d649b07ee07f944ecd10e955d6edd0c998b54cf5542fe23905282ceddc70e74a | Triage

Sharing

General

Target

3936153b6fec314797315ac7e7a2257e_JaffaCakes118
Size

9.7MB
Sample

240512-khj5kage41
MD5

3936153b6fec314797315ac7e7a2257e
SHA1

b38194afa9c747a2911c8ed2be6daf230a6f6924
SHA256

d649b07ee07f944ecd10e955d6edd0c998b54cf5542fe23905282ceddc70e74a
SHA512

3bd901436281869bd19b88b977abaf441cad0846c16dd1f252a9a0bfe7ed7f71d7af6e48ff0ecb4e4400b41d5ca3e1bd6d8b3046eb3bb27291765b84c94452b5
SSDEEP

196608:0x+jyRfmruRV40IcAWpFzFRJp99I4pyvZUSFQJpF1UrNGhJ1RxBPcAKx:0xGyRwuR2Nc9jJb9I42ySFYpANc1Rx9Y

Score

7^/10

android discovery impact persistence

Malware Config

Targets

- Target
  
  3936153b6fec314797315ac7e7a2257e_JaffaCakes118
- Size
  
  9.7MB
- MD5
  
  3936153b6fec314797315ac7e7a2257e
- SHA1
  
  b38194afa9c747a2911c8ed2be6daf230a6f6924
- SHA256
  
  d649b07ee07f944ecd10e955d6edd0c998b54cf5542fe23905282ceddc70e74a
- SHA512
  
  3bd901436281869bd19b88b977abaf441cad0846c16dd1f252a9a0bfe7ed7f71d7af6e48ff0ecb4e4400b41d5ca3e1bd6d8b3046eb3bb27291765b84c94452b5
- SSDEEP
  
  196608:0x+jyRfmruRV40IcAWpFzFRJp99I4pyvZUSFQJpF1UrNGhJ1RxBPcAKx:0xGyRwuR2Nc9jJb9I42ySFYpANc1Rx9Y
Score

7^/10

discovery impact persistence
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Acquires the wake lock
- Checks if the internet connection is available
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryimpactpersistence

behavioral2

discoveryimpactpersistence