bf41a428cdac921794a10b4e6fa97e4ea82a11f14a2c676355a06e2fa5b64d52

Analysis

max time kernel
4s
max time network
187s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
15-05-2024 17:16

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

47330efd1cb848c1090019e79b56695c_JaffaCakes118.apk
Size

11.1MB
MD5

47330efd1cb848c1090019e79b56695c
SHA1

1b0b767f2fa33201123da6f6ef956b4ea08dd052
SHA256

bf41a428cdac921794a10b4e6fa97e4ea82a11f14a2c676355a06e2fa5b64d52
SHA512

578403890e0096281585cbb75eff9f8971a7c045265b18a8de563504605f41f30977c260387fed733222ca2a23e12e9435a1e9923fe47525f54aa996db75127e
SSDEEP

196608:TPKtkFCoVRm+HogTlALCXQOLdT6lUTcW2+4QLK/j9SA4DgFsf4+1PAwi:TGk0krH2L5CkUTcW2+4Q+/j8fkP

Score

7^/10

discovery persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	cn.com.sxbid.app

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

cn.com.sxbid.app
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5112

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/cn.com.sxbid.app/databases/bugly_db_legu

Filesize
60KB

MD5
42c993987a4356cd9d0fe56203592007

SHA1
8a98db2b751254e663851f0c062722758e2b2865

SHA256
f4b43187cb0ef8de535b70dffcd4b0d7c0f50381cdec6fa0ca625190aae7fbee

SHA512
ddbfa004eb244510509f395bcffe05b9b08ff5c9015ca5f789294a0140a4dad26b47c5a2c2fadf2f0c3d029029abb1cbef76a67c3886702fc24a5344997328d0

Download Submit
/data/data/cn.com.sxbid.app/databases/bugly_db_legu-journal

Filesize
12KB

MD5
9ebe7568a07f7c12c560aadfa6a145ab

SHA1
4b34baff4e9b1b0a8a933d5d31e2b02819c550e1

SHA256
050974f29ed57ba8e167067d4a6fce365cbe7e58fa00bb1629e0d470b185abc0

SHA512
5fe8258c7b37689fa388741e1524642c8f61b32eca73c5bb3709e6fb180bf7a299d7fc78ef67fb1d775c74d772ad049fd9788031bbc9da442fad596c69d53aee

Download Submit
/data/data/cn.com.sxbid.app/databases/bugly_db_legu-journal

Filesize
512B

MD5
f439efbffb3f9aae80b2d5786eaf4e06

SHA1
83748974c103b568a9eecf77f422cb810083d03a

SHA256
b6d1e5a2ac2c38d1f8e94040d1cf51fb07878d259855cebfab5e9f96ccd2ae7e

SHA512
f9501b95752cb4eaae7c88663ebb3a31a824299cd721e5754f7537435f41736f3c39d45fc27fe9e53b801a1a30abba96b5271568931c601cf9f42a07bb7ff27d

Download Submit
/data/data/cn.com.sxbid.app/databases/bugly_db_legu-journal

Filesize
8KB

MD5
1f4d48547f499b20bcf31eb9f9498290

SHA1
3c46546c3dd5397dc722f0ff02b196dce50015e7

SHA256
ef274d702085cd87a6847dd4c54d323447d918ce3897f5f3b8ab3143b48c0429

SHA512
b04449f6feb7907c1d601f50584262f4970c55dff5b1f9bcc599548227cb4d9bd097afae03dbf79d865d5cef26d763b7d98faea08ec5a7d802595374bf8ee8a6

Download Submit
/data/data/cn.com.sxbid.app/databases/bugly_db_legu-journal

Filesize
8KB

MD5
89eed54ee6ba7c5f0cea85310388d629

SHA1
f34f665e7e84caa2ad15be8e00c1b55564159b19

SHA256
dbe3fb646b752478a22c573080666b49187a50d135dda2d8131435856325ccba

SHA512
68825a4af06255f458f56f2a000849272259f02c026dd18b7f0465cd7694a9e0e7498ba11899fde1689724b4f62764b9757f046f0472986a6c5d10f3883c92c9

Download Submit
/data/data/cn.com.sxbid.app/databases/bugly_db_legu-journal

Filesize
8KB

MD5
d239888757be6bf1bb26d16635a9bb78

SHA1
219b06b5c68269986886285e10c538d2dd6bf88c

SHA256
a61bc1e2d0512852a5f36d206d0125a441ac876850e2670bcc808d2241344f9c

SHA512
e1eb41b60aeca79cb2cd9b4637e1e3c94e212a7365d4cbe37c1b6b08a5fc91a3a5ac96d2678ec6d1303ecce6cb1ef1721490217fa4c7f748c320b5a1c2cc1ee7

Download Submit
/data/data/cn.com.sxbid.app/databases/bugly_db_legu-journal

Filesize
12KB

MD5
ab8445a7998ccd9a4c6555c07329ae17

SHA1
2122655cd3bc167328a780939609694175f6fd79

SHA256
d50413724df28eca5441ae3c0206c6b7bbb4f41cebcdd84435b264c60af24e6f

SHA512
394a35a583ae52e33d079668a89e8ab37fa8ff43a8dd21e881869c2bf7bf5579fbaeee50aba13dd56f9444da821a585729a32d3ed2190a0e72979f558ad0be5e

Download Submit