Analysis
-
max time kernel
179s -
max time network
182s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system -
submitted
18/05/2024, 17:37
Static task
static1
Behavioral task
behavioral1
Sample
55f9ec3a502ecd0375acd7b0078b6dfd_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
55f9ec3a502ecd0375acd7b0078b6dfd_JaffaCakes118.apk
Resource
android-x64-20240514-en
General
-
Target
55f9ec3a502ecd0375acd7b0078b6dfd_JaffaCakes118.apk
-
Size
10.4MB
-
MD5
55f9ec3a502ecd0375acd7b0078b6dfd
-
SHA1
30c0c351e72a9c94d3be8fd693f25a6782c3fd0f
-
SHA256
074ad9b885e08810449572bc395c647e952b009663e26398d6f81a81a89cf967
-
SHA512
4848728393df6d102234de7eb6656a6ebf4bcd734c1f47c58f5e232aef8cf23fa595127d02a38d7af712b1010b821d6ccf4d8b0b2879494295e25efc51dfd8e5
-
SSDEEP
196608:BnibBzQCWFtg/+VP6PHNyDSsFsqPNqQ/zUYiwUZvrcqCO6pTRVlIwCLh4wwtYq:BibhZ+dVsNKKqPktjAqj6hqwghs3
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getCellLocation com.iquizoo.androidapp -
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
description ioc Process Framework service call android.app.IActivityManager.getRunningAppProcesses com.iquizoo.androidapp -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.iquizoo.androidapp -
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
description ioc Process Framework service call android.net.wifi.IWifiManager.getScanResults com.iquizoo.androidapp -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.iquizoo.androidapp Framework service call android.app.IActivityManager.registerReceiver com.iquizoo.androidapp:pushservice -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.iquizoo.androidapp:pushservice -
Checks if the internet connection is available 1 TTPs 2 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.iquizoo.androidapp Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.iquizoo.androidapp:pushservice -
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal com.iquizoo.androidapp
Processes
-
com.iquizoo.androidapp1⤵
- Requests cell location
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Queries information about the current nearby Wi-Fi networks
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4201 -
cat /sys/class/net/wlan0/address2⤵PID:4303
-
-
com.iquizoo.androidapp:pushservice1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Acquires the wake lock
- Checks if the internet connection is available
PID:4242
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
512B
MD5a3c62f0f522639f3a50994079ea6f15d
SHA1dd6d2091fac78ee0ceb5d532471760792b862adf
SHA2561f230b2c02cae1193e412819304323f497430d83c1d0393a7735760139bc10b4
SHA5122fd029f73360bd0009b9177398853845c94e42c32b87cd1b24325dceb10df13675e15b92d1f40510e0cc518f7b37bdaada0b3ce94dfea11087573cd8fcc7fbec
-
Filesize
84KB
MD5cedff0c4e1e3b12ce74fad7295c1eb82
