ab4e3f9f580cd154cbb5ae6fd94589367fcede49731ca97f49d05329e52ba190 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cec6e66c2b245c6bf02ccd33ff8d2f6_JaffaCakes118
Size

30.8MB
Sample

240516-zkklfafe95
MD5

4cec6e66c2b245c6bf02ccd33ff8d2f6
SHA1

cd5bf8aac465c19cbc328c4496b1ac3939728726
SHA256

ab4e3f9f580cd154cbb5ae6fd94589367fcede49731ca97f49d05329e52ba190
SHA512

f902f0f68d88a861cc40d728ef6cf91e93c06fa8ea1c2959a6dd7a529c2d78d6083b87a1f2161ccffe5c636326f8f71a54bfeb559186f3345d82688fb508105d
SSDEEP

786432:CsQPrXF4+kbVj3ogI8vpgt0/Y7J1zh7zJ/os8:CnPrV4V0yIEY/Fzt8

Score

7^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  4cec6e66c2b245c6bf02ccd33ff8d2f6_JaffaCakes118
- Size
  
  30.8MB
- MD5
  
  4cec6e66c2b245c6bf02ccd33ff8d2f6
- SHA1
  
  cd5bf8aac465c19cbc328c4496b1ac3939728726
- SHA256
  
  ab4e3f9f580cd154cbb5ae6fd94589367fcede49731ca97f49d05329e52ba190
- SHA512
  
  f902f0f68d88a861cc40d728ef6cf91e93c06fa8ea1c2959a6dd7a529c2d78d6083b87a1f2161ccffe5c636326f8f71a54bfeb559186f3345d82688fb508105d
- SSDEEP
  
  786432:CsQPrXF4+kbVj3ogI8vpgt0/Y7J1zh7zJ/os8:CnPrV4V0yIEY/Fzt8
Score

7^/10

discovery evasion persistence
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Queries the mobile country code (MCC)
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence