Analysis

  • max time kernel
    151s
  • max time network
    162s
  • platform
    android_x86
  • resource
    android-x86-arm-20240514-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
  • submitted
    18/05/2024, 18:56

General

  • Target

    564c5ccc574df8b0295acbfada8fd6c1_JaffaCakes118.apk

  • Size

    28.5MB

  • MD5

    564c5ccc574df8b0295acbfada8fd6c1

  • SHA1

    0e2880f9cbf8a22f49bc2eddd541fc506959c988

  • SHA256

    ebcba4879f3e15cb5e70d29356489c735a1695afdfe839b1c145b7e20d955166

  • SHA512

    de5607d59bb3f49a9b81955e616aab6d0d8458f2b7a4c40a6eac2824ccdd3280c077f93e6f9f56aab3b8441d7c387b934d7685ee6ad68d06aed461444f10cc44

  • SSDEEP

    393216:LjL3NGngtyzo3c1Y0alGlQ3fZugLTo0SiYiSDULs8WsKGByKxP1q1LcN:LjLNG/pS6QBugLTHKi2ULqWyV1LcN

Score
8/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

  • Checks if the internet connection is available 1 TTPs 1 IoCs

Processes

  • com.orange.org_player_new_alone380457
    1⤵
    • Queries information about running processes on the device
    • Checks if the internet connection is available
    PID:4233
    • getprop
      2⤵
        PID:4327

    Network

          MITRE ATT&CK Mobile v15

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db

            Filesize

            24KB

            MD5

            783d4158291f5fc9d7580b7d3939fe9c

            SHA1

            2f3088b940871ea793a430e12ac83842b263629b

            SHA256

            f2c2b2d57f9c1ee7fc95cefb784f35c977db543b9200cc4096e12660db5fd49e

            SHA512

            c3e6c850ce2a820d1f153bff3bd9481e2bcf2501046ba551baf3843fee4fd554f070c3989a2e9a38ead6855b33d40908b8e141d7b0a65bb5d9681c73025f30dd

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db

            Filesize

            28KB

            MD5

            f1a22e793bb479ee61c0062d039f1e3e

            SHA1

            e31914e02aa4fd3726cabde892bc3748823f02fc

            SHA256

            a238f49f32e1634d41e37ebc28f47b393917d2d601ad9abcd32a7e7777db0c5d

            SHA512

            b3b76bd7b14d537647c4027f7da9ef8017c4d4672225b25d43e43e4f908a622b567d45ec91a0e6e43266a351956a245af33f588d094c3f0298f9b00e8cdcd8df

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db

            Filesize

            40KB

            MD5

            64b3a0b968f5378fe3ede4eeca1aee3d

            SHA1

            ec6572fc8ccf28f317ffd2f99e9626623d4dde51

            SHA256

            83e47bc8ff4527cb36d5d5120790135396221317b8f35f57b6150bca563d7d99

            SHA512

            d6457c270518657843f711a24a8cefab30bebfdf460a8a051dcff5cf420e8f0ca53bd98b3aac8f4a2e131764aa101cf0f8404cbcb2ccca0db5e978503c3a48d1

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db

            Filesize

            28KB

            MD5

            bf0d7a7d73cb67bef0ccaca21708a4f7

            SHA1

            96ca33096118d17f1c6463c91a1ab404f760265a

            SHA256

            aa87b26ce99353fe356419d01470a525d070548a16022033e21d4b1e88faa0ed

            SHA512

            3f2a2293f5f395d72230d4bd629702436835ba4e554b1c085bd5671f2286b9dcd1843c9387f5ca49a05ce73356cb0eb9e68f6ce0e7e93313d9081024b7383e9b

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db

            Filesize

            32KB

            MD5

            0fcb31920c258bcb52a89d3acddf2d4a

            SHA1

            dd764d611e087ef4e43f0a5cd3f3be85e062eb17

            SHA256

            b455bb6d9ca4b802054f6f1e72d66184b37897ba60a1e5b5de456454ddd07828

            SHA512

            009f5d30aedf58e5c88835cee9a6b87a073660627beda8a09070eeb9139be05f78d11677ce31152f57a988ff132a469d9231140fea3f4c7cb078d39fa55509a3

