e5f2eb8641e96357dd23b6e962ff838ff38b05eaf65181058a670b7fa8d2a1bb | Triage

Sharing

General

Target

5112d1ef49dbe1c7b1f0d8d771905d65_JaffaCakes118
Size

30.2MB
Sample

240517-x1c57aef73
MD5

5112d1ef49dbe1c7b1f0d8d771905d65
SHA1

bc7ddfb05de90354159becad118054376295bc91
SHA256

e5f2eb8641e96357dd23b6e962ff838ff38b05eaf65181058a670b7fa8d2a1bb
SHA512

f9dfc8567b6d91f28460431ba3488198223708d1b81b93da764c0c5fa79548511055fa8d1bc361443c18bb3dfdde8f2feb308108e48eeb679e6d1f43605bca77
SSDEEP

786432:26bXVcogk81LufXePsUaZFNToT+UIYvxwAwuAzlS1z+nCOxDosL:2MXVcomd441aZ7EaUFvaAwuMACnN3

Score

7^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  5112d1ef49dbe1c7b1f0d8d771905d65_JaffaCakes118
- Size
  
  30.2MB
- MD5
  
  5112d1ef49dbe1c7b1f0d8d771905d65
- SHA1
  
  bc7ddfb05de90354159becad118054376295bc91
- SHA256
  
  e5f2eb8641e96357dd23b6e962ff838ff38b05eaf65181058a670b7fa8d2a1bb
- SHA512
  
  f9dfc8567b6d91f28460431ba3488198223708d1b81b93da764c0c5fa79548511055fa8d1bc361443c18bb3dfdde8f2feb308108e48eeb679e6d1f43605bca77
- SSDEEP
  
  786432:26bXVcogk81LufXePsUaZFNToT+UIYvxwAwuAzlS1z+nCOxDosL:2MXVcomd441aZ7EaUFvaAwuMACnN3
Score

7^/10

discovery evasion persistence
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

discoveryevasionpersistence