34a48742babda8a6c97235bb8d9517eba922c6007a1ac490e208d79e489985bb

Analysis

max time kernel
25s
max time network
144s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
15/05/2024, 08:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

454d5c301bd5415dea0abfde5afcfbbb_JaffaCakes118.apk
Size

4.0MB
MD5

454d5c301bd5415dea0abfde5afcfbbb
SHA1

0a50a5cb677eb70308f381f4bcaae041df436f1c
SHA256

34a48742babda8a6c97235bb8d9517eba922c6007a1ac490e208d79e489985bb
SHA512

0e4064f30d2982f908d70152c9d35667457a021970002ff20212337a05591cf03cb2826b196303e5f1224460fe8dc66302540e7f84a29f15d1510052537518b6
SSDEEP

98304:rB0bSNfvb7pTdRgYhAVGDIVRYSz6hP6XBh6IG9:rmG9vb7pZcM83YSz66hm

Score

7^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.jacey.camera.detector

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.jacey.camera.detector

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.jacey.camera.detector

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.jacey.camera.detector

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.jacey.camera.detector

Checks the presence of a debugger
evasion

com.jacey.camera.detector
1⤵
- Checks CPU information
- Checks memory information
- Obtains sensitive information copied to the device clipboard
- Queries information about running processes on the device
- Checks if the internet connection is available
PID:4606

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.jacey.camera.detector/cache/image_manager_disk_cache/27512599d4ab565c93f53dd72aa22cb61f24cdaa61e02ea83477757dfe23c1b6.0.tmp

Filesize
202KB

MD5
4e1758b1463b4e5447ec7da8edc93680

SHA1
0ec3e948910757694a98b0a59979423fa7a9a887

SHA256
e52ca4d68aed9ebfc0d214eacb3c8bd3c35b05d2393ce6d545384df5c963a2a8

SHA512
4ebe4ce6f011883cf91d4f199553919676a13d2cfe8c303d117be7670c984a64626312e9cce28accb87b9276a3f06dcd02a7ff8b9591a8eeab8e1e5e7f9fc50f

Download Submit
/data/user/0/com.jacey.camera.detector/cache/image_manager_disk_cache/journal

Filesize
180B

MD5
bdc4a101323a7f1d126a54fd6c669735

SHA1
72c7e4f0688f09f785bf827cc64af9fcb400ac2c

SHA256
5ac73f9d65118540128950339e64213004970950d13384039e4086f7fa3f91d8

SHA512
a4aeb500e6e6023c5f775ea64b5f479a8b55ae489d251007354069ffd4cdb2fadbddb92d7aeaed851bbe10f6cd9ae80d2673851c1a14d37e452f635c96379df3

Download Submit
/data/user/0/com.jacey.camera.detector/cache/image_manager_disk_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6644712A0081-0001-11FE-D60A2CD21238BeginSession.cls_temp

Filesize
77B

MD5
63f632160276e3193e43f47681eaae0a

SHA1
21abe94de6e52801a60ed90945946bb2fa0bbc52

SHA256
e98904ee60ccd1c99128576ee1d8179dc310be2f002c3ae7418566c7fa39f45a

SHA512
46e379b8f49b19250f589baaca0e2d6c7c97deaf0389fb30a22394cc2a6ee0ecdc3ce7eb6e220a425ed472de18314e4173c93be3b0f62b7a094799c1d5a7497e

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6644712A0081-0001-11FE-D60A2CD21238BeginSession.json

Filesize
132B

MD5
a8ac2133f674d03af31946f0a778db73

SHA1
c1aeb58d1324495335052cfa5f072c031d64760a

SHA256
47a220ce91f3c2355548126b53ecd43b7c3d5ad2c8e30643d770be1282e14dcd

SHA512
3aa3c09d02b41ab77ac4e1c08c00e04db91a6a54184da68d6218bd4377f4c80d486ba6b71c95a26eba92a6254655e437d7ad1b27d9147f55ac457cc11531a4ff

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6644712A0081-0001-11FE-D60A2CD21238SessionApp.cls_temp

Filesize
119B

MD5
e886c8d215a3ed7087e56b62fa2475dc

SHA1
2f4f590c84f3479df0285a3b29f50c2dbdea3abf

SHA256
ad861f0ae9f652546026707485b0bce3b994a2d18ac0c753800d5bf02bca6077

SHA512
032da7a2a5bdac8644892a39cd6bd987e72949882debb453d971c26cb97365990305d8b4c7718db9123e48c7b6ab2d519872f97a91b4fbb64f7453fc733c849a

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6644712A0081-0001-11FE-D60A2CD21238SessionApp.json

