Analysis
-
max time kernel
62s -
max time network
131s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system -
submitted
19/05/2024, 04:41
Static task
static1
Behavioral task
behavioral1
Sample
58971085fe27da536818b1addb3321c4_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
58971085fe27da536818b1addb3321c4_JaffaCakes118.apk
Resource
android-33-x64-arm64-20240514-en
General
-
Target
58971085fe27da536818b1addb3321c4_JaffaCakes118.apk
-
Size
9.0MB
-
MD5
58971085fe27da536818b1addb3321c4
-
SHA1
8ece93b0725b4e0a06827e2d05af3a91ff502568
-
SHA256
1738610c289324cd0a4d74f24862e6463ea3d104940f35d22f21a2f9420a5e6d
-
SHA512
4536cc4975ee051bbd0297a24f5cce0b6c59d7aab7724550c77aad9cfedcdf7966328bb876c3c46289a8dcc834e9a824fb9d4e82735e7fa5e4d203c41eaf8f7c
-
SSDEEP
196608:kWWhV23D54eI3n1bKTmcWkUaXefHpvKmiwab5dZCi:kWf3D54H3n1KTmYXeP+dZCi
Malware Config
Signatures
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
description ioc Process File opened for read /proc/cpuinfo com.baiwang.instaface -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.baiwang.instaface -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.baiwang.instaface -
Checks if the internet connection is available 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.baiwang.instaface
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
42B
MD5923c7c746ee44f342517fd54ffe67090
SHA18f2e2cb944358b7a4f3eb05ee7a7ab52a59fd594
SHA25678819ab45db398d1d65f7c900aab40dda82ffecb49232daed0a249c725f1d4c5
SHA512c5bd508eaaf54ce11761947f8fdb435f4b839342cf60669fce7c52e1d78973ca31b93a05be322c5bde01007a4ec7bde36a15401061cfacfe2c6ec789658e8b6c
-
Filesize
35B
MD5ee0d1609d4ddd43117bb43f3603ae68e
SHA1bf4f2c2db65a5f093a4a580465833895411b0506
SHA256d8055f49ad0420e4a4941aae5af2120473a7bf19d9ff2bbe37d078fbcd23ee29
SHA512fe1ea9f6ef90c2b7e399cbf15005b0c3d8548d1b69efcefe54101ff09e5bb421911a02b425a7ddfaa49e7f866817acffb39646647f6a316a42f6327302db9b2b
-
Filesize
58B
MD56408756119852b61db571186d71dc44b
SHA1fa6ce87ddfc90cdbb649f31cee21567b61caa250
SHA256b173b935a7dda166e6d12b9273e24a3be390baab07b9a9529aa0774f2b68e829
SHA5120f8dcda11537051eec1db7a63a7d9f0401a5a1a9497ce2fc925f0787f2ed88498557697241d012e375c9b8be883733bf1e42a6a0b2e2b87d252511094600d271
-
Filesize
275B
MD5b3fd31a0963fa3f97d0e4c8aa15302dd
SHA1c69a14a876bb260c30127e865d96abac5aea3715
SHA2569b7fc9284f31a0e9cc9040b51fcae270168082044ed0dcea2fa14dbb89743e68
SHA512c2fd0e9f8e1f8dbba63a174892bde117aab17005522eb43ea6fc777f72e0f3a2d4d943650fcddfe7eb92e2f0b0fd9241b3a4a05099bce69aff367e1246be2855
-
Filesize
572B
MD59ab135aef4e172fafb62275933d5469d
SHA12d0b1944dbfc834487c7d60397266e28ed4e5a20
SHA256550ef0372d060a95298c18fb58e45cb3ea3ed092f7ffb2d6d2772dbdab6d733c
SHA5129cfd6324ea939688261236886ce9e47139cf77a3ec56a6ff19380119ed2a265cb41dabef22b904c71985702594dc1bbf41dc2889b93188464c3a3806c09ac0e5
-
Filesize
310B
MD533f5ddeed13d2d5b2528a4d8e1bf8dd0
SHA194504d5be7df1ce30fdb2f588d9c5df30c74460f
SHA2567c21c434ea2e626dd7171af8b9572258543569e8e00b55cffa80b1a1d9227fae
SHA512040ad0dac0ac0bdc3c3883f9cd7aa37ffde9111aa578cb568a68ed86ec01e6dc129a05982e464e98b31b10a9a451d7a295271d50213ab09a8733ac49c931fcb1