Overview

overview

8

Static

static

6

4193f0146d...18.apk

android-9-x86

8

gdtadv2.apk

android-9-x86

gdtadv2.apk

android-10-x64

gdtadv2.apk

android-11-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    4193f0146dc8441eb0d4db2a67a007a1_JaffaCakes118

  • Size

    5.7MB

  • Sample

    240514-p7t4aage68

  • MD5

    4193f0146dc8441eb0d4db2a67a007a1

  • SHA1

    bba723d3215cf75de10fd8b706c9f5e0de87e682

  • SHA256

    d64ebdde55e6aefc10b5f9381bddba6a0df327b30aba6da9a0471fa995cce22a

  • SHA512

    f57ddf71f73afaa0f4f01c93e4a1d4fd3c5acd6cbcb20cc7011999a335efa24660e2a2dcbe0ec4eefd9d73a7f268a1028619e465e47aa27951ee3b877d2110d5

  • SSDEEP

    98304:aR+XUwO3AcvfYJbgD9CAnO6PyIN2Rut20SlDMzDDYOKBiXjt:IhBgMD9hgIcut2P+kOX

Score
8/10
androidbankercollectiondiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      4193f0146dc8441eb0d4db2a67a007a1_JaffaCakes118

    • Size

      5.7MB

    • MD5

      4193f0146dc8441eb0d4db2a67a007a1

    • SHA1

      bba723d3215cf75de10fd8b706c9f5e0de87e682

    • SHA256

      d64ebdde55e6aefc10b5f9381bddba6a0df327b30aba6da9a0471fa995cce22a

    • SHA512

      f57ddf71f73afaa0f4f01c93e4a1d4fd3c5acd6cbcb20cc7011999a335efa24660e2a2dcbe0ec4eefd9d73a7f268a1028619e465e47aa27951ee3b877d2110d5

    • SSDEEP

      98304:aR+XUwO3AcvfYJbgD9CAnO6PyIN2Rut20SlDMzDDYOKBiXjt:IhBgMD9hgIcut2P+kOX

    Score
    8/10
    bankercollectiondiscoveryevasionimpactpersistence

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      bankerdiscovery

    • Requests cell location

      Uses Android APIs to to get current cell location.

      collectiondiscoveryevasion

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery

    • Registers a broadcast receiver at runtime (usually for listening for system events)

      persistence

    • Checks if the internet connection is available

      discovery
    behavioral1

    • Target

      gdtadv2.jar

    • Size

      79KB

    • MD5

      b21bcf99bc6cfa9edadc401ebd168e21

    • SHA1

      0f53b96fabd9e73c493a24b897276556ab2c49ba

    • SHA256

      d1fac34723dd4d7188dd4a89aa369eb70e3dbec9774118a18aa0907ddba46517

    • SHA512

      8d4e8239eb07aaad86bcb948e10eb278ae24e0c61a4b01ee152a380fc57187d473a0cc21d1e2d5cd896f893ed5eec3df1e3150b05ed495a31ec7c16061060a48

    • SSDEEP

      1536:iU4Tsz+bJzXovZNSyV8e/1EY2S0tJN/kNhQR2Wpyk:ij4WXoxNSyVD1Z0mjW4k

    Score
    1/10
    behavioral2behavioral3behavioral4

MITRE ATT&CK Mobile v15

Tasks