10

discovery persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.mageeks.android.constructionsim17.st

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.mageeks.android.constructionsim17.st
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5092

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mageeks.android.constructionsim17.st/databases/bugly_db_legu

Filesize
60KB

MD5
c1a5cf6ef4dd239356d60ee334678a0f

SHA1
cbc6ddb4e5f60aaf385544a85936ecc6a3476cc0

SHA256
e3eee29b9779694d6f920db68d87d519cc783e9d1e61480d8462df9ac95f0855

SHA512
4caa3cf3df91b715869550508118d6ed8bfbba5e4077659ba4c71ba73d931255323901311f3459b2664e9b8c611eeac60e233c408b3ad119ba2eae3ab0bcb479

Download Submit
/data/data/com.mageeks.android.constructionsim17.st/databases/bugly_db_legu-journal

Filesize
512B

MD5
c7408547be51970b7ace36e4183b8e0b

SHA1
3bfcfcf5a05c2cc528f1496876d0bfb8eb0280b3

SHA256
f7112ebb0cd713d4eb2fa686186943b787ee12f6a866a3cd4a4dbeda549b78d7

SHA512
cbc3a5272b9d458abeb6a2d9bbb005a067d40a084bc2d1566b19915a31752919f5581d37b3e838def41ce197471c6a11fe35f5bb78be49a02b7bbe41969d29b1

Download Submit
/data/data/com.mageeks.android.constructionsim17.st/databases/bugly_db_legu-journal

Filesize
8KB

MD5
180ffabf8902cd34491a196b37c7d360

SHA1
67763b103f0875e1ce35d369dd399496196f5de6

SHA256
4dae330459ae068d8b244c15b47e5684d9c520e30118ff0ccdcfb426bec9bd1a

SHA512
0292cfb6d59c6754b59357261bc7a178e63968ce0dff47da0de687dbea80b5b57fa37ca7dceb337f3e74c167b80fd2053fc0aa0f056075fe42a6ae9723626e24

Download Submit
/data/data/com.mageeks.android.constructionsim17.st/databases/bugly_db_legu-journal

Filesize
8KB

MD5
dc5dc3ebcd4ac126943d20be01840327

SHA1
d61de0b164652024940e58badb3e9cc1e3f87b72

SHA256
bfa1e4a12fbe015c9317e098b993f397c1183d4ea7b82e5c0baeb182876f0185

SHA512
51d735277165d44e45adb8ba951a00fb8e08370a795792a60181b18e8f7d6c331fc13f1d2c7549ff7f1ef87053fc08033d92a111431ccd748af02a1c66a6d098

Download Submit
/data/data/com.mageeks.android.constructionsim17.st/databases/bugly_db_legu-journal

Filesize
8KB

MD5
4ebe0e2d27e979442979c1b3772cc2bb

SHA1
7877629888273f7dc39b5328c7435cfcf3559f99

SHA256
d053ac7448b178e00eab28e69089f6bddc28307df2a05a39657fee93ca9ad0a3

SHA512
839f3bfdf20c6d1ffa4d50645088d905a9d0e02a84fe4df8f7844c5fab01e3c05240a205d8226c3d3217f76db197ed7e1216cb599f449c5437a5068c37fda822

Download Submit
/data/data/com.mageeks.android.constructionsim17.st/databases/bugly_db_legu-journal

Filesize
12KB

MD5
699d477f97a72ba33218d078863d0d68

SHA1
4e9295323eda1756e482ea6ca9e5f857496481fe

SHA256
81b209145cdd2a02f9ec0aab8869551d4045530a221c3821a80aab1cdd0291e1

SHA512
0bd8a984b7910124d2a02d6306a9ca73843b2f1fea6ced76f06faa7a0c829977b1f22a74c30297bea2760f3e197f7010e9e11dd30038d66e3879b0afe09e2d9b

Download Submit
/data/data/com.mageeks.android.constructionsim17.st/databases/bugly_db_legu-journal

Filesize
12KB

MD5
efab942d78a0a9922c1cc8b2307758a1

SHA1
22a75a62b99bc7ed7296179958534697e7991ef6

SHA256
ca6fc381937279077f5db516a039e315e07667337a6d12dbdc4dd01fed325155

SHA512
423a5e9872da27f93faab8986af12757d8fca2fa8a7ab39adf0d0c2cbf73e139c90c771f0a566879b1ddd8f2e3427bf20d1f25ea4645a2ce8934a9eb3cd64086

Download Submit