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db

            Filesize

            20KB

            MD5

            992730794d4f80d8e54b11e36c212a01

            SHA1

            c146417e678b7c5a900918c0d4fd0f6f03bebf3a

            SHA256

            890081914552761e9846e07b88bfbba3184947764b6e03b9b0783646b9140e3b

            SHA512

            ea166894d724e1244c6775291e1622d5d12528f14ce3b470bd267c08eb0ad1a93f73dad20c2f3a53fb115640ba8b3cb2e470aee9faf08aa879d33234c69cb1db

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db-journal

            Filesize

            512B

            MD5

            996cc531bee9c79f44f3ac2a2289e511

            SHA1

            cc4672c9385876f10368dfcf213eab53b81d5890

            SHA256

            4d46a4e96c939a6a366e89b640a4b419c69063f288bdbfaeafe5e0565b5c9909

            SHA512

            bc7734a253a8972cbeb286d503f4d0cb99a3efd672f2532243b4399ca24414dc2689c6cd02a09b318e380a894f1918d4dda33171c7c65b83117460e6f63ea22f

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db-shm

            Filesize

            32KB

            MD5

            bb7df04e1b0a2570657527a7e108ae23

            SHA1

            5188431849b4613152fd7bdba6a3ff0a4fd6424b

            SHA256

            c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

            SHA512

            768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db-wal

            Filesize

            8KB

            MD5

            4a56597d0dd62c71238bffa21445caf0

            SHA1

            76d636ad646e0c49b5bd08fba6a7eea6d223625b

            SHA256

            dab343332f1da6868de4b3f8693ba746237c323b03314f7777319cd0afb9ccf4

            SHA512

            38c2166471ba169a05a85c95f52576f0c850f2dd5fde50ae5432484fc0254e1294ac133be03de5aa60c0f8f152ce5919ea4d3e54cf8f63294c0df418945f2341

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db-wal

            Filesize

            24KB

            MD5

            7da3b9553759a5712f4599585a2abffb

            SHA1

            50e4d6f7593f537b1ec9730cb4c63b3ae9c7ea73

            SHA256

            f5f510bffe52b1eb128e39dc979609d9e5029a9d276e08b500c2b4625a7441c8

            SHA512

            a4f79aa581622521191480cfcfaf4582e11934c28f7a251c5f26a5475e5466fdd32d16b8e48f69f3b3a2ce52fb73773b16bb225ab346683eabafe5b99d10d3fc

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db-wal

            Filesize

            8KB

            MD5

            97c623247017e0562525e83d9a38431a

            SHA1

            7481010df7a77b9015bc85ccad2e170635ca795c

            SHA256

            99857c0883ba4c05c2320efaed21961537ec974c4ea94231e3780a3799af108a

            SHA512

            2a1a2d877284a37250e563f75b49185f2cb7b636f4c6b9656f2061a594f61cde8826422e479e46c4d412aed6fa20fc948a18f1ad0ab0d3ac46855ac5100423ff

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db-wal

            Filesize

            72KB

            MD5

            909229f535be0db7b214c7d16e39a564

            SHA1

            1a5fd5570ba0ee46bc0449b024290473e7b57944

            SHA256

            965acc5731e53af9ee20e4a82ca9b25099a886164b6d0cf50f4a3688a6ac6d7c

            SHA512

            29519c7a6d58e4cfca16a264af3bf9498adc7f0024449b7383c5e3f942f01d7f5cdc45acc05153032e6ef64486ef6a71ecfa66f5b2d46506d3f9c19d78b5d143

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db-wal

            Filesize

            8KB

            MD5

            a19de20b727f3f1a26ced294d2631e06

            SHA1

            a62f6067e407457ce62f2158c43b6770cdb3e227

            SHA256

            df786f43c6954f466ac0f39222cf4caacd4a40fd42325f759cbd816cb724d163

            SHA512

            e8f7ef22743c60740bb532aa870dcdc67adfea2df891d8786d61198ffc255f840a96efee607387df5bd622274601a832982ae4c3d4049618754c4002374d2ccd

