Analysis

  • max time kernel
    66s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240506-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240506-enlocale:en-usos:android-9-x86system
  • submitted
    12-05-2024 13:00

General

  • Target

    3a3e26cb86d6e7b88c24e8afefb8be03_JaffaCakes118.apk

  • Size

    5.4MB

  • MD5

    3a3e26cb86d6e7b88c24e8afefb8be03

  • SHA1

    3f87f8ec28b7bf3dcfd0b4fe1be713073a231751

  • SHA256

    bea787ed93e61c7e3abf2d15b32b22488b83b2e857621d9cdb187e2b280e30d4

  • SHA512

    693dea4a2d6e04c28ebed80d27b988b3bf256c70db7fbba10493200acf110717f47908d615c45583205e1ee5f59187cac22e7b0444edfa5fedca0971a0e47c24

  • SSDEEP

    98304:F+rpmsz1QQu+siiCD10LmsaTfCEbD/mbYnWbudhHYGU1p7f6+eRwbQxkWE:F+s8QQf+S10isa+EHm8nWbuD4GU/fPoM

Malware Config

Signatures

Processes

  • com.yy.cc
    1⤵
    • Checks CPU information
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks if the internet connection is available
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4497

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.yy.cc/databases/cc/cc.db

    Filesize

    36KB

    MD5

    ce6135aa1b1fe4f2c2db2a546d2a5558

    SHA1

    79b59582154017aadab783dc266fcb158c252940

    SHA256

    7b45f576c08c7f78220168cca4a0e33198b13e9bdc8b1da406ddb6887412000c

    SHA512

    2839075fe374c8567c839ae35ce2d33ec72fdaebf170aa7d224b555e5b0e74d4a43f2f67d17ed806dae841da883e9620d788ea052d06152678afa927307c7ce4

  • /data/data/com.yy.cc/databases/cc/cc.db

    Filesize

    36KB

    MD5

    5d7ea1a23af19b4340cc8d90f28297d5

    SHA1

    4cfe95b23a9e98378d69c4290af81b51fbe76aea

    SHA256

    474c4a54534ed96beacad7cc9a805a3f53ec9c0522fc7bcc59771cf500a6a0da

    SHA512

    33071f4c92da0a3df01c4a61dd165df7c7e0f4f37753cafe02d19fc876a5e7fcbb01c069c804e140ab8bfa0644a55f50fd1373646d1c439f817baa5ffbd47f7b

  • /data/data/com.yy.cc/databases/cc/cc.db-journal

    Filesize

    512B

    MD5

    b8001a3dc307ffe72d73ec04da7416f9

    SHA1

    cb9006eafaa378099088bc7972206deb2c3063de

    SHA256

    530e9de6143a986ec83293c415cb7dda84ab5474fec5435b773cb2f913056823

    SHA512

    63d15e587b79638713eb8d2ea9cb2f16092f48f4a50b5609c8373fc7f4906a64babc5bbe2e1fd15f795e9b2263f204d62cba932bffbcb9abc26dacec5bb0cef9

  • /data/data/com.yy.cc/databases/cc/cc.db-wal

    Filesize

    16KB

    MD5

    396b749f57aaf300c8f3a2e480dcf339

    SHA1

    8f6dd2bacbeadd4ea0310177e32a40c173b2d88c

    SHA256

    56923990e50010104e98bd57d9f739c2c055d417f632ddbabb48a22951e488b8

    SHA512

    4498209faf2a97e796c341f1531a70e909d471d1bc8675d28ef3ab24140839f0bd0750c551aa12a12b80df719a4eda5e1d7935464833df659d674622e606ab9e

  • /data/data/com.yy.cc/databases/cc/cc.db-wal

    Filesize

    48KB

    MD5

    577ff19bdbfb651152e073d03eecefc1

    SHA1

    e204a92baa9426b3046b74828ac8c6cd2ce7194d

    SHA256

    e9f69371cc515bc500e03c4bee3203bc7f2223582ad55424ed0f882e7f15deb5

    SHA512

    8a5c516c6b30f18478a79e9505b1f16a698134f6f2562e25714655f52b7eb8e96e3374fd9ffd78d4553c62f04fe4e3a88c6455daa350fdf5a044a1479fe006e7

  • /data/data/com.yy.cc/databases/com.yy.cc_6071box-db

    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

  • /data/data/com.yy.cc/databases/com.yy.cc_6071box-db-journal

    Filesize

    512B

    MD5

    94a066665aca8eb7bec3d537687cbacb

    SHA1

    b0cfca920e75773ea43419f76a566c737c628e56

    SHA256

    6366dde3df6b42a46b1b3e75c6bf31aa342149da77b094e0a8a5932baa7457fe

    SHA512

    502a47ed6ae6f483b0edb0350116089ab654beeab58bae0c9a395533fdd07f44029755832606db0f087d38159bac40fd64b0400ed4b026d9e7d33e5be3b98b99

  • /data/data/com.yy.cc/databases/com.yy.cc_6071box-db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.yy.cc/databases/com.yy.cc_6071box-db-wal

    Filesize

    84KB

    MD5

    aa30536c615b02c81eaf4733766277c4

    SHA1

    ad1de28be90b2c6d9f89bd0164df0154dfe66790

    SHA256

    8e30feb3e3f3ed6ce6f424143d657aeb4e3a3f16891fe33dd782547cec346d17

    SHA512

    903fa72f37872d01a0eb27e64525727280c12b024374b4df37c7f3380f325e47c881f8cddcc51328ec6fde70e4a016b97b7bb279d860a675ec0c1302a9f64544

