efaa9bdb22a8ed63eb1e946c48ee0aa03aba55c4213fc6fd914b21755875bfae

Analysis

max time kernel
4s
max time network
151s
platform
android_x64
resource
android-x64-20240506-en
resource tags

androidarch:x64arch:x86image:android-x64-20240506-enlocale:en-usos:android-10-x64system
submitted
11/05/2024, 16:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

35929ee8732e0eb44134002c9184185f_JaffaCakes118.apk
Size

11.5MB
MD5

35929ee8732e0eb44134002c9184185f
SHA1

d1b2c9d3a9d0843e4cc5fedaeae4e86effdec677
SHA256

efaa9bdb22a8ed63eb1e946c48ee0aa03aba55c4213fc6fd914b21755875bfae
SHA512

f45d3094b13182a9bfe9d809754b470d4c202bbc88f73858a3ffa580dfd6d2a6a64e51fafa937d0c28178fd78d2555a671fbfc260f80bbde5a3d4303575a7bb7
SSDEEP

196608:zEQ3A2n4MbRWkg4i7nPUKlUnXAqRTH/3/3vHdxpr5eGjWTyU3VGLQb7Q76YZJmj8:wQ7nhRLgn7PJlkAq9H/Xbpr5eGCTyU3m

Score

6^/10

discovery

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.hq.hotel

com.hq.hotel
1⤵
- Checks if the internet connection is available
PID:5114

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.hq.hotel/.jiagu/classes.dex

Filesize
5.4MB

MD5
97c390f66bea6bb7b06f0851f533e068

SHA1
a0dd2f35d289586cc665210330b6e245f2693252

SHA256
1cd9fda576aaefa433b68781c463206a35c18d9c1c2267477e3e2a3e21f22ad5

SHA512
6aa408ddec1e6b39c2a8e37035d8d4631e62d8a993f933df717a8543034eae1a7d31345924b1ba94df08b57fccf55d56477f74e17f235b68065439d7ed14030b

Download Submit
/data/data/com.hq.hotel/.jiagu/libjiagu.so

Filesize
358KB

MD5
92914ae5c428e8c1d676a4620df6dada

SHA1
0b20d48763e2a1246746b90794cccfbbe59ddd5d

SHA256
4f63b87acc01178c5ff246fb500d5c3392da9647dc641f6315cf3625975bf068

SHA512
4b2ee1f99245f44761e8d38d733dce990ef76186a2bef1848b83fc8c51fdc901f02f180e922151ccfcf74879d227f78464ed6f7b7e2528da3f487461c04ed97b

Download Submit
/data/data/com.hq.hotel/.jiagu/libjiagu_64.so

Filesize
348KB

MD5
77afcb832cd69898939ee6f710532c16

SHA1
9c51893d25d8687d82dc17e740ccae41dc6a406a

SHA256
4fae95dcc655d2a3aa9766a460144df23cc6fc5e4fad1a539a7083128cfd79a9

SHA512
56b6f3fedc1f710e7cb427d18cc92648a835f9b52dc18c1d5927452df249e7326358431d35f4d348333096427e0512552300e90d9e4b47cc16a87ba88ccc686c

Download Submit