Analysis

  • max time kernel
    48s
  • max time network
    163s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240514-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
  • submitted
    18/05/2024, 18:56

General

  • Target

    564c5ccc574df8b0295acbfada8fd6c1_JaffaCakes118.apk

  • Size

    28.5MB

  • MD5

    564c5ccc574df8b0295acbfada8fd6c1

  • SHA1

    0e2880f9cbf8a22f49bc2eddd541fc506959c988

  • SHA256

    ebcba4879f3e15cb5e70d29356489c735a1695afdfe839b1c145b7e20d955166

  • SHA512

    de5607d59bb3f49a9b81955e616aab6d0d8458f2b7a4c40a6eac2824ccdd3280c077f93e6f9f56aab3b8441d7c387b934d7685ee6ad68d06aed461444f10cc44

  • SSDEEP

    393216:LjL3NGngtyzo3c1Y0alGlQ3fZugLTo0SiYiSDULs8WsKGByKxP1q1LcN:LjLNG/pS6QBugLTHKi2ULqWyV1LcN

Score
8/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

  • Checks if the internet connection is available 1 TTPs 1 IoCs

Processes

  • com.orange.org_player_new_alone380457
    1⤵
    • Queries information about running processes on the device
    • Checks if the internet connection is available
    PID:4548

Network

        MITRE ATT&CK Mobile v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db

          Filesize

          20KB

          MD5

          20b7e23b13cdf9a2ccbec17e7429dad0

          SHA1

          a3f4c0042ac60984a9870621eafd63fd01718531

          SHA256

          d1610bdbd782c269160d29e47a93087ca12198db7332e933ef4ab516682f2f28

          SHA512

          7057e25b30c4753c5e47d505da861a853e382abe2d67190132c3f55d6fd794dae2fbb0242e1017a147035afe293e45b308e5231f4b46c60b0eaa479e26b8919d

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db

          Filesize

          24KB

          MD5

          310685143eb8ad4f015e19fc156bcb97

          SHA1

          9dbd7ca5f1eb255ab27c946c8459e2ffef675bc9

          SHA256

          653ad9e30584ff931d2f55dbe0ffcba1bba3ef57b373e9333131eb5828085dc0

          SHA512

          1bbe145f607df81e9da2bfc5c4b87d1d1a24346c0d8913c1f67b5a9b4eb7af953cbaeac8b24875c6ea0736b0f3c9c099326d8d45da858ee992e0a12406d09374

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db

          Filesize

          28KB

          MD5

          28888f3f69239fd336c2836fa2a770c4

          SHA1

          21be6c8abfc0fbc5eab7f6cf7012a07a7027d44a

          SHA256

          a8527063d253b8538330fdd8fb8de6a4b6bead1e1386644a8e095d742652c4db

          SHA512

          c8b78b2138d3e612aeecbaf8928f38bd5717ec91143bdc9d820da8cb9ede61bcc0315ff4b91816fec9ac3d0d75c4fb44d4722793a4633ba14d052e69ffc69935

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db

          Filesize

          32KB

          MD5

          d710d1d5c3360dabdbf10310ae7f67d6

          SHA1

          5255a96e4df23d99e1110f19f3bc89392f09f66f

          SHA256

          4e596e1c353c0a4168ec5a393fd881e3b539b33d584adac18146c331b92db9a9

          SHA512

          3f0c67c8990b95655e1668974ac8958b75c18b6a4cc47751c5a2edeb21514f7caf865d5a08449897614e931f6585d5e33257a60ec57ca48058aab2db22d8b2a7

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db-journal

          Filesize

          512B

          MD5

          b8c750b9a61e9121630f3d79a37c492e

          SHA1

          355a5f36c67df3caae5b98e6349d774273add229

          SHA256

          9ad35e4c625dce7ef114a817d593cf5d7914b5c07cd41589ca555282b738e400

          SHA512

          cee330f05b7fd140a9954cef6fda2f7def0af80272027427362bc7e650184213c29aceb46aebe836050da87cda394227170fcf2ad34fa36161b2832dec021d1e

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db-journal

          Filesize

          8KB

          MD5

          615b91c78615d93aa3dfd614a0cf6a2d

          SHA1

          2a448bf75c63f31357136d456f317ea13f3b2035

          SHA256

          c747a603ce6131c7fcb809f3ca504169286e7a917ef2d07a464e8aa8033cf091

          SHA512

          15ac77344b2fd7e8cdbe4114e0905b612f27b154dc2b480018f3d2332977e0b468331d7b97fb28ac5554641bcc15524b9e16f476384e918b0dc95821abe3aa27

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db-journal

          Filesize

          4KB

          MD5

          1ff31a3edaf6bbb95433f7218fa97953

          SHA1

          73fe2f9d376542efe0166ff84fb453d8c7caf0b6

          SHA256

          8bf22d14d43d465a52bb868541f165ee9a80a131f330d276041c9732c42c1e3c

          SHA512

          f1d5e9ec2547393fb73e047c74951c7042ab376f8cf85b9bf07565976b399c60a33318ab0b8bcc86d30f968cb58f90c9bf867d6d7ba8c5435f55faecc304cd9f

