Analysis
-
max time kernel
177s -
max time network
183s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system -
submitted
19/05/2024, 05:08
Static task
static1
Behavioral task
behavioral1
Sample
58b215e49112129d91c971d689be1473_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
General
-
Target
58b215e49112129d91c971d689be1473_JaffaCakes118.apk
-
Size
17.1MB
-
MD5
58b215e49112129d91c971d689be1473
-
SHA1
67ecb670246cf47530b4d481e926198178a2db4b
-
SHA256
8cdbf2e5e9e1aa7adb62ae970d1ca11271dc21662abccee345bee3c8d33f5cf5
-
SHA512
5ee9932d61a2f57e3f69f623d56757e44e921b5a8d2fbe592777a3961b8cc64e653abf27e986fca84d9a483e73107319de8b360306952036ae5abb3bc56fe460
-
SSDEEP
393216:KN+2RNdGZo/Z7ZHTsmw5j6M2ZN+fiChdhvePO7Fyh2ifuMCGWq:KM2RNaK/GLaC7hkhruBGWq
Malware Config
Signatures
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
description ioc Process File opened for read /proc/meminfo com.letv.tv:cde -
Queries information about running processes on the device 1 TTPs 2 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
description ioc Process Framework service call android.app.IActivityManager.getRunningAppProcesses com.letv.tv Framework service call android.app.IActivityManager.getRunningAppProcesses com.letv.tv:cde -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.letv.tv -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.letv.tv Framework service call android.app.IActivityManager.registerReceiver com.letv.tv:cde -
Checks if the internet connection is available 1 TTPs 2 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.letv.tv Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.letv.tv:cde
Processes
-
com.letv.tv1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:4201
-
com.letv.tv:cde1⤵
- Checks memory information
- Queries information about running processes on the device
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:4273
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
44B
MD5e3059d2b8175ab86944134b68e428802
SHA1ef690caa31e6d2aaac4fc1802fdc9dc269c67097
SHA25683f2c64d744ee1bd78b8a18b3235fcff8a9b5f69d6975aa00a78e2f93fec6239
SHA512a2eb72b9f083991e7abcbd1f8abdaac50a7ec62a11ef25c57c7ae77b92c01a87fbc2eedd7cae398e90e75537dc6e91a9ba1e9247783eab0021eabfe5f1b79b69
-
Filesize
27B
MD5f9adbcde11baa62c293d9c5b5465e1fa
SHA152bc5aa92403769975e0fce706472064f906ccc2
SHA256558ed0f9e3cb89bc98f840c0f8f8c6acded0d84c466d9977349aa49cbf1b5371
SHA512a161361b0fc8bc50a108150be03272527fa548b178b5f990f2d6bbf798e0d4ce63148e968634f2282b19e76e23f471e008efca37d50538a2096762ecf366b0b0
-
Filesize
31B
MD5241330befbbc1dbbe9f3590dbf0bc45a
SHA19772cb4296a09664155439a06c58ebaf098d57ed
SHA2569cd63a3bbaac19848d80151e467c488fdbaaab2f775df098ea74f854d2137358
SHA512947b67188ab245f949dc163a8a2fe0228b588c9f70e9a1b4683020fbdc1536a837a9a2105f338c6b5de44af99d5dde4f948dc6cc60ca8363567bf5f2e14730c4
-
Filesize
68B
MD532a2490a16507c85998f52b5a50a2182
SHA1c79b67aa23e0055c35adf1ff4140ebd94f94f0c7
SHA2569a276f40645c8b199932404d1178d0a9ccdbe47d7b4a51fa7eeb849d372fc0b1
SHA5125f01613467282527118280d2832a2acc020c2691fceaf75c49ea777b430fbd614284836c9826b111357880a15bb2393490333cb5f020de4c346f71967f8d14ed
-
Filesize
54B
MD52fc13898724f1c4dc8ce8bf456eec39a
SHA17ad259d25c05e85189297da1b80e9f06bd4c6934
SHA2565e150de45ac0d9f623226b7b9fad0879f2d4016b189cd1b6669fdb0bb10d48c4
SHA512c6c7fd9af8f2127f658fe4623d3087bf1411c3ec4e271551baaa88bab8b636f3f0704ea2c5170f7241f446ee3e534b2fc52c4e95d3d581f4edf85e5f62388a73
-
Filesize
4.7MB
MD54c6ae9ca414083c963be3bf601cc0fc6
SHA1940bee93f696070a73e0dd241a8491dfbaea622f
SHA256fda47b23c858f6e80cb721fc42c72e7768536363992c6bbacd868c39daab8338
SHA512d77ec2c09ad48594c63391b88313eba3a6ae4bb82e92fd55b6ee8501680f4b49152641b6af7a9cee8887e85845428ee235aea59a45576bb8bc9e2af5a3e0c183
-
Filesize
44B
MD5f7a63faa95d91bbd96f638d2b4ae6ead
SHA143fa0fb31be5115dae16c89af3f0059dbae12f62
SHA256355c57561676d433e67ab6825e5a66c7279b3a32de9055b593e6816b7fbd9008
SHA5128c5f751e68548531359d5f17a2f032ff6b75f9df5997c3338d2dde9d10d2d68ce25f507ed5d57c8a2b5be4b4f6fcdfb043e3d011bf70b95f4e96b646adc47ba5
-
Filesize
54B
MD5e86373724ec40c65ea9dfebb04b9af38
SHA1fbf43ce55d360341c796692e1a15e1331f4b5953
SHA2565c0053fcfca3a9fc045028634679953aad48d5205820e24236c08d2711de183e
SHA51285414a46604e6988edaa81a371a1ac39acc2c838692559fd35a152ea5fab1f2d17914af1ad6b55ae9ae4e2908722e386a0a22dca1a6f91dd26447a7fb1df0a20
-
Filesize
44B
MD5afe9080546a54aedd469d703f94d2bc9
SHA19c8eda384cb34e4d0f361084e3643b72705097b9
SHA2565995b099dc13a7a8ccca6c4d5c27e3a79259a545efe18cc3bd99c1c835372c57
SHA51222b5326a560fd6ea2be8ba8a2f3b380fbfd9250d389b003e2acb9d90d5c4e18cc0a694b06a8d445b25a92fd3d76bcc94f25e62085ece4e10fe40a0bc67d2c8e6
-
Filesize
44B
MD5ffc83f909f66f58e2a99ea6735228945
SHA132249f581fd3a11ad7723376663beae5e23a23c2
SHA2566d1766a8f539cb9b2c360fdc6950a0f209122f903e106ea51954ef214676e78f
SHA512852cbb581c71d0f66d64ea01da0603c0b69f89111c0c68b54abb023ac8fb286573519493ad25c15bc53683c86735f99812a70f588a8312e23879dad084cc9ff6