3c48314b2ed68195da7ef901ef22c03cfdb6f96775dc05f60c33a8fe177cc1f3

Analysis

max time kernel
3s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
16-05-2024 12:50

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4b27d6412b61747f3f4ebca629ecbcb8_JaffaCakes118.apk
Size

12.7MB
MD5

4b27d6412b61747f3f4ebca629ecbcb8
SHA1

a0718c4cd8044ed3134bba6764310fb284be8b6b
SHA256

3c48314b2ed68195da7ef901ef22c03cfdb6f96775dc05f60c33a8fe177cc1f3
SHA512

9d972e16028ecaa4bfe1ebda3d7b0e4102fc75a532ea76cf1bd9d0c3f2d549b477b706d363d934726d9d1c22c50d254f6a62d1f5b61ab6425f4e85764d4be619
SSDEEP

393216:WODslmFpKChfkHkf/wgN+GYigCFLv9NNiO:vDslKrsOINig89NNiO

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 4 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.rayark.implosion/app_gameassist/builtin/com.gameassist.pluginmanager/1.apk	4264	com.rayark.implosion
/data/user/0/com.rayark.implosion/app_gameassist/builtin/com.gameassist.autoplugin.com.rayark.implosion/1.apk	4264	com.rayark.implosion
/data/user/0/com.rayark.implosion/app_gameassist/builtin/com.gameassist.pluginmanager/1.apk	4264	com.rayark.implosion
/data/user/0/com.rayark.implosion/app_gameassist/builtin/com.gameassist.pluginmanager/1.apk	4264	com.rayark.implosion

com.rayark.implosion
1⤵
- Loads dropped Dex/Jar
PID:4264

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.rayark.implosion/app_gameassist/builtin.bin

Filesize
8B

MD5
e3540ee47f5a000164d41c06d4ac7870

SHA1
0740545ea445ada36547bf9b199b5e99a3b1d56e

SHA256
c21c219f72156ba248a108d9e069a9d1b160b958ce13de4f202c1995cbc56f19

SHA512
5886eea5081666be64356c08bae9b4aa8ba10939acd21af2dc4cde63af3a0b9ebcd34335abdc5f7be3e7d4fe0e4e02a8ee4913fab01ee80f17d99a5d43efd973

Download Submit
/data/data/com.rayark.implosion/app_gameassist/builtin/com.gameassist.autoplugin.com.rayark.implosion/1.dex

Filesize
90KB

MD5
df5921047dcaebc89926bef783d80ec4

SHA1
eece108db6988ea57baebf8400d9ed7d01c68e51

SHA256
3af43f32417e170ee660199a2f3bc64e8c53eebd6f992c52f23a8c22a780aa74

SHA512
46a6870a7d4d0ee55637df42ab23d8539d1e4360bd6e27d616d765596736fe318491afbc44a9e6ded5be4dd57d6aef1801ff9ba963ac7d69bf5db04dfd1b94b5

Download Submit
/data/data/com.rayark.implosion/app_gameassist/builtin/com.gameassist.pluginmanager/1.dex

Filesize
396KB

MD5
4de617f7b7fc16769599ff677f25a7c1

SHA1
7fb0bf37346a5cea7024b7173ffc6eb02fcbb8f7

SHA256
f9d90c0b383a5aa7803553b4ecd68fda46fa6ac45d4ea499fe1e4a3f2a756648

SHA512
366713d7c29cf854c9ce07f4aa94506cd1e71183ed6bb719a46641de57889ff571faca3987a7fbfa92417f80eb8bf08db31d4bb4c4321f72d1e4e5db2827dea6

Download Submit
/data/data/com.rayark.implosion/app_gameassist/builtin/com.gameassist.pluginmanager/lib/libplugin.so

Filesize
53KB

MD5
f27afd2b8684ac830334aa37e166c99a

SHA1
4b6d730d2cb8377690673bc904ed77b466ce9af5

SHA256
599cb5764e59a8189741f44539cfdfb20f44b700ce2bd32ecead9bdf41e06e47

SHA512
a1715aa901f62b247310fd05f67b60852301f23b3ef9b579138f356a9cac4e6041868a0a166581fb8fe29ec8f0683938db91762fc1d5d5df855132c330babfb6

Download Submit
/data/data/com.rayark.implosion/app_gameassist/builtin/temp.apk

Filesize
278KB

MD5
b205f1938ca83c04a6a9703722e612ca

SHA1
6f9500e86597bc0feabe8cdee146eaf98db438a1

SHA256
bec871dba94fffbb1f0cb78183fa1ee438dfad130e70eb7a4a84302d8ded8f4c

SHA512
30cbb928b96dcf9750e00a499bb8dc065c64ec6b3e2b52aa4af329014f105fe259329317a3f9abecb487ad496195c9afa438969ca85bbcb4076e6aecbd00b122

Download Submit
/data/data/com.rayark.implosion/app_gameassist/builtin/temp.apk

Filesize
43KB

MD5
4c72880700b22e0b2e7d7d8e1003ecb4

SHA1
640ca905692c67271c5f24981120e840643037c9

SHA256
ced50bb13347e614f6f0aebd1637c67deb162531a27887d85be09aac0e5f0097

SHA512
fd3216ee5ad9e1efe004d36c10f2b7ae9a43b266bf1f90cb880c135bc7ffd15c998ea9401f15f8640886db509c4f94c9ce5f792de8f764a5832b1ff1ac4fd314

Download Submit