SHA18b57aab59f37f7fa9cf9bfdfcdc6e1462c40a8cb
SHA256463bfee9e782c39015b7db2996761f29d956b6a603ed3368848311efc38c328e
SHA512530e8df6cd2ca24e2caabb0baacf6b8bf011332bcad6df546963ce6f4e1eef077c31eca31f2358a8236fad2ec760aefe624923510cf74d02c9e991629fc92ab5
-
Filesize
60KB
MD591c0f9c85d56363e6521f2b5d7c832ee
SHA1048974403d70d7f8c0b50e340a9ef9c74e1248a9
SHA256d17b5ec10367e3e96e8e4a09bc41d94c264e49bc54a1f69abda0d15bf4dc146d
SHA5122711c5fd92f6521b6256431073ffc6f5304380659844e97ec2122bc4e6432bd6802eaebaeb8ec98133ab03d914771328415b3d7125db535131460078d1e7ea0f
-
Filesize
512B
MD55dd7e33553ea0709051b14a90bb4eb44
SHA1ef40aff4b4ad42eb3e53113908ab9b4298a9a49c
SHA2563004209001102b3da430edac07e8ec94d470571422b4754baec690565a08e404
SHA512ba35067a76ae371e20e3ccb834f8f998178349ab4f4949a8d96ebbcfa16032992ba8cca7f078d54064a48d8d03d25221f9e1b88d7d4689ddd5393071e9e5db08
-
Filesize
418KB
MD5c2f38a937b3da659b2b82bc09b3e1f7d
SHA1bc691e5fe280009c99e1ba05a1d468eab32207f9
SHA2569759eddb8b4af7db9953523e6731760197c883113638733722cf49cfd350d4db
SHA512acfa75e7b1a223b8f9865b22b198c6c063dad6d8a9fe9d12fec200dd528329d171e7c5ce1d7b7ee4e91a3aae82978c41bcb3fdb37633a23ccb89611117dc3e6d
-
Filesize
113B
MD5ded6db46277014ed2b14c56c7ebdb061
SHA150c51960c37dcbb8d3526f825100f7a85da4342b
SHA2569e35a4dab7ea237d94c0c2c0b0a72a8f5d5d9b507c5ebccb0d4049bd760b7850
SHA5122c94555d162fe6236a2e00830679fb138841d5a4ca5fb5a3a4e667ef7e8e8b6ff91c44e88842d5132801712b721252d2d6c2c636199c8869742cad3fa0611b17
-
Filesize
129B
MD56ab00779447ab1c4583168adbc0c115a
SHA1320b7a69682d6a52fac21071e02dc297bec3659f
SHA2563bd93c963b31e25fcadcded9140bfb2582f7c6966b017c97632d6a05544651c6
SHA512586994b07a57a2a2fb39cdde84b8c7159a4209cd37e53be1ea8bc8c7b0e2469c5ec89ddeb70d2336dcbea94212d14bdebddaa5e38c5001986b336734599aabee
-
/storage/emulated/0/Android/data/com.iquizoo.androidapp/cache/xBitmapCache/27b98fb15bd04aaa905190524152e6bc.0.tmp
Filesize80KB
MD524c24c2556689cfc8f9bdd83a75df67e
SHA10dff4d488cb8e708035dd35d89cc311ddeb9f399
SHA256cf1a3acd23065d498a933eceb11ac72ea2e1ea464b1d28902f819a2d3932bac8
SHA512cea8e6d37913efbbe4ea51a69145aca87d2bfa6f4c5a6cd1fbcb770619064a4866468c5ce62fbe6b649e3e62b7a50e858af5176ba364dd19a08310c2632a334a
-
/storage/emulated/0/Android/data/com.iquizoo.androidapp/cache/xBitmapCache/38e773c019762e70424262addf125ba9.0.tmp
Filesize67KB
MD5ee4b07ac2db2931779d7dce280097340
SHA168c27781cb6e9d2fe8fd701f72477590570beea0
SHA2560b5d9595c851b2e8b41c2d4b69931510f26f0ed645c6e56bdf74a82de10a896f
SHA5129744e8232286918f46df6fa3703b737c3d6d26463385ff954a1ab85c4a0e18353e10464beb4c0f2daae63fefaa0e8c91ccce2e624040b3da19198ad69f54f1ac
-
/storage/emulated/0/Android/data/com.iquizoo.androidapp/cache/xBitmapCache/50a3e1b4e6f836d825fdb6aa95ab01fa.0.tmp
Filesize67KB
MD5e2e9e0d438d4f73294a4af21399eae98
SHA10c9b0a70ba5bf6edb2b4ed0a8392a023ed6c28d1
