8cef4dd7a57ac4e45a22e865350aa603d196d6373cccc5d4219ecaaf2a06fc5e | Triage

Sharing

General

Target

4ae410d85f9ddf89a9c577cefd356e21_JaffaCakes118
Size

1.2MB
Sample

240516-nvleyaag41
MD5

4ae410d85f9ddf89a9c577cefd356e21
SHA1

c8843ed427463283d8bec704195941534b19ae66
SHA256

8cef4dd7a57ac4e45a22e865350aa603d196d6373cccc5d4219ecaaf2a06fc5e
SHA512

8656b16c7fde4fd3dd339eb47c6debfa94cb8aeb7dea7640f77bfff41daa76f7189513c30c46ef62b88c78b96764ae1eb5e793f63fcee894c952f03d68938f5c
SSDEEP

24576:mpEuTjlhBdsfHSDP4OzgmTjfYls64v7WrGWu4RextCtBZ:mHTjlhBdsHnOsmTjfsiwR9

Score

8^/10

android collection discovery evasion

Malware Config

Targets

- Target
  
  4ae410d85f9ddf89a9c577cefd356e21_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  4ae410d85f9ddf89a9c577cefd356e21
- SHA1
  
  c8843ed427463283d8bec704195941534b19ae66
- SHA256
  
  8cef4dd7a57ac4e45a22e865350aa603d196d6373cccc5d4219ecaaf2a06fc5e
- SHA512
  
  8656b16c7fde4fd3dd339eb47c6debfa94cb8aeb7dea7640f77bfff41daa76f7189513c30c46ef62b88c78b96764ae1eb5e793f63fcee894c952f03d68938f5c
- SSDEEP
  
  24576:mpEuTjlhBdsfHSDP4OzgmTjfYls64v7WrGWu4RextCtBZ:mHTjlhBdsHnOsmTjfsiwR9
Score

8^/10

collection discovery evasion
- Requests cell location
  Uses Android APIs to to get current cell location.
  collection discovery evasion
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Acquires the wake lock
- Checks if the internet connection is available
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Execution Guardrails

Geofencing

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Location Tracking

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Location Tracking

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectiondiscoveryevasion