Analysis

  • max time kernel
    128s
  • max time network
    151s
  • platform
    android_x64
  • resource
    android-x64-20240514-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
  • submitted
    18/05/2024, 09:28

General

  • Target

    540f70d9d68a6a7851a327b51a2e18d0_JaffaCakes118.apk

  • Size

    10.8MB

  • MD5

    540f70d9d68a6a7851a327b51a2e18d0

  • SHA1

    360edb830dd99a27a4c74c5c77ac6a63641fd4d3

  • SHA256

    30533dd01149aae9d1be0c7e6bff2535a4d4b16d73265057725a00249dad693b

  • SHA512

    256159cc80bf489423b036690869b1aeb6c63a63584f15d3e56231be9cc012c3118f4ec432a85fe0a360ca4db13237261d98e8ea2d8b45c25c1e869a8e974b2e

  • SSDEEP

    196608:Gi9wXFJhkn1C0ayoo5SFhZWl+DbuSYBMwokT71Xe7e4lf0Z/aorTC1XZZLOt4fyg:C9iayoo5SFhTbeUkECw0Z/aoihTvIY

Malware Config

Signatures

Processes

  • com.yiwyxb.dk140255
    1⤵
    • Checks CPU information
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks if the internet connection is available
    • Listens for changes in the sensor environment (might be used to detect emulation)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:5217

Network

        MITRE ATT&CK Mobile v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.yiwyxb.dk140255/databases/RKStorage

          Filesize

          20KB

          MD5

          8142abfb5ac55677d59f554a6dce1901

          SHA1

          684558d91f3bca0627a7a0dd67cc207b0c096a6e

          SHA256

          ba9017a8f1bc7844c0f6b1099926f914133d49d2c1bf77ab41cc2c3d4b6921f6

          SHA512

          6de4f5f00511d9b2a1a868043ee37c23a76de836106951a4b22374e735fc3c59842289b84078598e24516f81a6268acfba02405019df277362ec663ca6d82d6f

        • /data/data/com.yiwyxb.dk140255/databases/RKStorage-journal

          Filesize

          512B

          MD5

          1192423b047b387558bd2bc77b5dcd2f

          SHA1

          27797c5ef8cdbe5c65af0ab5981d4d12e451970c

          SHA256

          8f21f9419da14c976a52cb42ae8310c661553ba5a6395fe41bd34d95636498af

          SHA512

          5c1f2695e69401d04ee2d559f90f72853386bb76d47df35280334876dd49f404a2f62f9ea3c413f41af3c560172e320af7edf19e8479bf19140290fb7a5e6431

        • /data/data/com.yiwyxb.dk140255/databases/RKStorage-journal

          Filesize

          8KB

          MD5

          40af8661dde3f2a69447a85b585bdd05

          SHA1

          7880618ef774f4f9e96101064707d40df520ab03

          SHA256

          b296b4bf5610fe8d6d0809b11b1d64872f84231f9153363c7e713166a3de309a

          SHA512

          4fd2d92c9e158dca5edfc8b8a91e2b4ad357fdd48e9233687a675ebe4f6d06a3287c5e83f83d17aba566a42aeb47361703d1e20e54af77294d890309b5bbebee

        • /data/data/com.yiwyxb.dk140255/databases/RKStorage-journal

          Filesize

          8KB

          MD5

          d515ff5e5e1f33760f48e0cd523bcb65

          SHA1

          ecc61fdb2ab7742b042a387affaefacc3fcce272

          SHA256

          a413a973bc8bc4dd330538c4d00a538b73c9e9cb766bfe619b371a42035a248a

          SHA512

          de76572577d22fa9800082a357ebcb579935028f25f36c04b009eb4e95e0e08bb3c1943a7de1044ec214c68a27cd0a7f039c328449559ce2a3b5082adde7ec76

        • /data/data/com.yiwyxb.dk140255/databases/RKStorage-journal

          Filesize

          12KB

          MD5

          3e526f3d9a90ce5ddb1ad4c100ae09d0

          SHA1

          66cb8c9540b9fb2d140628fa8d7cf8448eb9fd87

          SHA256

          b87bd02af67e1e48040990f5d924d70e39c0dead237c6654b95223a2d730b780

          SHA512

          be8c98e6c1bf21806a26b3f99cd0901718c4088269bf937fb522afd7b8c743a47d9084280f5b26f5e5f0efc16e372c6ef2862ac1c8b8e4debec152bae9f7c0f3

