d79433c519f19a791b518c7f25316d4d804b76c0ca0593d217d7f10a7f154572 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

415a551035ee101307af9aa4a9f27d5a_JaffaCakes118
Size

8.5MB
Sample

240514-nrtl5seb94
MD5

415a551035ee101307af9aa4a9f27d5a
SHA1

677ddd25dafef073bd4abd92206782ffd595e40a
SHA256

d79433c519f19a791b518c7f25316d4d804b76c0ca0593d217d7f10a7f154572
SHA512

ea8266076bf64ceee5b0d2106924a83d4c6ce6be8bdbad4c3365f1a13d79acbda37f1f523d319e7bc3c60088decf248eb21333ab658f2f56d65a9658286321ce
SSDEEP

196608:0GmypciqXeet62/gPDlAlZytsCRrV19MzKPzaYIvcXq/vx/0:Zp30el4AD+l0JrVnMz29Xq/vm

Score

8^/10

android banker discovery evasion

Malware Config

Targets

- Target
  
  415a551035ee101307af9aa4a9f27d5a_JaffaCakes118
- Size
  
  8.5MB
- MD5
  
  415a551035ee101307af9aa4a9f27d5a
- SHA1
  
  677ddd25dafef073bd4abd92206782ffd595e40a
- SHA256
  
  d79433c519f19a791b518c7f25316d4d804b76c0ca0593d217d7f10a7f154572
- SHA512
  
  ea8266076bf64ceee5b0d2106924a83d4c6ce6be8bdbad4c3365f1a13d79acbda37f1f523d319e7bc3c60088decf248eb21333ab658f2f56d65a9658286321ce
- SSDEEP
  
  196608:0GmypciqXeet62/gPDlAlZytsCRrV19MzKPzaYIvcXq/vx/0:Zp30el4AD+l0JrVnMz29Xq/vm
Score

8^/10

banker discovery evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Queries the mobile country code (MCC)
  discovery
- Acquires the wake lock
- Checks if the internet connection is available
  discovery
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2
- Target
  
  engine.jar
- Size
  
  59KB
- MD5
  
  9b43a0ef146aa5ba1bc02e6f92eb104f
- SHA1
  
  ef44c2eafa6964c30655d1ae1e0e63ca2f56baae
- SHA256
  
  d18ee3def0b794cd09e799108b06c271615dc00893db8baa5bc6f382d1a8540b
- SHA512
  
  9869dcc83a8ee3133c562f1575068b238e6db87e1fa39f2bb5711474cf58468d26a4c60884693a73fde4d6af30dbbda27b20713a5576711134bfec825eff95de
- SSDEEP
  
  1536:p+WEI2mE7JkaKE0Qu274qPfBEsV+6OvbB8glw2:p+WEIq7OaKtZ2USP+x9Fw2
Score

1^/10
behavioral3 behavioral4 behavioral5

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscoveryevasion

behavioral2

behavioral3

behavioral4

behavioral5