  • /data/data/com.yy.cc/files/.um/um_cache_1715518908484.env

    Filesize

    1KB

    MD5

    dbc2b63797d1419929b00bff2bcffe69

    SHA1

    cec748b634e241f0fe40e29c6b9f299cf96b1fd8

    SHA256

    d27ed6fb85d0a6984ea3940f37d04d66fc70b869323a841bec5bfc8734c2ace9

    SHA512

    71487b4c33f3aa14bb68a7e5190bf8eae5d332d9f06e0a6a158696dab339ca341c77103aa421e02d8606fa8261924e80e4f0802f62f12f3baf085913d29bba14

  • /data/data/com.yy.cc/files/.umeng/exchangeIdentity.json

    Filesize

    162B

    MD5

    d3f22cbaaaf3e8f5e55f1af779a7a44f

    SHA1

    f7e89e933d30f6aade3d3a84972391c560730daa

    SHA256

    49d455d88e6f1d2bab169fdcb11c8b351a165f4d8863150378fd04f40b8ad49e

    SHA512

    da6d9eecf5d0e2d8a4cd17f917c87b0856047e7901824567a8e4545c3ff75585e5c9fb66f1645adaa82e5067f915b46f89f5aceed072990248c307f4a2bf9210

  • /data/data/com.yy.cc/files/jpush_stat_cache.json

    Filesize

    130B

    MD5

    ec375765ad038001fd1cce78364d24ba

    SHA1

    112b0155e04118918a5a137afd00ac04b742ebf8

    SHA256

    b53ed4a79b9b56e8a2a90101d21f1ae9037989f19f5b437988bcc239be521600

    SHA512

    d14714eae8fda95bb3a437e26d856c87299dd9492b3887f422226fe2971e37634c3cfb4c97ed95fd9f959fff4c11972f3fa185116c7dbef435c4c22d6a7a7a35

  • /data/data/com.yy.cc/files/mobclick_agent_cached_com.yy.cc117

    Filesize

    2KB

    MD5

    5c62839573bba61875efec901a87ee70

    SHA1

    acfc45da6a60a8ab8ac44389efb8b326e8059b24

    SHA256

    7ae9a666dccfbccb6ee15956d9e20e0aa8ded8d838a0b8e88b5d8f98c6020e36

    SHA512

    319f918b2cff9b46e272419406d45b42fc07d98f871745a1ffaa1bc8347d10cc6ad80186ca0445a5aeca9df6b8705b7efe3812e3b02dfe2cd8e0278e1e4954ef

  • /data/data/com.yy.cc/files/umeng_it.cache

    Filesize

    498B

    MD5

    6b759f655568334f63acffde3809d0a7

    SHA1

    39a3a6a2376ec7232df81544922d8203f0318c0f

    SHA256

    5a4ffd06568d32a9266d97addb993040e23c66e8fa6320d51c5a5f341362a097

    SHA512

    a3cffab3143f6169945806c1709dcfbe3d20a4e315fa816cb5ec0711f446a2f5c5f04fc39ef0fb903b43832a3ce7f925235b0631d388ae2bbc39eadc76527c89

  • /storage/emulated/0/.DataStorage/ContextData.xml

    Filesize

    111B

    MD5

    99f103b929b0f2a1fd7608da6d952fd8

    SHA1

    01c6af1f63ef5dfa70f651f6ee4925769f90c0b2

    SHA256

    e74c2e55957b8c82345bf5fbb7bfcbc318337d0eb64f8f06555dd239a7fae249

    SHA512

    74cffb861ea4f55af543bd8d083d06596ba7008b27f493940648436846bf3493b2acb9ac2e2bebb2d260e9d1e7cfeb2f2b810b503d46eace6ab5a4bbf1c8d3f5

  • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

    Filesize

    65B

    MD5

    9781ca003f10f8d0c9c1945b63fdca7f

    SHA1

    4156cf5dc8d71dbab734d25e5e1598b37a5456f4

    SHA256

    3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

    SHA512

    25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

  • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

    Filesize

    111B

    MD5

    2eb3c98ae44865dbda8b7fb4661f7b2f

    SHA1

    0325a03b24030c40a1bafdc91dc2c490a0b411bb

    SHA256

    34082033cf7fba9f50a064af9c3b15f9793867830a08f6eb434c3737da0f1723

    SHA512

    6f57b016149e4e48b3af368905551bad7476e3a4ffb51c8e069397c5fdba28491d3e54d46722fce3056dcdf53aff6fa47d6e136da58ac3a0d76b1c700a939cf5

  • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

    Filesize

    222B

    MD5

    4896f238e00f615ff2de3e9c5fd5d8b0

    SHA1

    60869161c09024e05b5f70efb4548fa3a49845f3

    SHA256

    45972533d291d6f0c1192ca1e4e3c7ebc9bbd2d5d10ca3180067b4cb8236cd2f

    SHA512

    3a2d78846c05789a083faf74fee97124f02c5d54e7c7886b8c0aa1a3c8b209053b22fa0ddacec27bfbaedbb9cf4d9c40956a8b213bad84adff0d1b57f573f48d

  • /storage/emulated/0/6071Box/goagal/5ac714da7be6d534dd74c84a097f98e0

    Filesize

    352B

    MD5

    7b4620c92f4af9984707458992903377

    SHA1

    7f1d1e7e384851d6223076afb146eae0e00dab49

    SHA256

    40fb1417d0c62ab13df895ed863b4f4520522380d4dd7f83fce6777fc8bb6516

    SHA512

    e48c06ded16651270a4d793b4dd1eb3841b5ff670c1fe67cf1867afb55135c190301d53b48bca506881209d5b9a07d95f46c6312b94eea6cdf3014077b11ad0b