General
-
Target
54e9623f2e182b305da4bd23b8df2893_JaffaCakes118
-
Size
18.8MB
-
Sample
240518-qk773add67
-
MD5
54e9623f2e182b305da4bd23b8df2893
-
SHA1
7373cadaddb09045fb5c932a1ca2aa5d67095c68
-
SHA256
a1fc5abf510758e89a9e203af008b3eed6c5bb4935453952c7ea195897df6182
-
SHA512
517a0c7940a7f7e4e0b24451c64240101e1ff8e83ba925ec1d277e0460f4d2bbe6b0e605faf4badcae634d4c8853d0b834ad0a31ae7842ed5d1977d36e24611e
-
SSDEEP
393216:0VmC1QiVSfZSzcgqeY+JGtGCVjzyMTr47nNrJZZrJ4PrJy6rJpHBOpBAiGD8g6re:+mC/Cw4lWeGCdfOdQro7g6y
Static task
static1
Behavioral task
behavioral1
Sample
54e9623f2e182b305da4bd23b8df2893_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
54e9623f2e182b305da4bd23b8df2893_JaffaCakes118.apk
Resource
android-x64-20240514-en
Malware Config
Targets
-
-
Target
54e9623f2e182b305da4bd23b8df2893_JaffaCakes118
-
Size
18.8MB
-
MD5
54e9623f2e182b305da4bd23b8df2893
-
SHA1
7373cadaddb09045fb5c932a1ca2aa5d67095c68
-
SHA256
a1fc5abf510758e89a9e203af008b3eed6c5bb4935453952c7ea195897df6182
-
SHA512
517a0c7940a7f7e4e0b24451c64240101e1ff8e83ba925ec1d277e0460f4d2bbe6b0e605faf4badcae634d4c8853d0b834ad0a31ae7842ed5d1977d36e24611e
-
SSDEEP
393216:0VmC1QiVSfZSzcgqeY+JGtGCVjzyMTr47nNrJZZrJ4PrJy6rJpHBOpBAiGD8g6re:+mC/Cw4lWeGCdfOdQro7g6y
-
Checks if the Android device is rooted.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the phone number (MSISDN for GSM devices)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
MITRE ATT&CK Mobile v15
Defense Evasion
Download New Code at Runtime
1Execution Guardrails
1Geofencing
1Virtualization/Sandbox Evasion
4System Checks
4