General

  • Target

    58271cb8541779fafe55b9e60b07e74a_JaffaCakes118

  • Size

    30.2MB

  • Sample

    240519-c51rtsed95

  • MD5

    58271cb8541779fafe55b9e60b07e74a

  • SHA1

    297a55b305bfcde4c8cf361f7421a6f367681fa4

  • SHA256

    1505461679c9f955a5272da8aa15d6cab8525f2a747cdf0122a8ace2e6a9fd65

  • SHA512

    50efca70f0835fc8f3239936ce32ed6de0624fc4fc82d459d1b13ce13d6259d910845fd6e60821a2ceb41bffab333f6baab0247a9b393438f6e189826c229d4e

  • SSDEEP

    786432:uhxQSYlwrsEvfIC7r6omZPL8EApilY8gMNN9O14Y2+:ADYcsGwC7r6oUPLd5lY2N61H

Malware Config

Targets

    • Target

      58271cb8541779fafe55b9e60b07e74a_JaffaCakes118

    • Size

      30.2MB

    • MD5

      58271cb8541779fafe55b9e60b07e74a

    • SHA1

      297a55b305bfcde4c8cf361f7421a6f367681fa4

    • SHA256

      1505461679c9f955a5272da8aa15d6cab8525f2a747cdf0122a8ace2e6a9fd65

    • SHA512

      50efca70f0835fc8f3239936ce32ed6de0624fc4fc82d459d1b13ce13d6259d910845fd6e60821a2ceb41bffab333f6baab0247a9b393438f6e189826c229d4e

    • SSDEEP

      786432:uhxQSYlwrsEvfIC7r6omZPL8EApilY8gMNN9O14Y2+:ADYcsGwC7r6oUPLd5lY2N61H

    • Checks if the Android device is rooted.

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Registers a broadcast receiver at runtime (usually for listening for system events)

    • Checks if the internet connection is available

    • Reads information about phone network operator.

    • Schedules tasks to execute at a specified time

      Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

MITRE ATT&CK Mobile v15

Tasks