3afb197f914c7e11a5d63f6632b1e3a9085d818bcd3cf18e51f82c24c0dc9195

Analysis

max time kernel
5s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
17-05-2024 06:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4edb8464adf5feddc64376986c92485f_JaffaCakes118.apk
Size

11.0MB
MD5

4edb8464adf5feddc64376986c92485f
SHA1

12f51440768acbd163f44f427bc9f670f1d17822
SHA256

3afb197f914c7e11a5d63f6632b1e3a9085d818bcd3cf18e51f82c24c0dc9195
SHA512

d43869a64d53f045566b74b3606d6a5db73170f028d5d9a4ff33e000cdac2894e4402ffdb360c8bc281d70263ba0dfb5487032f5319a3cdbbcda00676950b591
SSDEEP

196608:LGmUp2pRzko1oUIhyTqPhPEhYGNN9RNiXWJ+zyoNjfCccIdd8hMhcsISNk/rckXB:VUp2zzP1eyTMEuKpN6WJToNbCXUmYc/R

Score

8^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.lenovo.leos.appstore

Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.lenovo.leos.appstore

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.lenovo.leos.appstore

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.lenovo.leos.appstore
1⤵
- Queries information about running processes on the device
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:4341

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.lenovo.leos.appstore/databases/LeStore.db-journal

Filesize
512B

MD5
fff97121b30023d6e21a08e260a4b6da

SHA1
8bc196208342850512607573868acb18ca259a8b

SHA256
7747ae8e001ef0dc8e9e887ea21908238f2149f5298070ac4eb64b955f4652a2

SHA512
5f77c5f45113cdf8bb08e96ac3550e8d0eb098b4786bf25df1f59b45b147b3fe56118ad23434269318464b7d6c1000654c2f6d9f9f9556bacf30c30860fcba0d

Download Submit
/data/data/com.lenovo.leos.appstore/databases/LeStore.db-wal

Filesize
96KB

MD5
bcbb01779e8c80086a7113ea3bacdafb

SHA1
d48916bd5fe6fc018f790c11b6162356dd9f3bb6

SHA256
1f984b16c00e282215c6fc3e8f7b7965769e4109dc1af6b284389e00533b217e

SHA512
4193db808d3da55650e1ead237aace5a3fa9a66308ab8cd7a6df532d29327a3fc7a8f4ea10da65dfe0e073b9652029eb603bc86ee6c3eca5e6e303e9760e476b

Download Submit
/data/data/com.lenovo.leos.appstore/databases/app.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.lenovo.leos.appstore/databases/app.db-journal

Filesize
512B

MD5
fe18918f42d9da4745af39a2131027f3

SHA1
983a128c20b31fd22c4387eb4f362ca62fb0036d

SHA256
6566332222017a72396d306c78b4ddf4a309303537c1fd0b1b160524acace002

SHA512
6120eb13bb84b8f67ab6199f41cd2e7a9d3364bdfb09ce8dce1db6e1475c060ffa9e82a7a5f393cb31e2bc30d712c938c4b41d6f4da3607df3a3a15367098306

Download Submit
/data/data/com.lenovo.leos.appstore/databases/app.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.lenovo.leos.appstore/databases/app.db-wal

Filesize
36KB

MD5
43b96616981b8a5b566b398655c0e204

SHA1
52ae4104f37d8f11cfc3fd7f9e726b13322a24b9

SHA256
a70468382a5c057f91e87db96c8be0edbacafb9653ca09904578509e9328ca7e

SHA512
9dcd3ad73dbd484756714127d4969b4e341b67ea3686a3a351dbf93ca475ef132ce0d9fe4a82a9952615c0e0d4d74e70cfd7796434536396a60712dc9a1084ba

Download Submit
/data/data/com.lenovo.leos.appstore/databases/filepath.db-journal

Filesize
512B

MD5
2b1d147f41ab874f73e49e24784c9467

SHA1
db049c2d8912c83c6aa88e9f9a2ad1c1af796dcb

SHA256
74c53081b9a420fd8a15131181b8c762c56c98616458933428345cca5f170e43

SHA512
b0c386201ef35e8fe3697fb50412c48708021910e78293a57e3c22571367c0c7dda451d44ed1c2b4e01f851b380460e932254c9e1d26c69ebee3dfacd0c286f6

Download Submit
/data/data/com.lenovo.leos.appstore/databases/filepath.db-wal

Filesize
32KB

MD5
c09f56e7dabe7da3819ea84fb50dc199

SHA1
2a6e8fc98abdbfcd8f7547bb1158f7c67dff758c

SHA256
b7cdc87fc2e3fd1232a037233313970843f5f37eb43a5e5a3a819c789a9694af

SHA512
b23d5e4344d5fb46ddd173d6ba08d4c46cc20346d2c1702c30daec90a705f2c6c41b2c4d61f47cc01cc30dfbdd40fd5b3783390febe7e1ccafe9e0fe7c9179d1

Download Submit
/data/data/com.lenovo.leos.appstore/databases/lenovo_reaper.db-journal

Filesize
512B

MD5
4f5b6b6ef2530f5f858e6ebf1898f4a6

SHA1
8fccdb5243ffdf7853e51a7f6864a7bd66a05a72

SHA256
0d0a0960a4c567514e4a877d5ccb138dbc4417098315a672ddb4c1243c62a3eb

SHA512
c4f7ba830e5ce5dc7498f1b6d82bed26a03de5a1dae5c492e7afaf9ea50f566b74525b0754f9f4971eb091a133c2f40bcfcc5cfa8b573841d1913ef36174e724

Download Submit
/data/data/com.lenovo.leos.appstore/databases/lenovo_reaper.db-wal

Filesize
48KB

MD5
3540d6a6c9c326ed7f04a0ff705b6f7c

SHA1
05dad8265b725487e53e2a76ed700e247ea9132c

SHA256
23aaf32ca23c09b98e9a36e8627682fd91f4ab6ef32442f7a4cdf8289f3a3012

SHA512
78e2a6896906298463fd917b465665aac94a7119094f4fb69976ac204d3e2ae8f6619e7a76849a77f44a3f9357906a6ee58d343d07647d6dce967d971a2223fc

Download Submit
/data/data/com.lenovo.leos.appstore/databases/received.db-journal

Filesize
512B

MD5
3693353350a82e32fb934d4964510e04

SHA1
7fc9be29190ceccb6828ddb65df2f949f36adfd1

SHA256
81d316772eeafd9628c3b0a2bd80f27f3f771582807258ddddf70ec3aca51860

SHA512
5ca1e2fb9f7b8a9ab47ebeb84631f594d7a3d34db74667850a4eef3f8b717eb1f1bc77abd5a0ddb125b4342f88687cc717474f3fa7253c5fa3225259579d88f8

Download Submit
/data/data/com.lenovo.leos.appstore/databases/received.db-wal

Filesize
32KB

MD5
9a5ea894d557788bd4d07687d32d2f43

SHA1
7bd7c08556cf59436afe6a388852a7a4edea1b00

SHA256
83a36017d37ca1def53d1d85b06934f6d78605930eec2288f9513941295b40cc

SHA512
d7b035e17a2ec83c693bd2d4952fb14b6b2fc5b1f3be68e43aeb6085df326ca5fbf31d5fb49b345cf2b16d10584ecb442f8a4c006327a1040935e057f391d6f9

Download Submit
/data/data/com.lenovo.leos.appstore/databases/store_settings.db-journal

Filesize
512B

MD5
4ed1c5f48fdd8357f2dc78c510fc1efe

SHA1
6844c359c859f8521bb64e38a980364e53c03704

SHA256
04552a24f2de6492e934b499a3d7d703af4ece6d240c7a1c37b88688d3eabebb

SHA512
9c43b1851210f7895b9b4dcec1128d8f2f4d1e395182d3e77b03aeeabb20ca2f3ce6d7a9ab203149e1e47a1fd4d9af594c8f1392308bd81154e7cd16524ae189

Download Submit
/data/data/com.lenovo.leos.appstore/databases/store_settings.db-wal

Filesize
72KB

MD5
4319ec946883d2085834ef370e4a9ca1

SHA1
11db9faaf3fe146e10c8115c33c04617cb3f7f1b

SHA256
72e974ffc00f159c36f4756eb6e0805b9602cf01b0b1bd7330e10fca4a723fbe

SHA512
61563f61164471f246165e6fa681c92da02e012ece55836907feac6d1ebefdc236ad3c6d482b137c425ada765655e8b8d6ea8c204e65e216ebb292a873d777ca

Download Submit