SHA2564922fd3b7e9cc4d856d3d4ede4e8e5c6e478b6cf41f0b98cea36fdde8f3c9d3d
SHA51244c8ccb9c806b58f456b677ddcd004abb868e45c7b0f3dc57b2806c9963e524b6f0b297186f5e44cc7dd8fc4f86055f71c4a722805141a182b4eab8ccb92c0ea
-
/storage/emulated/0/Android/data/com.iquizoo.androidapp/cache/xBitmapCache/8172071df5e5fa174e5cd3e4fa73416b.0.tmp
Filesize67KB
MD5ccf467c87e135b66fb4c8c3e2dd19937
SHA1d1b5e49922f55dc2ee0af440c102d419be0c3774
SHA256efe5d49d6fc33f2a07c7b50afec9e6fc0e35260b2544df1caf396a0fcb366041
SHA5123c48ff4c7578222eb424cf9fe08d85a1cbcaad338dc216076daceb91ced3dae1c6908fdd6ea76b2bfb1d8aaf633d841a5c479cf9a2e347c2715078a71752757f
-
/storage/emulated/0/Android/data/com.iquizoo.androidapp/cache/xBitmapCache/ce463c44cd7a2301f1d27dbffff2bf49.0.tmp
Filesize66KB
MD53d07c6edacbf538b5f7bdd2df4f55e06
SHA11cbabaede8733ba0411736fc89274a255f4a8ad5
SHA25670b30ef054a4b35959a363f53444515d6ca5f76b07261ad2e0b8723aa2ebc1f1
SHA5121bc6d4e50091c231cccd4d5ebb15eaade1d0a1508315ce62fb5d98b56ea3959f530b86208f27a4f337428a468985f1b68e1aa9c920a8a64db7d2ec47d8747be9
-
Filesize
656B
MD5b0566640d889d831c53f4300e3e4111e
SHA144a0ee7bbd0bc1fdc461d1254208092d814bc249
SHA25641d11375235e264f76a7fed74a6c35e4f56f0046c1e6d2132c69d02bbb4ec7a0
SHA51274712b741bb5c561bfe97f6190c5894e98579266cf88a9d5b4756718ec3b76459b0527a32f532fdecd1d29215fd65cb27d08f23504747969d3357b6c53d01360
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
377B
MD545659bfee1c26bc0a059c9cad9219b54
SHA1d013ebfbc6bd9936b4015efbee1bdd944008d81e
SHA2567c95d9464367a584879ea1178862717f26bb75575264677aae3c8234a41204e2
SHA5129f95b48ee9914a18d1d76a56a95861b1880f737d7e933cd6a9942a7146589c2dfb222fe21ddc0c4078941da03f7f7ce9249f24231ee24670fc8581b42798d757
-
Filesize
476B
MD5f5b46d276553493ef7e718749a9388cb
SHA11a1dfe552fb3873e73ca4a38e9d1c4db23fa5c9e
SHA2562fab87dfe22147ab71ea9b2d5de88b3e0930cc0cba8d46e3f2cef93c947785ec
SHA5122409b03398a0e31ae76e9987b381bb679b9996df6702921a2b360cc91322aa19ca2c23507ee9bb5414c7eb4f9074b12124ed46d6cbba927bf76b7c5d5f667788
-
Filesize
107B
MD5c9383021bd97affc44be4db7018c4d7b
SHA17e680409d1c86e35149bebc22f2cf8c484f0d23e
SHA256b7b7e032170e3190a84359e5c37adede1d58b6bf4c455ef0c01f73335709bb65
SHA5127303f068da97319891e2d25c1c737035f1cfdc365d75d954102b612000e54d7e2b5dfafe10bdf909563e2b46ec3ff9e546423bff6f0aa9496880eab1c1c36a81
-
Filesize
89B
MD545c680eeae739c18ba9749c66763e812
SHA11bf4af303ca4d1ef8282e278a3618a081a959d10
SHA256401bbfed19c8044c4226a06ae4d8c9d68fa7160fb161c0384926a6e2e6bc4763
SHA51201b7877506d668c8f18ad2e1cfd87f8e0c23e84d00270694ff5500a9a29dcb8ef61f560b9535ca7349c3049f9bec7f0bcc0266228c16dd56c0dbf6844f96c431
-
Filesize
24KB
MD520b4c5a4e7944c6575524b67929456e8
SHA18c00624e72d53734b11bbd36d92523e4d80ed5b1
SHA256269e0fdb977c639320baa5a0f88db814d17c1058fe5aaffdfb723764e5029f69
