Analysis

  • max time kernel
    4s
  • max time network
    131s
  • platform
    android_x64
  • resource
    android-x64-20240514-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
  • submitted
    19/05/2024, 04:59

General

  • Target

    58a8aba359ac7a49a0dd18797e72120a_JaffaCakes118.apk

  • Size

    29.9MB

  • MD5

    58a8aba359ac7a49a0dd18797e72120a

  • SHA1

    66748cf4c03aafd5a1c82ec21b546864e2044824

  • SHA256

    d0f76739fda55a1fd46c625ff7107c24ee8640cb87c62f4355b9e4d2b36d091a

  • SHA512

    737e846adf22245a1d83e524ad8a8c3f7f23416d8423ef316a587808bd4de1834aa839028f6302cfa11b0667074728b139bee2310abf01324dab3b3b2411b292

  • SSDEEP

    786432:4tVHrOlIwr3HElqEk8rYQhFALkUCBYQwW2JljAs88B9+59sAaaLfKvL:O8xMjk8rYQf+khC1JpAs88Bw59sAaaL6

Malware Config

Signatures

Processes

  • com.epark
    1⤵
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:5115

Network

        MITRE ATT&CK Mobile v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.epark/databases/bugly_db_legu

          Filesize

          60KB

          MD5

          557ed9b8134fe2afde18a566665646a9

          SHA1

          89488796bdbdfa6ae3888310aff870cc90064be4

          SHA256

          ff1d7f41b18cb5faddd1ee7aeea00cc5b8c33390a68f580db2ede6cc0ee078cd

          SHA512

          60905598de7400355ff3c42e8d649bfbed42ff1b87cc4d154738096b14acc078ee4dc3b6c03feb09f2cc15d06b3844a188fcd81ea77ee796c59b2f7f2b01e65a

        • /data/data/com.epark/databases/bugly_db_legu-journal

          Filesize

          512B

          MD5

          b790fe2b9842da41a6283aa307a7a5ac

          SHA1

          43daf19b342b56b1440e6eed4185e076d507d919

          SHA256

          40d2c784812bfee5ec3f118860dad6d8776995b01c65f6b8a68c5a3038899bde

          SHA512

          b0c27cbda4ec42514a2e1ecdd65e2fb2546a62f897b62dace0b36966180084262986433a244d804d24380c7fe0d18d1a0424c2bf1f3316ac1286b8f773189242

        • /data/data/com.epark/databases/bugly_db_legu-journal

          Filesize

          8KB

          MD5

          1233afe7f8ab443a5fe01f9e3723cc87

          SHA1

          aad5f0b25bc531eeec27028581d7dc7248d325c3

          SHA256

          a670d9012b488b2b609d16cabdcd923f96d9ba6cbf4228a8c65311391393fe16

          SHA512

          0fbe9584a912eb935014f386b6b92e550707f083d981a089284ae5b1c9aeabbd3ee0f97c95623b8fe628a22e0059eed60af0e89ad0a1ca41e32610a3394d383e

        • /data/data/com.epark/databases/bugly_db_legu-journal

          Filesize

          8KB

          MD5

          877071cdd7156385c1ea4cb4cbc4826c

          SHA1

          e0f5035e918d366e6c26e4e0b55eb2416c591015

          SHA256

          18db5ec635588a94a87b518b4bed278b788c98ad5e3a6f75e2f98a25bf8ef37f

          SHA512

          53fe396e75792b7a93e88f3de8ef912ae636f1ad9a57cb8c1b4b8b1137351c54dd3b87b47cee72608caab340182c272b135c939ea87e2d7276a62338541ed39e

        • /data/data/com.epark/databases/bugly_db_legu-journal

          Filesize

          8KB

          MD5

          e74f919dcd53d680a9e71f282e75108a

          SHA1

          b97d7432885ecb7c2ea0d00a4affb870f6873e18

          SHA256

          60bd2a49f771f72d51a082c5cec79d34d6fe209a535d8460b54561c308202e4e

          SHA512

          fbce78af4fe110df817c4a328706d061f5e712381f44b642013a18e26085253ccfcb601a5a15f156947a484a0ffdee404992c97bdd7f00d30d7a6c551a3dfda0

        • /data/data/com.epark/databases/bugly_db_legu-journal

          Filesize

          12KB

          MD5

          3480615f5ff1ccd0f4b029ed6d62de0d

          SHA1

          bec9677dfd973617cd130c0696611518bde6d0a2

          SHA256

          1e63e74e262870734778bafe8ee61efffa55fe7c7bd7bfc9c938638528d18508

          SHA512

          6bcfeb9f43b68dee4e1b0bb0fd6568162bc26b48f5c26c1d036444364c16224dd2f57847f0365cb33bb99646491de99bef86fb21acbc7e4acf981240b200a08b

        • /data/data/com.epark/databases/bugly_db_legu-journal

          Filesize

          12KB

          MD5

          c2e149dd98276944f58378eec99f9acf

          SHA1

          af6a3e35eac434f4a2c8d8f2588ad801bf56b89b

          SHA256

          43d137a9ae69980080bf233945b27c6c67190d24cd97d35024ce73bd9739e5ec

          SHA512

          5d997e96f216ba5714de550c762430207c6ed4a2e1d48b025a3b7114b55c1897cb235e026fd9d80fc7c0c225bd8b9509bb7e9ffc66851136c368e0238ba0ec0b