Analysis

  • max time kernel
    165s
  • max time network
    183s
  • platform
    android_x64
  • resource
    android-x64-20240514-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
  • submitted
    18/05/2024, 19:28

General

  • Target

    566553791b7642b25b2f7fc2ca0d27f6_JaffaCakes118.apk

  • Size

    25.6MB

  • MD5

    566553791b7642b25b2f7fc2ca0d27f6

  • SHA1

    1f5cc95f2fbb1bc7942737386abadb0e901cf86c

  • SHA256

    d5af7a5faef2608be5b6f8b9cc8fc5d73551383998c5be1ffcb32d9ee5445f84

  • SHA512

    a2e8665500242dbdd2a3cc67524a93748a3f7a845da9aad0746a68233a75699e329c783fcfdf94fc3942de98a3bb186285980c301c54c19c375a98a9654b967a

  • SSDEEP

    786432:I6UhCfahjDyQeZd8Sc2qvVOx5DlvAmiptc6Imz52uMXH2k:jP8P7eZd8gq4xnvAhMS3MX2k

Malware Config

Signatures

Processes

  • net.kairosoft.android.onsen_enmod
    1⤵
    • Checks CPU information
    PID:5164
  • net.kairosoft.android.onsen_enmod:pushservice
    1⤵
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Acquires the wake lock
    • Checks if the internet connection is available
    PID:5213

Network

        MITRE ATT&CK Mobile v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/net.kairosoft.android.onsen_enmod/databases/google_analytics.db

          Filesize

          64KB

          MD5

          4222e8688c77bf66c3e9a128fc234ae6

          SHA1

          e0d26152f5077494b6dbd578801653281445d121

          SHA256

          9b3bc65de2e4df63241d6b03bbf55e035f0262796e6bbe8e275f3902fa179ad5

          SHA512

          ca0e3e42971cf14ea9ec580e36dcbdc32eccd6d07d533457bf4e5a1278f75f59600c111da856edf481a9c2a89edeb4702fc8ce6b1cbe8aafab0122bd348b0e77

        • /data/data/net.kairosoft.android.onsen_enmod/databases/google_analytics.db-journal

          Filesize

          8KB

          MD5

          cb6af4835c9b8f4aa77c639fda08b7f8

          SHA1

          16fadb65a73d411f35268207c3f8b54916cfefa0

          SHA256

          8a980265bfe6504355e885fa613091549e9e155d158aecb1ad8954b68a3534b8

          SHA512

          e0e2afa4c97dcdfa9483e529ec699a273d43c2cddaa34a586f3abb97680493f94e3319750faf69283a3e8990bfb22cd200fa8b962efbb4bce351049c53cd77fd

        • /data/data/net.kairosoft.android.onsen_enmod/databases/pushsdk.db-journal

          Filesize

          8KB

          MD5

          4ea6fca462e90f4606960f078bdd4755

          SHA1

          8969807c52899013c0efacb1fb9dc77fd37f85be

          SHA256

          fac2155e4daa6a5e772bf3a7f4e0d2f63e073ab476ce927b2e335b37d41ba2d4

          SHA512

          251c7831c9c508941af0e3da7d317f9faf2e4d04f858f7c8e394fd2d39e825f158db40b34b0bd349339cb25a9ad9d5ed3ffd188e9250c7410b7fa230868bdbdb

        • /data/data/net.kairosoft.android.onsen_enmod/databases/pushsdk.db-journal

          Filesize

          8KB

          MD5

          777d7f0085d4efa3faa660232395e976

          SHA1

          3f3b3223215a122c6b359da8d3843ca4fd8bbd38

          SHA256

          2dfc39afba442e7c3cdd302e4b7fcb7409b54a1eb26c5065833e946768d696d2

          SHA512

          309028b0aef6f8dd84288dfef660f89a4d1825c643d1ab4c0ad71e4ad504a119256e6ea93cb322376d94eb795c1c6516b54934635b95f44287f14a2ca5a169f0

        • /data/data/net.kairosoft.android.onsen_enmod/databases/pushsdk.db-journal

          Filesize

          4KB

          MD5

          36089a1dc3d55e70fa381811e311e1cb

          SHA1

          d6a297d2be39e71f69b4ef405b269c6ed4232b48

          SHA256

          5657f3d5cdb43d8d2bee58ea33b0d7eeec045ef687d96aed98cdf5a2ed97eecc

          SHA512

          4bcfda534f4e800499ed6590807b7032364e4ef4145ea4092202ed32ba19c0b8ab5ffdafe4db8b313fb8e1e2cd0ad32e9581178e5c446094b626191ae67d0c0e

        • /data/data/net.kairosoft.android.onsen_enmod/databases/pushsdk.db-journal

          Filesize

          8KB

          MD5

          9e66e0a727bd14b7b0b7faadde0c2eb0

          SHA1

          a48415ea5d1e35cc6f3246c2b77884bdaac8c3f2

          SHA256

          3e6c95f6826e621cce0ec431b71ffac9c6e147dccc41dae2d5df630566fcbeb5

          SHA512

          7ae9144bfcb6567731d9c40313e75177fe5ddd0dcaecda0a8f9ea7236469ea983f4a374384a77130dcabbbb0481f2e39721d1439266e2df39f22b4ca8fc541ad

        • /data/data/net.kairosoft.android.onsen_enmod/databases/pushsdk.db-journal

          Filesize

          12KB

          MD5

          fc077b0c2cd32c2ffdc1c9f9ce8be5b4

          SHA1

          4ca9eddca19d227cde1a9354433075ce71875376

          SHA256

          5ac33f202fda6f27d0d33714f23a6ac6b1a44ed2da43acfddefe037803767948

          SHA512

          23fffb5e6e45ceafcf332bf43b5aecee85c3303c1019d03ba1924607bdde225a232fa70292e0981c1e3e2033ac9c059be2d24c809208afca3c12e367674f1a87