Overview

overview

8

Static

static

6

4002330b4e...18.apk

android-9-x86

8

bdxadsdk.apk

android-9-x86

bdxadsdk.apk

android-10-x64

bdxadsdk.apk

android-11-x64

duoduom_10.apk

android-9-x86

duoduom_10.apk

android-10-x64

duoduom_10.apk

android-11-x64

bdxadsdk.apk

android-9-x86

bdxadsdk.apk

android-10-x64

bdxadsdk.apk

android-11-x64

gdtadv2.apk

android-9-x86

gdtadv2.apk

android-10-x64

gdtadv2.apk

android-11-x64

gdtadv2.apk

android-9-x86

gdtadv2.apk

android-10-x64

gdtadv2.apk

android-11-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4002330b4e7451c36a06a1d432584422_JaffaCakes118

  • Size

    8.7MB

  • Sample

    240513-r6k54aag71

  • MD5

    4002330b4e7451c36a06a1d432584422

  • SHA1

    0f36760fbb6183d07e585faa35f5c9c84bd55103

  • SHA256

    57c3f426aa30643ad5b915192dcc3b39c0707f578331bd52ab0d62138163afb5

  • SHA512

    4053c388c256b044a6b1374f2e7ccd471052235f3c6d68ae48f1153c81768a08f1cf4af3d3906e18424adc8edeeb709406f25527712560d711e637065d66c32d

  • SSDEEP

    196608:3lOJpWdeYr0CS9xWpdrDq3L7uNtx9Z+XFIqAA/t:gmBr0V9xWPDYL7+x9AVOA/t

Score
8/10
androidcollectiondiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      4002330b4e7451c36a06a1d432584422_JaffaCakes118

    • Size

      8.7MB

    • MD5

      4002330b4e7451c36a06a1d432584422

    • SHA1

      0f36760fbb6183d07e585faa35f5c9c84bd55103

    • SHA256

      57c3f426aa30643ad5b915192dcc3b39c0707f578331bd52ab0d62138163afb5

    • SHA512

      4053c388c256b044a6b1374f2e7ccd471052235f3c6d68ae48f1153c81768a08f1cf4af3d3906e18424adc8edeeb709406f25527712560d711e637065d66c32d

    • SSDEEP

      196608:3lOJpWdeYr0CS9xWpdrDq3L7uNtx9Z+XFIqAA/t:gmBr0V9xWPDYL7+x9AVOA/t

    Score
    8/10
    collectiondiscoveryevasionimpactpersistence

    • Requests cell location

      Uses Android APIs to to get current cell location.

      collectiondiscoveryevasion

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

      evasiondiscovery

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

      evasiondiscovery

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

      discovery

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

      discovery

    • Registers a broadcast receiver at runtime (usually for listening for system events)

      persistence

    • Checks if the internet connection is available

      discovery

    • Reads information about phone network operator.

      discovery
    behavioral1

    • Target

      bdxadsdk.jar

    • Size

      85KB

    • MD5

      8a7616b8aa949a9c4f56646343fafccd

    • SHA1

      e0653e2cada88ea552f04157916b2d458ea70ab0

    • SHA256

      68bc2ffef6fa34c7e82d4a52a5f7f173cc2206d4b2f22b6b8a6e23d06dd82755

    • SHA512

      159dfcaa317157864ba66e74161a7b7a35fc598544009222a7fd5e1ba9e5cbb4ac62c35491201f692b79c13b033a0a3e83577dc1468f28feeced569f306e47f1

    • SSDEEP

      1536:gTGsje/aPIZJnkah4IFGMd8pAImy3G/ckDaAhUrabvW9LRIpSZ:gTGsi/awYqCqIy/csmrab+9LRIEZ

    Score
    1/10
    behavioral2behavioral3behavioral4

    • Target

      duoduom_10.jpg

    • Size

      419KB

    • MD5

      5576316130a5009e47b1d58bcfc1762c

    • SHA1

      cc080ddade11ada542d9db682a7c3202f50d4bdf

    • SHA256

      37da2a54b259047a7437c345f9dfe3b23df848ee652f56ac737bbe6ecac01967

    • SHA512

      73616fff468123ca21b229a07a1e393112fb952eac8542f204b3f54087523e53221f1fd9b3be4437ae5383067455f457264ca29de7604e6d0d0f25bc0be61a87

    • SSDEEP

      6144:JqyoXfiIy/csZb+gbLiLtPKYdhPqHl3CVz2Rh99kcJc3S8jiu9yBUU:JSXfiIyp+1YohPel3GAJkVQu9yB7

    Score
    1/10
    behavioral5behavioral6behavioral7

    • Target

      bdxadsdk.jar

    • Size

      85KB

    • MD5

      8a7616b8aa949a9c4f56646343fafccd

    • SHA1

      e0653e2cada88ea552f04157916b2d458ea70ab0

    • SHA256

      68bc2ffef6fa34c7e82d4a52a5f7f173cc2206d4b2f22b6b8a6e23d06dd82755

    • SHA512

      159dfcaa317157864ba66e74161a7b7a35fc598544009222a7fd5e1ba9e5cbb4ac62c35491201f692b79c13b033a0a3e83577dc1468f28feeced569f306e47f1

    • SSDEEP

      1536:gTGsje/aPIZJnkah4IFGMd8pAImy3G/ckDaAhUrabvW9LRIpSZ:gTGsi/awYqCqIy/csmrab+9LRIEZ

    Score
    1/10
    behavioral10behavioral8behavioral9

    • Target

      gdtadv2.jar

    • Size

      101KB

    • MD5

      9dc038f6ad17e85ef978f93344107f42

    • SHA1

      d33d8adde7af312593c2ccea7664083d8b1b41b5

    • SHA256

      6bd8965f30b4cf6388ed2aa86fe3b1badf26ac988cab02c8941c588f1753a5f2

    • SHA512

      964173a865cfa82937fed3d8601b4ab04a264ba55e7895f0ef2b330c37fd957897b9e1ad4147472671fcee42ad24986914785b1161dcbd5a6fb2e339f6ab4a57

    • SSDEEP

      1536:7deZ+UNUMn+/mr1SfFPaGM/7/K5flHM3Ixaj1J4OExIbYeagkCC+heUGEzkECL1D:7w+QUe+81SaGSKs3TPZEHeP15GTf27s

    Score
    1/10
    behavioral11behavioral12behavioral13

    • Target

      gdtadv2.jar

    • Size

      101KB

    • MD5

      9dc038f6ad17e85ef978f93344107f42

    • SHA1

      d33d8adde7af312593c2ccea7664083d8b1b41b5

    • SHA256

      6bd8965f30b4cf6388ed2aa86fe3b1badf26ac988cab02c8941c588f1753a5f2

    • SHA512

      964173a865cfa82937fed3d8601b4ab04a264ba55e7895f0ef2b330c37fd957897b9e1ad4147472671fcee42ad24986914785b1161dcbd5a6fb2e339f6ab4a57

    • SSDEEP

      1536:7deZ+UNUMn+/mr1SfFPaGM/7/K5flHM3Ixaj1J4OExIbYeagkCC+heUGEzkECL1D:7w+QUe+81SaGSKs3TPZEHeP15GTf27s

    Score
    1/10
    behavioral14behavioral15behavioral16

MITRE ATT&CK Mobile v15

Tasks