3ef3ef06e3b83069a63f745d388397fa68372c7193ac78249ebb7437ec01d2ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3797ba73e5693f6e0ca79aea1c4e04b5_JaffaCakes118
Size

16.4MB
Sample

240512-b5b8ssaf7x
MD5

3797ba73e5693f6e0ca79aea1c4e04b5
SHA1

35a2c02beec628e50a33ce2792b666d164c9261d
SHA256

3ef3ef06e3b83069a63f745d388397fa68372c7193ac78249ebb7437ec01d2ce
SHA512

b67dbb00166483e3e1b744645fc6efb09a6c410b625ebad01828fba775a7ad8c468eb346e2d9b9c569931b5b2592013172d9ee3f0e0ef8e786beb7911a8156d0
SSDEEP

393216:HRTXmuIvwE2XX/7DAYTHIsAEoh9+JEZIdDZr46mmP1I9Vn/VxPOLYEtg5iM:H9XcmfjIHjhIJwIdDZk/mPOrnPOLYEtw

Score

7^/10

android discovery persistence

Malware Config

Targets

- Target
  
  3797ba73e5693f6e0ca79aea1c4e04b5_JaffaCakes118
- Size
  
  16.4MB
- MD5
  
  3797ba73e5693f6e0ca79aea1c4e04b5
- SHA1
  
  35a2c02beec628e50a33ce2792b666d164c9261d
- SHA256
  
  3ef3ef06e3b83069a63f745d388397fa68372c7193ac78249ebb7437ec01d2ce
- SHA512
  
  b67dbb00166483e3e1b744645fc6efb09a6c410b625ebad01828fba775a7ad8c468eb346e2d9b9c569931b5b2592013172d9ee3f0e0ef8e786beb7911a8156d0
- SSDEEP
  
  393216:HRTXmuIvwE2XX/7DAYTHIsAEoh9+JEZIdDZr46mmP1I9Vn/VxPOLYEtg5iM:H9XcmfjIHjhIJwIdDZk/mPOrnPOLYEtw
Score

7^/10

discovery persistence
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence

behavioral3