        • /data/data/com.yiwyxb.dk140255/databases/RKStorage-journal

          Filesize

          12KB

          MD5

          626a9d02ed1ae947ee1e192e4ce92668

          SHA1

          2531c0f1960e8b4eecd45b84f851092af38e0150

          SHA256

          d6f4c009d9485843b37f0a84adc630764f5978a84f100ecb5e1b253d8a805893

          SHA512

          090625d93811e205d92683ed01930e2085ae69a4a1933a3b09b0c39d30ede19f898aeb8c636d187ea785fd17fdc8c55c146f3e6b18b4e7e09b0950d0634ad13c

        • /data/data/com.yiwyxb.dk140255/databases/RKStorage-journal

          Filesize

          12KB

          MD5

          2a2a6644ec61d1a82312da23a99d069d

          SHA1

          30062315909d49fae8865012d0f103dae83104e8

          SHA256

          6f180bc66ecb6718d162df1356e1cc99d8aaa15b06374b4a6523880b1068c356

          SHA512

          b0c39275ea10e629b2dbfd725e0b89db01a48ccf02082d6e1391e80d3653737480803194c7e9f54b8fe54095b73adc2a65465da03133efaa47173d1cc770cc06

        • /data/data/com.yiwyxb.dk140255/databases/cc/cc.db

          Filesize

          36KB

          MD5

          0908e924aa236931dc7166fef6e00862

          SHA1

          7782648d6d8f6e835bd47058d4852932c096a467

          SHA256

          38f8548795ca7470b449dd1de9598c07a247ba59883c0764c9c96ff0b7d31d7f

          SHA512

          3c16fbc5172aed04cd206e776c46d26e911732c6e3631536410a71f1d217449475727ac9b3175e827c5ce645a1da9e05900258ee6ca27c936a9060f241361dee

        • /data/data/com.yiwyxb.dk140255/databases/cc/cc.db

          Filesize

          36KB

          MD5

          67c12933d1e0e63d9801a6aa43092ce7

          SHA1

          b6936908554e4a1986b8eb08289e2d3545e8ff74

          SHA256

          abda5dd4cc2e7dbb951637c4b49d6990f9f34411fab4dee1a387dbcc8e7eed40

          SHA512

          db8b818daa3ff4ec7678645f84bf8b45c809bcbb758ea78b28982d071572655bba2d20e6f1ca4f0d057ab34fa655c5bc40457dc65050180351a2fc04a47175dd

        • /data/data/com.yiwyxb.dk140255/databases/cc/cc.db-journal

          Filesize

          512B

          MD5

          32b53e3bc7558191dbdf2b220dbb049d

          SHA1

          fe5ddf2a8d5d3c25362261afb814a266bc3de7b2

          SHA256

          d0c485f43b901a32f767dfef73281aaa09a4f0796a454d1108011a021c938d1b

          SHA512

          370066f4898bab649e14673a5009faf763dc9bb14876bf921284ea1bad01b325c7eeb52b2b2d862b951fc5e2c4a7163522e2fdb7df3bcbc9649ff5f8fde1fe8c

        • /data/data/com.yiwyxb.dk140255/databases/cc/cc.db-journal

          Filesize

          8KB

          MD5

          b41398dad64c236ce422399d512fff7b

          SHA1

          266b23c4d8572355f28b112a0c4e10372bdc6868

          SHA256

          a3138884af2462ca56ab16bcb321007d89b53bd5a64203f6bc8247099fd89462

          SHA512

          c5e62c09a150908f1ea9b9500549dbfda63d190d1e3a97a74d5d590e1fcfa3a7ce17e26355963bacc8094244fed52fd0281806e00af2e0a61f32bc7ec23da33d

        • /data/data/com.yiwyxb.dk140255/databases/cc/cc.db-journal

          Filesize

          8KB

          MD5

          4b0cd8b6e33da480a6ac64fcc22a5e29

          SHA1

          f4ae0a1c21b657279f71bd8a0f235debff4400a3

          SHA256

          208aac064f71ea9870013b484104951dc9d372cbfab128fab4b8e1eeb3f8556a

          SHA512

          61d74170ea7960664f7a33aad0db1a26680586ea1bae60adf087b2c397bd5d7b0212d84bf91780ece9d0b6507c0dc1a9eec6d7a694696f49f69212e0b331d8e4

        • /data/data/com.yiwyxb.dk140255/databases/cc/cc.db-journal

          Filesize

          8KB

          MD5

          156dc9a62c4cbfd5246e03b2ab0e7639

          SHA1

          6b21e8b02cd9f79970d14105164130fd8ab82e6c

          SHA256

          e27f7c2dab793a9a1b0a43a027c965d062ce4c033b562512551b7adc3d27cae4

          SHA512

          3796fbffa5057177749909e5875e2dc14fee0242d14a0c2bb1abf616fbd6fd1d5bb6d17684a3380cbf6ca619549ab832c62ebbfd9a11e2a32c1a7fc630b85fa5

        • /data/data/com.yiwyxb.dk140255/databases/cc/cc.db-journal

          Filesize

          8KB

          MD5

          e719dd538af5c49ec76beff881a1ef34

          SHA1

          620765b12fa692e8ec52216e5520de8bb565cef1

          SHA256

          9a94ff353e67b8ea61829c94985e96569947431c1fd5fe81e9d507e23c983aca

          SHA512

          03341d24147ed0c2e85329df8a0616879795571018d4af45a59fc3888203b0131b125011555fe6c061244e910e836c03149fcf23559b7c8572d5ea402e8233d6

        • /data/data/com.yiwyxb.dk140255/databases/cc/cc.db-journal

          Filesize

          12KB

          MD5

          bc20e63a5fca486d0219da03b6c09d86

          SHA1

          f4520a026c816bc9e8af4cac1374037f3d2b7019

          SHA256

          c0cf6a6f4c9816580bdb82ef063fc3a326bfc2fa6178cffc6dc3aa47c66b6de1

          SHA512

          d28c1775c684297f49424f2752661209bd45b340bd1f6650ec6cca94feb57d9558e0b44fe1d6b6d0f3b9a99a176070aa76742b8c5e32e76d6317d9eab3d35d0b

        • /data/data/com.yiwyxb.dk140255/databases/ua.db

          Filesize

          32KB

          MD5

          a69bfbc1997260c14c23e8f2886e41a6

          SHA1

          ed88b906a11468376402f57a02502dae72054906

          SHA256

          a32e963015da9b994f8fb4c4f8cf422444e0d8542790ba3fbee28c64a64a0dc2

          SHA512

          1bbbe78c1938c45d46212db7be61c470c67366ee5f867658523a610b73aade6116df2fc331e469c239698a9091d035967f36286bd22c65002458cac426b938f6

        • /data/data/com.yiwyxb.dk140255/databases/ua.db

          Filesize

          32KB

          MD5

          38564ad4c73e5619bc2264b0c44997a5

          SHA1

          e55f6fe1b20347ad4cd58d77af0b0feb149f63d0

          SHA256

          1820a909a310bf7bc4ddaab6c8be3954dedd53612749f7bd08fefbef31670ec8

          SHA512

          30d84731a3d8380e63bb73227623e86bd779476474269f252abe546028531c77658573874444e66b862ea049724e93a9344b1d4fd9f26c0fe02a79a4079a9a7d

        • /data/data/com.yiwyxb.dk140255/databases/ua.db-journal

          Filesize

          512B

          MD5

          923a488cc2adb3eb46f5d2ac0646e400

          SHA1

          d27331f48539a5ab4369bf55d00c92b3916dcc3d

          SHA256

          b6c20de70efe1afc7d66cae58ea1ce61c2cc1f3a87180699be538e4d16cc9e18

          SHA512

          11fd290055105d8c66457a748c120a8ad9b778879dd296ab0c6c58962d9e97575ea65f692074d4d74d08a0054e7b403b230316ecc809bdb8a580a2e213d29624

        • /data/data/com.yiwyxb.dk140255/databases/ua.db-journal

          Filesize

          8KB

          MD5

          c71f2b98f33555c34664614ab5429124

          SHA1

          611e84c921d414a1ad6a1eb31d19b5395f9690b2

          SHA256

          3ec9e4530843d64df57b64a0814ce74ab58b7e07db435c32f21687f4b4c84da2

          SHA512

          0c3ecede87ca3a0f6153bba587488447da38d36d3f4ee31f5e5d1a69a3da1229b8e9da5d944698ea1044be4ed25cbe101914360392cfe4a08c9f4ef41ab4be11

        • /data/data/com.yiwyxb.dk140255/databases/ua.db-journal

          Filesize

          8KB

          MD5

          319d0ba1bd93c6b3d960bd8b15bdeeb0

          SHA1

          4bfb17dc85a7f07893616a3dc82fd938c3eb6215

          SHA256

          01de3f536d97b25098293f42404720f6bc7f11ac94f2b50911c7ed5c5b90d7e2

          SHA512

          3630ba44bb9b61043ae6245cbcb02bd8513ffa4b2141f744900c6d8ac3ec00a3df5be5b5ee9faf08a7a1d4cf1b7a5b8c4aa69b13c6ddb16dfb3d128a652cf4bf

        • /data/data/com.yiwyxb.dk140255/databases/ua.db-journal

          Filesize

          16KB

          MD5

          66b5e6d725401d8f6fee281f3a0d2a38

          SHA1

          27d11d1874bfec97f681ab6b8946964247d168f5

          SHA256

          f370241459b7e3ab683ec92a4b76965d1382c5089f58d88edfd03f836c0e5232

          SHA512

          e5bd898c99510dcc0d6aae92ca0f1842fca8124c9fe51e034f0e4f3ee230ac391a044125d04f6117017cb35725f92d20309533c5c9ffbd53c4d23368f92d2621

        • /data/data/com.yiwyxb.dk140255/databases/ua.db-journal

          Filesize

          12KB

          MD5

          c31acda427f172c31d78411780121ca4

          SHA1

          61aa9b4ef4bf9c098765d23472941fd4628bb2c2

          SHA256

          c237226673c594e0af0efe9c04420917fdccb24b9c3f0e74539710ea277ad553

          SHA512

          a089a768f43306ee609a2a0ba418c1921d657542e9da79193fe5eb7dc78f3979677983634699b58f77c6b4da4893f719ce487f2e9dbfa5f3d76f522e1d53d6c9

        • /data/data/com.yiwyxb.dk140255/files/.um/um_cache_1716024632022.env

          Filesize

          1KB

          MD5

          90d33358bd80f9e227d04408737bce4b

          SHA1

          dda7cf65fc3f1ddc8927d4b6e3f8bda1aa38898f

          SHA256

          be0d3ab8da34f090ace525f1822daef9dc19847f247698c53fd54ffc8d008766

          SHA512

          3037a7c02a1f3764ef80b6d37103ecb8426247216b8a4348c4ed4aa6ac98fb8baaceba81cdb7df0b9d35af3791d98611ffce5e138043f34ce5c60446216166a3

        • /data/data/com.yiwyxb.dk140255/files/.umeng/exchangeIdentity.json

          Filesize

          162B

          MD5

          f9f6dd0c9d750bca3ddb787a73098323

          SHA1

          7bcfd31676c74c88f4d4a8b2e49347c3edcb8f6a

          SHA256

          1e44dd3a09e7601f706b820c74e720e26b8cb29b27578d4ea4694257aef333c9

          SHA512

          b1c1b054b5683910d19c0cda9b16bbce3c30a0366cb412599f0b89b040e901b6ea05b25e362fdfdf57fa36fd0e5d449be51074d7529a6811e2a8c01b5784bfb4

        • /data/data/com.yiwyxb.dk140255/files/exid.dat

          Filesize

          54B

          MD5

          8eca6f1cafc0b3b293d3d25476339bf8

          SHA1

          f0175a2a6c166ca6be7bfaf3a01e0073a28e765a

          SHA256

          cf0563c7683abbf91edcb5b3f5ed516c6c544d2f4e05534757730a157e802095

          SHA512

          76d0158b3d5861de62dd477f6421f0f60ae102752e43a45cbc26223d3d24a405db768562ed8c8c1fa661ef6634ab36763a961aec534c297dcfb8aa33f691c098

        • /data/data/com.yiwyxb.dk140255/files/umeng_it.cache

          Filesize

          433B

          MD5

          e3a64239ff4e9353168d11e8a2789102

          SHA1

          24ab156b3067d24b1b7eb7d1fcac952ddd09af72

          SHA256

          8188229abf6942eacb8d2b7803e2e3c4af3aad261b5db49cb48e27e631cdfefb

          SHA512

          d926ee66736cb39fb2a64b2aff997b810855c39bcddb506f2c1148570bdbdf767c41a6b6d739d3fdb040f472f75208ca81382db8cb5f4f483ec37c1d0bf855b5

        • /data/data/com.yiwyxb.dk140255/lib-main/dso_deps

          Filesize

          144B

          MD5

          57be45f71d31eda4871d3f022a5af65c

          SHA1

          428c05c6d1ebba6a357ccf8aab59c00588441e23

          SHA256

          fa1d51d703489cc74e953a24f3212f1fb41ee718a8d981b39bb786a9bc71b08d

          SHA512

          16a47952bce66d10dccef92f4fa0aea40005693c75e80656a87a2c91a1be9a70881cce069cd5f654f21ad112ded40ba27d60c126b54f6bbe10470faf85a2a386

        • /data/data/com.yiwyxb.dk140255/lib-main/dso_manifest

          Filesize

          5B

          MD5

          c06857e9ea338f3f3a24bb78f8fbdf6f

          SHA1

          c5a0a2529d2deb60fec041b4fbd722a2ebe31702

          SHA256

          957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

          SHA512

          29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

        • /data/data/com.yiwyxb.dk140255/lib-main/dso_state

          Filesize

          1B

          MD5

          93b885adfe0da089cdf634904fd59f71

          SHA1

          5ba93c9db0cff93f52b521d7420e43f6eda2784f

          SHA256

          6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

          SHA512

          b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

        • /data/data/com.yiwyxb.dk140255/lib-main/dso_state

          Filesize

          1B

          MD5

          55a54008ad1ba589aa210d2629c1df41

          SHA1

          bf8b4530d8d246dd74ac53a13471bba17941dff7

          SHA256

          4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

          SHA512

          7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

        • /storage/emulated/0/.DataStorage/ContextData.xml

          Filesize

          111B

          MD5

          820d61d8b75653512b08908eff087490

          SHA1

          5aa78997fca991c6fd59a66f938e2b1c3cea823b

          SHA256

          7e454de29d79a671cb54b948adb3afb9b2ddd753375bffd3b4b41ba5a9fc322d

          SHA512

          487cb506059f90322b20714299a0867f02650e7360deee9bbc9b6ee1c6e7874cb5b800292fd2af13d4b00c13dcfd13f5999b621762c3e50f8e3d87a7521cac19

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

          Filesize

          65B

          MD5

          9781ca003f10f8d0c9c1945b63fdca7f

          SHA1

          4156cf5dc8d71dbab734d25e5e1598b37a5456f4

          SHA256

          3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

          SHA512

          25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

          Filesize

          111B

          MD5

          b0ab42dce8bb9adead64571acbbc8ff3

          SHA1

          2e3162778f4eaa599fb9fc5a5e7ac8854a90e749

          SHA256

          a22f9bf89d22109cd89594913c581fc6c2348ea17885579a3e2055d5a0f38c5c

          SHA512

          9b9c99ba690cd6b95375551fb37ff0ee72a9366c2dbb13079d5478fcc23aed5d47e1104f52d786026a6e746f94c7c3aa73ed5792db67227aefa2da565b224272

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

          Filesize

          408B

          MD5

          cddba744f76a516e66be42cebabba7c8

          SHA1

          e090f2cd772b4b6ecd66e62addb0a75210ea39f8

          SHA256

          8dcdc606aba8aa0c8f27adb7e5441f676afd00c67ce902a7b2b7ed746f0cf0bc

          SHA512

          13a03db36869ee216abe3cd00e27e4aa7233a3c244bf882b26dc40af72b77ad5f967355aa9bf37ffac7978870bffa03b8f71c7a4129022693fd024a6cbcf2ff6

        • /storage/emulated/0/JXCP/aff/com.yiwyxb.dk140255

          Filesize

          8B

          MD5

          4fa7e26102afc285def55883c283d885

          SHA1

          ce1709a188ef1213291453f4751e3c5c5d048301

          SHA256

          ec600619d127b4524746c2668a7e5bf700042643d25951f1e6feb99bac4a4423

          SHA512

          c0191d0e19a0ececfb137fc102a7ce92b1f3b9d65c6e8e21f45cb9e9527b17b6a6e0bf68ef0216b69c3e0795556de29ffd7944d3dacf847b2b5f0e2813a5d3a2