          • /data/data/com.orange.org_player_new_alone380457/files/TDtcagent.db-wal

            Filesize

            8KB

            MD5

            62626ba07b50e245c3ca4ffe1a0a9056

            SHA1

            5522b8b04542b6551cb873ee4431c569e9192d65

            SHA256

            1931ab6314ded9c7fc5fbe8dc3e664286df94753222556137fbae9150a57d56a

            SHA512

            293fbd428dbd177a351ed24065393aa929cbfcb610c5e04091572205bd494c81805890be2189709963185ada243bdcaab665442090c2038aa7f1ecbdebfb93ad

          • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/game.oge

            Filesize

            23.2MB

            MD5

            956ec93131c49c0e290c69d4506a16d4

            SHA1

            c43d44dc381dd253580d056814e2f40b6bc9825c

            SHA256

            35bb2b39c154a302f82745a7feeaf22ea6f1159aec160e078cf7dc15ea031327

            SHA512

            7b20568827e84db5f6a3aab6a7947b3d222c3b0405fdb6c5e578df838042821cdfc044863153dfb3766225c7ea90a7765d456488d4063bd92e6f15f6119ec59b

          • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/hotPath.png0

            Filesize

            1KB

            MD5

            b82787b819091b10dab194c7aea1f847

            SHA1

            a129cbc3b5f8673def47d904e905edd6edb23429

            SHA256

            c6e907bd5fcbbbe975744b7e42313a684573fc8ac6dad7cced957ca75e630e62

            SHA512

            6e588a7c0f7b116d98baa332e6f4523c8b2de064e5098c5de6f07b5b4e09bc15486d755477a22b0c9896be0d7b5baa5bee30cfe2633ff22cfbd7fc34def80b32

          • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/map.oge

            Filesize

            20KB

            MD5

            27e95ae0541907cc987db613f2fdd8d3

            SHA1

            1bc75cc142532239afcba13642328839b1e2a6a8

            SHA256

            8cd83245bacf1fcdb548f3fb0c0f656d6c6d4875f14f67b666573248eb2dbb41

            SHA512

            c12312b74c743090e3bdc3747d5f7c25f179097b74365aac5fdf4cff789236077e5c7a25e3c4c9d392e264e36c65a846507c0fb6613dd8c614ecf928e63523c7

          • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/share_data.xml

            Filesize

            14B

            MD5

            3bc3042829b9c1e1586d660d9bebeef7

            SHA1

            d70a8c754036251a07dc9ee75ef4b4f6d693586e

            SHA256

            a0bb0696b507306dabd7c0c63795447fba6a32730285a098f02b2bd2bcda05d3

            SHA512

            cd17b0940a89422862905041b69a539a26f2d6b0aca1056bd1527c612fd91dc247603341c637c3eef1f6cf6f8ea2d761b0de61851604666e71dd2847e2ec7b99

          • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/update/380457/game.in

            Filesize

            156B

            MD5

            bbe088397b3e5d746e62d05f283cd9b5

            SHA1

            cf935cc47ccbd41fc03900903209ca8c2c462381

            SHA256

            580323813e17f1052bc878c740b3e0e787269b13175a8993b50aeae94cddd44b

            SHA512

            c57b5467d0094e7a1df3b6b95a0dcfd7fe2b3a5b85032590d260ac8281acdd8ec19e4c8f27aac8485456f6f24834a8c159c2ba7616eefc9b1e8d4051baac9b1a

          • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/update/380457/ot.in

            Filesize

            5B

            MD5

            6bc6b6a472c3c3c1fc086c992a4f04b1

            SHA1

            105e66fb4605abff79bc15171114de449ac8ac83

            SHA256

            f851a9ebcfca42f79e2967ec21e742baf3c2870f44e077a55d0edad0d74b39eb

            SHA512

            64bec8cb3c0c7bc91690fc6510fa4e424ffdfc8993d4f768729171fb6aade6e640ea6733f48b769874ca7d43c1f41322bb034a666a17c232872b9547f3e72c03