SHA512c4d54bdd070a8c6b8e8be330700b75c278cbebe6f2325337dbd958b2604b81f9d23e27a537352abf1c628e35a88818efa0c37b6b796b16619754db62f9481cfa
-
Filesize
24KB
MD5cef9cff7b33a4ede6b2e6ee9a942a23f
SHA178ff16edcefe8eecfd65482f6718d2659138c50b
SHA256bcc709bed430e7f67e2ae0de79b5c91cc8897a16c57186d1949ff4a8a1142ea9
SHA5121f8a24af7c807f16360cf84a94d8a5cfe084938dc271243890e695596d61617b994a72308a1792449cfc97777eadf50a8cfb2e90f144f90cec5f9461a26752fd
-
Filesize
28KB
MD541dcdcf9d83b64945ec987ab2817eb2a
SHA19b05031a6f21e5c11983e143c46d7a3dd6b6b923
SHA256f54db37b6d4719dcfe1cc28030fadb636ab64e0d5a0ba04d7e2bcf461d5897b1
SHA51216444bf1008821f5c967b744441436b85de295c493a833f6ae8b9cf162e76d135138d4dabacabacd7608e3c3c429fb756e660f9d37c08c68ad68df506f9cc8ef
-
Filesize
36KB
MD54d5bb9b90d1c441cfb6aac237ad570c8
SHA1530081f79bfd4d2aff71b42b409355c4f48f6946
SHA256fc0c91b2ec213b668ff3bc73a1b042224a2e164fa5d8e91336b649c2de56b9fb
SHA512971e56c3d5c2d479d9c77f44626ef66f834e50e31ac766718ed221042316633d5c1faaa3ca94c684eda79fcf91976429306fa67097a50ebb907d798854ccff1d
-
Filesize
20KB
MD5048c73f536f234f0ad0d2fa8bdbda899
SHA1dba2e666721e0b0988807b8bb3ce0452dad3448c
SHA256f1a64586ce75e770e2f36a7ef6f7419e26ebb9e9e786df3c5adce50a196d2d07
SHA5126ae398c682724f0008ce47cfc790a7ad3dd7cc801fb3a8a692d28da5533ea7ed830ea36933bd3e3219fc8cbade90f073c2c418611921bc7d6877d94b6745c4f0
-
Filesize
512B
MD57fa5985811fdf0888550281c819a5232
SHA18f2a3ae54cc3f824e4d3b994cf4242c9c0a08b15
SHA2560d8f599ae98dc66a8ff5ecfa488de558dd3241420b08b4ee16fe4ae03a7980b9
SHA51299e73b4507ca30d77330333fc6f1b2082c6bfc745b899a3505d49cbf78b62f614ca3f43e9ad6c8a18a9d418c913b554bc72ae324ab03f9d5929c2ed8468000b9
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
12KB
MD58c8b441e51ec0b6a67642548a309a973
SHA1e151b834bc50027bcc9c7e9ddeeffcad9348e206
SHA25621dff4b6258fd76fdf86e3d1cbaf16713f24f509cf3d9e6add7976ab12cf90e0
SHA5127e5e133e7e6e5ce77fb53076b36338cd6f886f655031bf1f447ba36aeaae11a16b772110c7af6cacb61be63384ee7d79c7244f60eb2306009c2a09f6c6267120
-
Filesize
8KB
MD5079f7dc2162850be396e4f0cf9cde3b0
SHA13dd4c3e87dc72c0bf622de1542809474806cdf7d
SHA256e09e55e6990f1abd7df254dee6364123b81a575a330d740d3399a6d977a018d8
SHA512f12fd029a7f1cc6c4a9df4105a5bd23f70cf31dfee94a40d48002d6a6cda412cd620c59a42e8ed39cd7126daccf2f91074ca61b7904361d8cee164cf3a1767e1
-
Filesize
20KB
MD569719525cf83d268d32b197a168a1773
SHA1c74c1dfd000bef5ef2dece8275ac8bbf55822dba
SHA2564ae474253ecd22515371cbfdead90a89a2cea247e10503afbfcb1f915f7e86bf
SHA512d2b8dd6662c9932d2a18a8ea79c71825e8e305f0249f9827eaba49ab560d3e80a2e2015b4aa93442a5e7d4b341fe2865e1e71340045960b4f2a2426458fdc5c3
-
Filesize
20KB
MD55aba9dfa2e07b8e858501c3ff509c390
SHA1159235ac63ea1049ea08137d19e5756eb58c0d35
SHA256dbc876c387028d81a27a4a27efd3bc8dee71a79a68da6581a06b4a7a09cfd189
