4eee9c400cac3580e1a65e597a81a92d292c9f9a7f68465d35fe93f384682975

Analysis

max time kernel
14s
max time network
150s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
15/05/2024, 15:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

46bbd5fbc872be3d03c03cbff72d4857_JaffaCakes118.apk
Size

1.1MB
MD5

46bbd5fbc872be3d03c03cbff72d4857
SHA1

e3c38cd06adf989a3d6405c0939a1b079583d0bc
SHA256

4eee9c400cac3580e1a65e597a81a92d292c9f9a7f68465d35fe93f384682975
SHA512

e5a4266863cc11861ed48412ed99151e2cc57f26c02514315722cb0435b592a0f5bddb73897391909f5cb01f909de2145b74cb421fde68c2e84d7fd4c2553c0d
SSDEEP

24576:RGsEBu+VTI5Cle/C/XCMXxkaQXNbe6i6I1w55+mgcvq+:RGpu+VLleIXCMh6be6iTu5+cvv

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	aimoxiu.theme.mx589336c6b6394006428b9c2e

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	aimoxiu.theme.mx589336c6b6394006428b9c2e

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	aimoxiu.theme.mx589336c6b6394006428b9c2e

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

aimoxiu.theme.mx589336c6b6394006428b9c2e
1⤵
- Checks CPU information
- Queries information about the current Wi-Fi connection
- Checks if the internet connection is available
PID:5117

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/aimoxiu.theme.mx589336c6b6394006428b9c2e/files/mobclick_agent_cached_aimoxiu.theme.mx589336c6b6394006428b9c2e

Filesize
96B

MD5
b56b60b17295ea31d40f845ee36fa461

SHA1
1234ce76f779fb832621371ecbd5231d3f34e9fb

SHA256
6485d08c5605247e3213469ea12daa4c58edaa4deae6338a15ee2eded1c9183a

SHA512
dbbb3cb31d2b6bee240be143191334ac98af28632b0093e33031eed0483f2f5ccb76f70b1c74ed5dd337523de246b8feb2a0aeb5a235fa7e075549e0a48d5406

Download Submit
/data/data/aimoxiu.theme.mx589336c6b6394006428b9c2e/files/mobclick_agent_cached_aimoxiu.theme.mx589336c6b6394006428b9c2e

Filesize
192B

MD5
f0cc9854a124e4d39ba912c960795af9

SHA1
a6bb05ce1cfebfabdf56f475ff620edeec7a7f6e

SHA256
03f5484da8202c9c3f62bd7d2afec16400c21acc6faa4d7ae86c8697626ea9b6

SHA512
640ffc79322110d95bc6d86e3410989638f68f980a087c7f939839d22bd8f9dc5d91c941ab3abb6c0a185e6a5c7ce5240ac37bb17365f7e7dd461dfdcac21548

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads