General

  • Target

    54b6274567f6131d6cf910dfc16e7345_JaffaCakes118

  • Size

    1.7MB

  • Sample

    240518-pmpm3abe53

  • MD5

    54b6274567f6131d6cf910dfc16e7345

  • SHA1

    4cd762d729876d61b4ca6631bbe4dcb418d16ab3

  • SHA256

    d8a8433557c563c0e92d4724b4dc34ff08d940f63d54672bdea0aed3f3e11150

  • SHA512

    1c118bad2e5f6b66469f7130cf09c28e15c092f97ea7de27395f5ca14e16bbb81e917c7a17925ede4cbb519ae183ed627b0354347f08f550389e3fc2ab8fd5f7

  • SSDEEP

    24576:hzAxkhqEAoHyPzOPguN+mPAXDN0DR/V+CDj54m4Y0xTcKYa5I2GsKU:hzCu7fo++moT2hDum4Tln5UsD

Malware Config

Targets

    • Target

      54b6274567f6131d6cf910dfc16e7345_JaffaCakes118

    • Size

      1.7MB

    • MD5

      54b6274567f6131d6cf910dfc16e7345

    • SHA1

      4cd762d729876d61b4ca6631bbe4dcb418d16ab3

    • SHA256

      d8a8433557c563c0e92d4724b4dc34ff08d940f63d54672bdea0aed3f3e11150

    • SHA512

      1c118bad2e5f6b66469f7130cf09c28e15c092f97ea7de27395f5ca14e16bbb81e917c7a17925ede4cbb519ae183ed627b0354347f08f550389e3fc2ab8fd5f7

    • SSDEEP

      24576:hzAxkhqEAoHyPzOPguN+mPAXDN0DR/V+CDj54m4Y0xTcKYa5I2GsKU:hzCu7fo++moT2hDum4Tln5UsD

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Reads the content of SMS inbox messages.

    • Reads the content of the SMS messages.

    • Registers a broadcast receiver at runtime (usually for listening for system events)

    • Checks if the internet connection is available

    • Requests dangerous framework permissions

MITRE ATT&CK Mobile v15

Tasks