General

  • Target

    5655dc138f837963b12273fd1560d182_JaffaCakes118

  • Size

    15.8MB

  • Sample

    240518-xrf6gsaf7z

  • MD5

    5655dc138f837963b12273fd1560d182

  • SHA1

    c574dab214be18b5a7fc1504c364bc3068ce87ee

  • SHA256

    7bb74b4141f0497097593599962baada037477eafcee6425c1608d2a42db97bf

  • SHA512

    955a370c837f23d9463dae65616218e0633f880964daaed6ec645da7307f733f9f7b67233e1c60356ccc919cf793783fb6fb7abca93eff7e857ecdae59f2839e

  • SSDEEP

    393216:+QBpeAO+FSbZqD6S6FY4kC5nznPnB7Uph+gMoN+9HANLzfh:+QBpUXOIFY4kCtQ+y+lAxfh

Malware Config

Targets

    • Target

      5655dc138f837963b12273fd1560d182_JaffaCakes118

    • Size

      15.8MB

    • MD5

      5655dc138f837963b12273fd1560d182

    • SHA1

      c574dab214be18b5a7fc1504c364bc3068ce87ee

    • SHA256

      7bb74b4141f0497097593599962baada037477eafcee6425c1608d2a42db97bf

    • SHA512

      955a370c837f23d9463dae65616218e0633f880964daaed6ec645da7307f733f9f7b67233e1c60356ccc919cf793783fb6fb7abca93eff7e857ecdae59f2839e

    • SSDEEP

      393216:+QBpeAO+FSbZqD6S6FY4kC5nznPnB7Uph+gMoN+9HANLzfh:+QBpUXOIFY4kCtQ+y+lAxfh

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Queries the mobile country code (MCC)

    • Registers a broadcast receiver at runtime (usually for listening for system events)

    • Checks if the internet connection is available

    • Reads information about phone network operator.

    • Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Mobile v15

Tasks