Filesize
233B

MD5
9952bc773c5e097a9aebabe51c2f2df3

SHA1
e7e1c41772a9170dfbc7a83c46a33c35ff690eb8

SHA256
8831089b36fb5c04766120350f09e2320c80365f5dbda9968de865312a51ae37

SHA512
4277317dbd89a7861ff10fb7a66f6736bbcc39fdefeeb1462550fe06a3fc884fc7786e809b8d0198326aad9b14f0dc90f92b053dd0b1313e7a60dc5007fa3012

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6644712A0081-0001-11FE-D60A2CD21238SessionDevice.cls_temp

Filesize
48B

MD5
fd6372364a5c5c9cf8945ac3ea7a5d94

SHA1
3c798cab71f6ae7a81e71e58712368231230588a

SHA256
7400bf714ca32b64dd89440c9d5ace4e0115ddce44d169839e465df0e1638641

SHA512
a18b18d061dfd979bce1e0b769009668c322300e7174f51d2532e86dc6018769194507a106dd30b97317f8c1a7539d13a7baeab2900c1e00da7c74e899dab276

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6644712A0081-0001-11FE-D60A2CD21238SessionDevice.json

Filesize
202B

MD5
eeeb942571fa704cf8ae49731fbe9789

SHA1
b5989c4cb932ffc779ee25bb3f7bfb79cf720427

SHA256
78809f7ae96de01e3922b6d3a134c3f7e9a0cbdacef313f70e8d9345bf5fbd71

SHA512
71e55c16f9f8fc936f8607448916bbfa1ba233b7120b8676fe11552916ac4dd3e3a7b0f9c31e14048933c8bb9c9d6d630ab7d28389f31749640cc965b2636565

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6644712A0081-0001-11FE-D60A2CD21238SessionOS.cls_temp

Filesize
15B

MD5
b3d9541cc92a9153d14e5160f8d8c008

SHA1
2e1ac80eb381dd82a03795b682f92020348c0113

SHA256
1ead5b213c87f182ffce484c34f7d9f140ad3425c0f303f460492efe8a26c56d

SHA512
78074409135a210ba4e1407ad9b3f784f5683e83aac4ce3482d4e8135425cf2b30db1ff5dd0041901c490a551a477237c6d255671c7b1fad74090980dcf3334f

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6644712A0081-0001-11FE-D60A2CD21238SessionOS.json

Filesize
55B

MD5
fc1dcee4e422d77e7fab7c08c8a41344

SHA1
d5340127e9d5f735b9d33b9dc61c772fb0e2dc15

SHA256
b843f05ed78cd137c272ba7f0ce8ede3aa853098a856863e51d5c223b58f21c7

SHA512
3ec07617e3e1008572f6f2528de9d4b827050cc5a7cf19a1604c961f9ec370ede6f5fd83bfcc252c0ee286fe244ee6734046ef1aa638dcfc689cd4407a6a8f61

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
3KB

MD5
d667c100fa8537c384a7c56e5d9b2cf1

SHA1
c40db96feb20a3679ff166afb581746cfdc0f526

SHA256
a338195ed0b5485624ff329904927b867d055fe2da17aef362a410473c885b80

SHA512
e0013006a4efd9e639b6da1824ce1fa2722d2983a5c3a0d64411948cbd0433d082595fd42806127da22cdf9aec9cea380122ea29277ec62458c0c861a8574e2b

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
437B

MD5
a2477e5880727fc1277aad966e86e7f0

SHA1
44a7caa05332d5dcc9b6ed76408cd666d2f4d0b1

SHA256
f913b3e1869bea7c080318f3ad7ff6d7139037566fec515c18effffb0431088a

SHA512
4b0d4a6d2f70ac579ac36b68e8bc117278168b33fcaaf2cfeb6735ab7da307ad6cddc406d0c44aa8f9211f5799dd4c455f7b97b334cec4a5bafdf901c7b5d149

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/user/0/com.jacey.camera.detector/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_fc80ed90-4161-4d3a-8c06-50943d5ea919_1715761450455.tap

Filesize
352B

MD5
e6d665eaa761ced9c25247526eec1bba

SHA1
49a599817bc3aa61298cb5c6e7b6d61fe36430c5

SHA256
9728741d47e0ac618213e2d98cb882417f91eb363878cc043b2ea989333e116f

SHA512
8fac2cf5070acd1a011cd6aa652f6a8b4cea1c870dc6a6c2a86973fe4674c30940afcbbeb38e05101d0efe7a7a5e842e3ba04942804d863d72e2d3c5c2f78602

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads