Analysis
-
max time kernel
178s -
max time network
186s -
platform
android_x64 -
resource
android-x64-20240514-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system -
submitted
17/05/2024, 15:11
Static task
static1
Behavioral task
behavioral1
Sample
502535716efa44eba898cee9e26d5700_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
502535716efa44eba898cee9e26d5700_JaffaCakes118.apk
Resource
android-x64-20240514-en
General
-
Target
502535716efa44eba898cee9e26d5700_JaffaCakes118.apk
-
Size
8.0MB
-
MD5
502535716efa44eba898cee9e26d5700
-
SHA1
1cc86350fd5515e00a315980ade3fc7a094b6f48
-
SHA256
3968e7de4ec0548f333d4ababeb7eed3291f8ed55ecfb9092c5585f10adff38a
-
SHA512
9767d816f67ad0e43351899479c14baa5263ddfcee1a11dfcc8065c4e2a4922049debb32b51b180e4bf36d0ff2822a61e2822b4ea62c7404bc1b7eb0e523fabb
-
SSDEEP
196608:lGp19ZWAoCvTOUY5+sUE3zIufDKkrz01Y03WwAY:l819LvTOb+sUENukrz0O03fAY
Malware Config
Signatures
-
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getCellLocation com.diandianzhuan.app -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.diandianzhuan.app -
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
description ioc Process Framework service call android.net.wifi.IWifiManager.getScanResults com.diandianzhuan.app -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.diandianzhuan.app -
Checks if the internet connection is available 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.diandianzhuan.app -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Reads information about phone network operator. 1 TTPs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal com.diandianzhuan.app
Processes
-
com.diandianzhuan.app1⤵
- Requests cell location
- Queries information about the current Wi-Fi connection
- Queries information about the current nearby Wi-Fi networks
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:5235
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
12KB
MD5ea628e04765adaf4238a5dcdff4bbd51
SHA1a801947619ea8c368efe9c006a324dc6339ac60b
SHA256885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4
SHA512c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe
-
Filesize
512B
MD5d8f98d3feb08d0563ed16ed685776698
SHA10db2ab9ba41be1aaff13f634b3a1c60578e323c2
SHA2560c5b20704d263e8cecf8b2e271e722640d436c40ca48a1210c34b205533e14ae
SHA51257cc16c24a7271d709f236a5ce45dbebf7f17c4ac92b14093d5d94c46adaedfd7a08cc4efd624aa04d89fa2660c01da4d2a8fbd36f27bd78a835ec447b91d32a
-
Filesize
8KB
MD50c6a9677672b05018e110b3dcaae2675
SHA1e4c156dc8f97fa51e304baa36a0718fd93d7348f
SHA256866e931856b4a8ea86f10225a1ac0cd55c8a5da807d0924b8ef16ff8d97e399c
SHA5128fa47022a9de8a0763557dc9d1cf31b1aaa424799a6d7b1e49b44845493b5f00f3b7be3fdb3c78b7e640fd9b57f7afab8316824ba47ff97d8fa59a0e4745bc18
-
Filesize
20KB
MD5d505db4bb9a0c36589db4d1853867791
SHA1aad475b5974f46d8cb5eae497a1fa541ffee99c6
SHA2566d82ef6a44919e1e77d94e4d6fcfb33b0f04d48a7846fafa58d343b20968af32
SHA5122edfc04b01683a4df0ae3b5ceb7b34448f06551743689842f18ce88ff979577171ccbc179ca6f06f1e238dfdbe035e411239797ae23780ddb35a778fe6d03a87
-
Filesize
512B
MD5f8613602e8b03201689a37ea9434ec6d
SHA1968f32f750fb4ae8bc9a97fb322fc50554605e26
SHA256171ad084f13b1af841c4f0ffc9643fa711e5d2b84aa472993d750f05aea2d960
SHA5122c023cc3398bcfc715560c27f511e528afea4afd54be793e6b9081bdb702948f44d7cd04a0408e5c08d2f8e73432e2f5e9dd89fab4949f6f2e3f7bf0e3dd52e4
-
Filesize
8KB
MD5d1be36e7aca0ca473ff12e70acbd542f
SHA10dcdcd47b13d0b887321a10192f141ea2cb3c042
SHA256e6d01a0e7377475e79a593d434dd072ee7802380681f0b43013c6438d496df9d
SHA5122ef6edd03d0880cd8dc20874e5d970545f3127ce8610e085726e788631234c97b56e970f3f7994aadd309868eaba80178084e5cfa662bd446a6622692dbcdc5a
-
Filesize
8KB
MD56aeb158f4fd96ce597c0ae5ddaa57253
SHA16fc68975ef9e2a9dd82a3ed33b394586cecc7098
SHA256817eaffbe5db96359648f4789d26077050956f11e53de92e89217010b2160b97
SHA512d7642aa7d365cc79fe8609f700cc2db928fbb0fb039609ca69fbf443bc468604f9cf0ae60a60250f200569daa779a5278ca2628b73ce12ab0df5769364ec696a
-
Filesize
12KB
MD56da302a2e5fc0263420684f38a00e3fd
SHA19e1c35e91c3b84600dd8ebc10e072ccb91b5895a
SHA256a9b2f6227429fd83edc4db9e62c5e3f8c45b55598f7b10c3132d6b339283c8d2
SHA5126e91d3076e4f382a5e4119e6429b90bd4d604c858acb4914e8b67226f4ad0626e29726e09d12965f075ac6aebc49eb22faf0f5c6a286913aad9515887f91fa1b
-
Filesize
512B
MD58a707fba3721ffea1ee4d88eb80abb1e
SHA1ba6756191561b2d6c6175b3eee61e9f49efa894e
SHA256d5a33c768c28f2a32c97121210643a7cb409a77c562d05d1bc99d81e6f941517
SHA512cd8a53fb33b86b9b74df91c870a204fbc5694dc08054b0033a212edd7300526d8a8aff38596d627b8f131a5cf0138aa2e7c7af161e834e67935861c499a01dcc
-
Filesize
8KB
MD58d0ca05232353aeabdeffb7548fade1e
SHA12830cdbc3c9a3874b05fef5cb363565586bbaa29
SHA25627193368e5da34b27237ccf52b90b8cb8b46afeaa993a4052bc33aa0467931e2
SHA512031c103588a0416b689bcd003e12642ef2a49af63f1ff3ae5b5f38b80fe637c06825eec83c5760bc8773e5adb547689717bc68a87580890903a596fd53fea9dd
-
Filesize
4KB
MD566314f7b5bfd6440d21c4ef18928afef
SHA10d0bf8b6bca8b544adb6cdf4da8b84cd44337303
SHA256916ccd63aeec3bafc393fee53f8b916d654de4e01aa7a35bb93bfad131f14430
SHA512459142697063d9e7b3243e405a4b8a5ea338fbc41a9447fae96bd2a4fbbd8c5e540ae3be5fecc91ebd81979641b6652a448480b8e9aecf7cfee71f26eb2ad4b2
-
Filesize
128B
MD518c725a7cc86d2a8b35a0ef728dbb27e
SHA12eee728b298860f1170420ad547a797a477c98ae
SHA25689313d3f760c8ade240b137abe7010497bbf04e3eb64f4f47f1366dce702c4b5
SHA512d460df50d674299ab722255bacc90bbd37b00f7a665ef9bf7337e97e1c6c8216d0d4ee39dcb4f9ff381cbc42e33209c638b79301324d6a2b4b592594d8d5a449