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db-journal

          Filesize

          8KB

          MD5

          bcac0872bfc2d799b16dfcafc77492c8

          SHA1

          e03eb45d067a3bf086f3c159002166d5b0be5265

          SHA256

          047a65ec8f12e81ff493ed4417add29afb9da95fa4eeee3b1a771beccdb1264a

          SHA512

          766ae94d28ab88233af9c8124c2adf5b7b670f86e1eef093a827e239ef8d97c07f672abd1f0059a0f6d6014c803724f885bfdb097ad43803d98895d5cfc5494d

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db-journal

          Filesize

          8KB

          MD5

          1f6ac1e3658b7e3b7035b1fb199073ef

          SHA1

          ed56651681d6badf65425221df2ad925d6c077f7

          SHA256

          31415a4d4a1ec4ecf8d4e7b1d268c933457f13d3a9302544502c03b436109f51

          SHA512

          00df43a3d2965414fcd63c133fa8169560f950567234c7ec8615c53508d105dd94aa6f21e9c7887d5fe71b96230121a7eaec491ed56a6ed8d9084bb73912321f

        • /data/user/0/com.orange.org_player_new_alone380457/files/TDtcagent.db-journal

          Filesize

          12KB

          MD5

          e7f4b62a0bafcac1f050ae07fb8d21e5

          SHA1

          df8f7fca273814d80e3a93877df28b13cc41dc0b

          SHA256

          61a2cf4868ce6754eeee42670185c47f5626674057f797b0cecff0327e51fe90

          SHA512

          b0e40da116a32c2a1c72fba3968865ffd346db8cdc58dcab842d2fdbaf8f424d4997968ea1ac021e4307333f37c47a2e8effbbd9ff03ea9832564d61120e369b

        • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/game.oge

          Filesize

          23.2MB

          MD5

          956ec93131c49c0e290c69d4506a16d4

          SHA1

          c43d44dc381dd253580d056814e2f40b6bc9825c

          SHA256

          35bb2b39c154a302f82745a7feeaf22ea6f1159aec160e078cf7dc15ea031327

          SHA512

          7b20568827e84db5f6a3aab6a7947b3d222c3b0405fdb6c5e578df838042821cdfc044863153dfb3766225c7ea90a7765d456488d4063bd92e6f15f6119ec59b

        • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/hotPath.png0

          Filesize

          1KB

          MD5

          90e036a4670310dc000e6bf1c3d9afca

          SHA1

          697cc143757c72f5e8a3549c22f71f6735389e3c

          SHA256

          4d0b361545e51256213f62410343fac3baf458329b7f28bae77827d448176a39

          SHA512

          90ddf207f4480e075d17d9d0767903876e56f20f9872631a100b83a11de6d7c705d7b09d2f695df96614cb029311d6df39fc4ee11409e00504133260e75e50a2

        • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/map.oge

          Filesize

          20KB

          MD5

          27e95ae0541907cc987db613f2fdd8d3

          SHA1

          1bc75cc142532239afcba13642328839b1e2a6a8

          SHA256

          8cd83245bacf1fcdb548f3fb0c0f656d6c6d4875f14f67b666573248eb2dbb41

          SHA512

          c12312b74c743090e3bdc3747d5f7c25f179097b74365aac5fdf4cff789236077e5c7a25e3c4c9d392e264e36c65a846507c0fb6613dd8c614ecf928e63523c7

        • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/share_data.xml

          Filesize

          14B

          MD5

          3bc3042829b9c1e1586d660d9bebeef7

          SHA1

          d70a8c754036251a07dc9ee75ef4b4f6d693586e

          SHA256

          a0bb0696b507306dabd7c0c63795447fba6a32730285a098f02b2bd2bcda05d3

          SHA512

          cd17b0940a89422862905041b69a539a26f2d6b0aca1056bd1527c612fd91dc247603341c637c3eef1f6cf6f8ea2d761b0de61851604666e71dd2847e2ec7b99

        • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/update/380457/game.in

          Filesize

          156B

          MD5

          bbe088397b3e5d746e62d05f283cd9b5

          SHA1

          cf935cc47ccbd41fc03900903209ca8c2c462381

          SHA256

          580323813e17f1052bc878c740b3e0e787269b13175a8993b50aeae94cddd44b

          SHA512

          c57b5467d0094e7a1df3b6b95a0dcfd7fe2b3a5b85032590d260ac8281acdd8ec19e4c8f27aac8485456f6f24834a8c159c2ba7616eefc9b1e8d4051baac9b1a

        • /storage/emulated/0/AvgOrangeNewAloneFlower/380457/update/380457/ot.in

          Filesize

          5B

          MD5

          6bc6b6a472c3c3c1fc086c992a4f04b1

          SHA1

          105e66fb4605abff79bc15171114de449ac8ac83

          SHA256

          f851a9ebcfca42f79e2967ec21e742baf3c2870f44e077a55d0edad0d74b39eb

          SHA512

          64bec8cb3c0c7bc91690fc6510fa4e424ffdfc8993d4f768729171fb6aade6e640ea6733f48b769874ca7d43c1f41322bb034a666a17c232872b9547f3e72c03