dbd2981ea01bbf210236575e644021f266e97732d7c59039e84dc6de46080907 | Triage

Sharing

General

Target

3b7c48d8a62f26305359b07d58b17d51_JaffaCakes118
Size

10.8MB
Sample

240512-w34kgsdb76
MD5

3b7c48d8a62f26305359b07d58b17d51
SHA1

6e2747ad90dee53df8ae027e1293e6bb64ce688b
SHA256

dbd2981ea01bbf210236575e644021f266e97732d7c59039e84dc6de46080907
SHA512

2edab756f857210166967d49d1f27b512d9003ea8ab50a69a44ebeef18b4f6b3fac8d0b17d892ab1438fc0b81ccf60fdce2a010d80e9c2c5497ebc8b063cabff
SSDEEP

196608:U91uar3qLIeXfG6sqqZBFGW/HVIcVYLsq/Z0B+hq4DUss8oL/gl3SViZyWUG1WJ:s1um3KIeXeDQGzYz/wQGUl3NZdeJ

Score

7^/10

android evasion

Malware Config

Targets

- Target
  
  3b7c48d8a62f26305359b07d58b17d51_JaffaCakes118
- Size
  
  10.8MB
- MD5
  
  3b7c48d8a62f26305359b07d58b17d51
- SHA1
  
  6e2747ad90dee53df8ae027e1293e6bb64ce688b
- SHA256
  
  dbd2981ea01bbf210236575e644021f266e97732d7c59039e84dc6de46080907
- SHA512
  
  2edab756f857210166967d49d1f27b512d9003ea8ab50a69a44ebeef18b4f6b3fac8d0b17d892ab1438fc0b81ccf60fdce2a010d80e9c2c5497ebc8b063cabff
- SSDEEP
  
  196608:U91uar3qLIeXfG6sqqZBFGW/HVIcVYLsq/Z0B+hq4DUss8oL/gl3SViZyWUG1WJ:s1um3KIeXeDQGzYz/wQGUl3NZdeJ
Score

7^/10

evasion
- Checks Android system properties for emulator presence.
  evasion
- Checks Qemu related system properties.
  Checks for Android system properties related to Qemu for Emulator detection.
  evasion
- Checks known Qemu pipes.
  Checks for known pipes used by the Android emulator to communicate with the host.
  evasion
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2
- Target
  
  bdxadsdk.jar
- Size
  
  84KB
- MD5
  
  15cf2b18a418ed61950abcbe7b97d17f
- SHA1
  
  65f19f2f31da78769fa3d5e22ed23a903b27449a
- SHA256
  
  40289ee4823f569e311598cfdc814028e15723f9dfbe86483cc6c0e36336f494
- SHA512
  
  cff777d140d2895159727571ea1d6a7f6966f1838183f6915f4c78613f3054d642aafc80e6bc39e3e2a5385f1596d397b35bbcf2d83cc5dd078bfa7ca18b5f8d
- SSDEEP
  
  1536:Yg6m4Wcz+CrqAnJhnH2v8c5UzwzbWtEp+H4q8ufsq0P/zOwaCcT:YLm4WprAzHR0XWrl8Ks9PrOZC6
Score

1^/10
behavioral3 behavioral4 behavioral5
- Target
  
  gdtadv2.jar
- Size
  
  128KB
- MD5
  
  d33b3ec7def68b71f2fed86f8816651c
- SHA1
  
  0365fa5845cc259d449b33af352e858b654353c9
- SHA256
  
  83b17bee6712defbd2c6a91c4f5c8e3a4b1d9c69d7fafaa0dedff1676b4bf687
- SHA512
  
  9cb8af47bec4402a148cb4950780fb96686b79c897530316c02964d917ab92a1554a3034f186ac6da6a15a7ad1f7d7fa8ea145cae5bb1d540c877d753ba052f6
- SSDEEP
  
  3072:tlyPwIT8y7NhgXbxdo+i0kgs5jU9HlJ67B3RzUqujrasu/:tlyPwKo30lguwJYB3RzCpu/
Score

1^/10
behavioral6 behavioral7 behavioral8

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8