SHA5123b0804ef94bb3b50a7f29b048f07fff8936d5aa165c2715b328fe5f669952d469d8f4f86da67491a6f6e5da723e627e9424c425cadb406ae515995a904807597
-
Filesize
8KB
MD5d4cf260011d229089a5702ff7aafe20c
SHA19b3185e18c3fbf667ef01144d1afd465f9164903
SHA256b012902095adc26b865beb5f085562a52a6303eef7e489d3fb21cdc23da0327a
SHA512dac54127c50845c131143755ff7b2fb078dd72bbf3b9d820b52de48ca45caa07e0cc34a494cb60265efa78d799647adbc48acd2eb7cda602d25f8f73f1a0f5a3
-
Filesize
20KB
MD5efe418513b412b3b42da2b55d6fe9621
SHA1c8b74edc5eacb24fafdccbc442dcc84bf9ccad78
SHA256d893057032e51b66f289a04db5337cad2f5afca35176173d9d98c4144602cbfe
SHA5128875eb752e6ad538db678270227915c32741c840b32585d03c7c248a3a48c836552fcaedf342305cd02710468082ca53843451cdc63e3c9501b6ae4224ec7449
-
Filesize
8KB
MD51e34a66e83be693df60134520af7f46c
SHA11794b37f2e4c42acba78d9d04e16be9c2f05a2c9
SHA256b0e937cc5ffa294481466ff3c82db5087a2b7f5d4104fbcdcad9b01870a25de3
SHA5125c445ed3160b1454c2ae4af4e7b0a4a005e315b945ea03ba0508740f8cbf3db69f057e33ad5f67aa5336443f480173e9d0ccf348563ac3dcf1b69c989e32de2a
-
Filesize
36KB
MD500ecec848c46eb78f97314b02ac08494
SHA15353cc2a51f0af841f29c2442e0a0f8190a9ee5a
SHA2567c60d4b77cdf4dd456dfac2d0e875203fd222f0df0dcc5d062feafd574bfdb40
SHA51213a0b6cec189fcacd5c996dcd981fb9bbff37fa68b9e0677570e90d503d09c82d1a0c45ef211d05134838d6a20e61338f657f7214b22194f2b3f655c7bdc08ee
-
Filesize
25B
MD5c6e8a7125de131eda4ea43e2c3110f9f
SHA1b43596389b268b9360bc3b95f3a531b52f257437
SHA256ef029fb3663a3cc622b69d432503435509f4ee605e04bb148b72a64bc7ca0673
SHA5127f76dc6e66ad4a57cbd4db9c48444b279848025f79382a374f70ee7ff5f042f0d8f0055c66c5310aaeda3a073958fa43c2e092219e9b53d4759d2cce703019b8
-
Filesize
55B
MD5ec03e2fa3ce1b73d6eae8d568207b01c
SHA1551ef4177db6d1a156d913dd7b1b2289c11b45c4
SHA256fa4e59638761e2b5b8ab8d815768294ce745ad9a4c38437930e97dab6a2e26c8
SHA512b64e3f6830bc797ec647475d20c3cb5f9c8b9b501a4b4eebe6a184c983a499ff0b4d04167c99546d902e74b06d36c61ea82a6885f7f1b8018cff96b138e5f42f
-
Filesize
84B
MD5b80a69b0d7e3129d60cbada8bfb875dd
SHA1cb18367ca6768304c210f9fdf1335445252a6aa4
SHA256d57bb9b47474bafd3befaaa51e5eec9c6e81d49edfa1069ae867b191f7177e30
SHA512b70a64d24acd4b5f27327884f272f87c4d1739c1bbcabc637f8fbf3ee375f674508824f5caf59263d2156c52a5da05091670e42328d3911e9c55c827693889b9
-
Filesize
114B
MD57077273f1cfc74b48b40e76f3ebb80e1
SHA1a7c840080a234f3313e6c7c47f14eacd1c0679f9
SHA25682c3f3b66cfd68d4b5c62592e6e096759ede49f0a34a53ba73f5717dccc6bd58
SHA51224a1213f5e8d8ab4ab450cdbf7d101fb72103e58db653ce19c7409ce5e6174694ffffaa99470e200ab9323533b8552445d2ca039c1afa852cf483099afcd545c
-
Filesize
138B
MD53d8758824a560d8a2aba923fcc810a9a
SHA182c368dc2eaf2c252fbd8b05ea7439fa71119c66
SHA256e81b5af7112d30cb01f8c287f49ffcb7adc3cec883774ded18fef2fceedf25f4
SHA512b369a99ba103512a8302925eaf236e015ff9e44a37efd3448d0679835d959ef3bc1303a9be1dc5945fcb84844b607416f8708ef01ff10ff37a98436fb372fc22