e704a5d7af6d728db7d2488b249ba01796bff69aa45984fa972acb2416b9a81a

Analysis

max time kernel
177s
max time network
132s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
15-05-2024 19:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

47a4a3ad5150b59e8c1a9c85d33c5a29_JaffaCakes118.apk
Size

2.0MB
MD5

47a4a3ad5150b59e8c1a9c85d33c5a29
SHA1

9c5028c7a788a2b3822df883b586cf694d6f2b92
SHA256

e704a5d7af6d728db7d2488b249ba01796bff69aa45984fa972acb2416b9a81a
SHA512

1a3b227b4eaf50c8cccd95c5b47810ff53ee0dc99d776ee895034810e1dccf1be4e11f1d2cc836139b28b3be5791fea3083cd95373a9fb222a705cb406227b29
SSDEEP

49152:rd2A7z0MPsWBTjOh8yAobZhfpu6YT7BV08QS:rFz0M1jQ8UZynPBV06

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709	4252	com.myapp
/data/user/0/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709!classes2.dex	4252	com.myapp

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.myapp

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.myapp

com.myapp
1⤵
- Loads dropped Dex/Jar
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:4252

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709

Filesize
2.1MB

MD5
ec4d46c643c29ee1367bf791e701ada2

SHA1
820d491b682ef5ea4634a73fef5987d00c276150

SHA256
a1874afbe0441c906eaaebc03f9a7a647729c6e9e75a7cdb34bef7742438e0b4

SHA512
4d351ab5365bbfcb01abebf9176d6ceb21f6cb56532412485d90524ea3f39207635bae8e4382bdd37959532b672ca249b2084529c8641109a6ff1c4f5a8f36a7

Download Submit
/data/data/com.myapp/cache/oat/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709.cur.prof

Filesize
2KB

MD5
72298e074de5d81220f25c6b64906f82

SHA1
f39f131f9d5996eae4f41396a2fde075f857e45d

SHA256
4145548ffe6a3dc7cdce81c473808c67122e63dd03998457013481dd43cedd5d

SHA512
3a2f4986df21bae37e8259d46455e92783dbf0aca44b722a217735708d48c60a5912d1cdd3e0fa4ea3421b89ad38d00fd54ec479a5ce1d654ecae549cd428b32

Download Submit
/data/user/0/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709

Filesize
408KB

MD5
6eef034d5ac3da6c619cddfb20df2e81

SHA1
1529d69d265f50717c1bf9ae7546b2a80831588a

SHA256
930ec1fe7ff09ef6c66fda123e868d5e7989689fa17d1833e5a04716d296a6cc

SHA512
ffe20e767be04cde31942228b939788edf0c0c89138b43703b983ffd05ad32350a762bc78410aa1e9e7a59cf0b3f05112001c1254e9ac0544cd9a4d9fe641d76

Download Submit
/data/user/0/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709!classes2.dex

Filesize
4.5MB

MD5
f2bdd37bca225c125cb8cdf59e8b70d3

SHA1
8744919e45d714b2ba75ef286eb3f20795e4bb78

SHA256
9cab997e28849d98c628e9fc572ca29036b166c77d3e935ee492d565a303f5ae

SHA512
67fdc6a1466ed8953c5ed409a2b810904d8351a3279043bc48fd6cb5290ba77bb732af7cc854b73948c26241a25f7de6acd6c90a1554d18e01aa91667e089768

Download Submit
/storage/emulated/0/Google/google.id

Filesize
36B

MD5
f208b02cf72a04cf58f89a6f91cc324c

SHA1
5618c4f0a527c94beb406915febcdba4956b9a97

SHA256
b95fbe91c7a45403f910ec04ea13f8218ad63257de424c28c4cd95bcdb6dd759

SHA512
1edad4a52f8bcec795aeec163706ff34ca537b879de86260436aa4e7fd7fbb6b96de88f1577675690aec41a6a5a3d21595c2bf754ee648eebe2d540494282c49

Download Submit