e704a5d7af6d728db7d2488b249ba01796bff69aa45984fa972acb2416b9a81a

Analysis

max time kernel
176s
max time network
176s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
15-05-2024 19:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

47a4a3ad5150b59e8c1a9c85d33c5a29_JaffaCakes118.apk
Size

2.0MB
MD5

47a4a3ad5150b59e8c1a9c85d33c5a29
SHA1

9c5028c7a788a2b3822df883b586cf694d6f2b92
SHA256

e704a5d7af6d728db7d2488b249ba01796bff69aa45984fa972acb2416b9a81a
SHA512

1a3b227b4eaf50c8cccd95c5b47810ff53ee0dc99d776ee895034810e1dccf1be4e11f1d2cc836139b28b3be5791fea3083cd95373a9fb222a705cb406227b29
SSDEEP

49152:rd2A7z0MPsWBTjOh8yAobZhfpu6YT7BV08QS:rFz0M1jQ8UZynPBV06

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709	5105	com.myapp
/data/user/0/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709!classes2.dex	5105	com.myapp

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.myapp

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.myapp

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.myapp
1⤵
- Loads dropped Dex/Jar
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:5105

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709

Filesize
2.1MB

MD5
ec4d46c643c29ee1367bf791e701ada2

SHA1
820d491b682ef5ea4634a73fef5987d00c276150

SHA256
a1874afbe0441c906eaaebc03f9a7a647729c6e9e75a7cdb34bef7742438e0b4

SHA512
4d351ab5365bbfcb01abebf9176d6ceb21f6cb56532412485d90524ea3f39207635bae8e4382bdd37959532b672ca249b2084529c8641109a6ff1c4f5a8f36a7

Download Submit
/data/data/com.myapp/cache/oat/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709.cur.prof

Filesize
1KB

MD5
6c428e37f65910c5b0275d9fd9654b5f

SHA1
4a77df33e1e397c5ca90158748f8c3d672e535b4

SHA256
73f15316a8f32420d7d06e5f488dcfd76525fc53559583bc7575837e624c7a9e

SHA512
08fe270a484c05f83f62ed506d3b1a004a30d1c6b08471fb4cee6bcee7e9a92458c876c3b7924f77ad717515f664feacf79c70914c3340da8b4ea76919890170

Download Submit
/data/user/0/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709

Filesize
408KB

MD5
6eef034d5ac3da6c619cddfb20df2e81

SHA1
1529d69d265f50717c1bf9ae7546b2a80831588a

SHA256
930ec1fe7ff09ef6c66fda123e868d5e7989689fa17d1833e5a04716d296a6cc

SHA512
ffe20e767be04cde31942228b939788edf0c0c89138b43703b983ffd05ad32350a762bc78410aa1e9e7a59cf0b3f05112001c1254e9ac0544cd9a4d9fe641d76

Download Submit
/data/user/0/com.myapp/cache/DA39A3EE5E6B4B0D3255BFEF95601890AFD80709!classes2.dex

Filesize
4.5MB

MD5
f2bdd37bca225c125cb8cdf59e8b70d3

SHA1
8744919e45d714b2ba75ef286eb3f20795e4bb78

SHA256
9cab997e28849d98c628e9fc572ca29036b166c77d3e935ee492d565a303f5ae

SHA512
67fdc6a1466ed8953c5ed409a2b810904d8351a3279043bc48fd6cb5290ba77bb732af7cc854b73948c26241a25f7de6acd6c90a1554d18e01aa91667e089768

Download Submit
/storage/emulated/0/Google/google.id

Filesize
36B

MD5
8f79d9dcf9fb04b3aa7f75af1b57f87c

SHA1
ffcba362d833b5c23a737bcad8da213a792532b0

SHA256
cf713d25cb1bed27a82fd3eb31daec9151be42e985d36d7287fd933cf5c62447

SHA512
04d3fac230782ed4796a1daf41cc4a26f61326618c7f29d3ba19465b2108c9bc3112865954b3629b3eb790a216f514e672f794cd22382748628de88f9e8c3d35

Download Submit