d4cadf761cb484d8fa2eb51427dd6c1a81c6c8eb2a9e5cc5c3aa140220153629

Analysis

max time kernel
167s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
20/05/2024, 04:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5d26cfe82628b8f4f4e045918242fbd6_JaffaCakes118.apk
Size

30.8MB
MD5

5d26cfe82628b8f4f4e045918242fbd6
SHA1

7adfa943becc2b6c7645fcd2f9c80479c40edf00
SHA256

d4cadf761cb484d8fa2eb51427dd6c1a81c6c8eb2a9e5cc5c3aa140220153629
SHA512

4784168d8073cd09c8e926647dfc501bc544c3171b630fc41f71c1adc7f990cff8d8515a8e19d16067fe9397d4018975c0540be39a1660408664c5beb271ba21
SSDEEP

786432:YwX1YAB4UMLsKrEa6a5mr3p8lGgfqjchuqxwcQuJiEr:Y0eYqEha5kpUfqj6JKQr

Score

8^/10

banker discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/xbin/su	com.shifeng.livegame
/system/bin/su	com.shifeng.livegame

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.shifeng.livegame

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.shifeng.livegame

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.shifeng.livegame

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shifeng.livegame

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.shifeng.livegame

com.shifeng.livegame
1⤵
- Checks if the Android device is rooted.
- Checks CPU information
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4262

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.shifeng.livegame/databases/OxgHkj2lz09F

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.shifeng.livegame/databases/OxgHkj2lz09F-journal

Filesize
512B

MD5
9b397f3123a8cfd9675c09ac1bdc0142

SHA1
3cad4b263634d312a3116154296a44728a82b9e4

SHA256
fb00e6fdeac3a67872f820c5991c9918a8c5a27895363482df41b751e6b42c25

SHA512
41c5a7bc237f4ebb3f08feb65b0d85bff882e3d14c790caf73359cd0d4b710ad5c73bd48958cc45a726eba39e2e1da0eb20a47d6c38de455b607ad9672a1fe10

Download Submit
/data/data/com.shifeng.livegame/databases/OxgHkj2lz09F-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.shifeng.livegame/databases/OxgHkj2lz09F-wal

Filesize
36KB

MD5
a8c7473ffa1fc4d1b2d0be5905381a1d

SHA1
e58c7e44993c9047f58b40b334cdfd5aad8d3955

SHA256
d1e001ef77664c25562bf92b8b66f109de35ae63d3fa06fd91ef8c7e8a5846f4

SHA512
c555b7e2d2592a6026209fe5e9dadbbdc9d6e18165b7dd1f4be57a02ea5a9d878b60566fba98f378b12b77f4b3f4a808790dddead71c687d1a23aea34e84e578

Download Submit
/data/data/com.shifeng.livegame/databases/P15pKIjsm64m

Filesize
24KB

MD5
032abd6bc70ad7c9484f10a7daf57bc7

SHA1
12e3c03375192814883d5fd1671e2b0c64b0ae43

SHA256
9cc41eaf3228c605583528005cadbf69eb145da3943e09e3732677423dcbe976

SHA512
aa28b2d8e87dd6364e15b1c99c52758f937585c126cda7db38cd2b4e5fb3c3e5775a92cd1d5ae68b03a6c59e7473766d670f03e3ee30e8ee53c2bba1b73f243f

Download Submit
/data/data/com.shifeng.livegame/databases/P15pKIjsm64m-journal

Filesize
512B

MD5
f2ef26aa3d41986584051acf2ae03d9c

SHA1
b26fe6770a584970c7b45d41e8e0a84513828093

SHA256
55d654da54ee2bd2c894fa2e849abf206f12d359a83fb96237c5e9aeb119637d

SHA512
9017d7d7ace7c13e2f89ef7ab40995d1a7536aa7fc4b99d7c9165f954cfe4058d34134651a2bcc8db49d2fe516183cc4fa9b0ddfeb35be29c85891f10da00a7f

Download Submit
/data/data/com.shifeng.livegame/databases/P15pKIjsm64m-wal

Filesize
36KB

MD5
e4dec46b06adca608e80948f7e2d10d6

SHA1
3e89f3354553256ea76951a594a9c0c406c099d2

SHA256
254a8ee01b1e1373a3fe984a62f90feb067f15bbe6a4c3fafacdb6aa6ff10312

SHA512
80b668fc131934dac7940dcf30a345cd6ffd4556fa11bf2c42666e420f4c8bc51b8b40dae4127e5949234a23e641fe1681abe9b42988d4795e7868eb31e8a25c

Download Submit
/data/data/com.shifeng.livegame/databases/T1oX0rhhuXWt-journal

Filesize
512B

MD5
b89e4940da6b5247267d884bfb25d0ac

SHA1
bb0736b77d64fdfc30dce8df789c611524068614

SHA256
9b6b3cda04696fb8ab920ed83daa1251cff0bb7f72c642995cf0692dcc7295ef

SHA512
f615e3b26dfb7213506aab242a71dd5cfabd4334e2c6ab51e7c7759eae3336e1f340a0182b609afe45f9d69cdbd76b1bdbba35fcbf8abc84f8f9ab614b57323e

Download Submit
/data/data/com.shifeng.livegame/databases/T1oX0rhhuXWt-wal

Filesize
36KB

MD5
db9fd19a0387661a387c4016f4d9dcaf

SHA1
fc00620ad03c70fe93aab2d704c438be7a187f3f

SHA256
1cf285bd19a93436a881ae7f8666dc5d8c2871eddc0e954f39ed215feb591760

SHA512
78845302062822f98f65d4a240cd57610ed58357b3ffcc42ef524c4ef63918ad7bd97222c323ab56a1968bf19284c8adf56a5f612a008e6706d0cd9d8273d392

Download Submit
/data/data/com.shifeng.livegame/databases/XKwVoK0huy3R-journal

Filesize
512B

MD5
f1a3f8b715813f34bbab1bc2291c07e8

SHA1
47e2cc4533eeba47590d9ffbee76f11885ca70c0

SHA256
866dcbd805676b695bc5b9b55b0793331d985a19aa9faf507ae8e468cf04d2a0

SHA512
bc13a6ab41b68fa0e5ff45725de64a5a068d254a6ee11cd6afc54bbab6d2f09773522a80fd8a4257dc78cc68ecd9af7b6a4e57f2e2f13f412391f8358f8cf620

Download Submit
/data/data/com.shifeng.livegame/databases/XKwVoK0huy3R-wal

Filesize
36KB

MD5
05844d9deb86bce80c89b7dca05a9df4

SHA1
f06991dea41a005a6dc77dfcc9e7b47378658149

SHA256
798704d59f907a5c975da6f470c3fd35005ec15a7c8a92597f9d97b5924df373

SHA512
552975bd7784d861131e54f92e50a5d3c952a182aa899f3beef891131050f40b523485ae188a5bb7126b4a4ef34568f94bc79449174101b22f25c88917a5b725

Download Submit
/data/data/com.shifeng.livegame/databases/ced3dba9a0a3cac48a89f7568af12ad4

Filesize
24KB

MD5
6c217ed0bac8d2f91b30b79d439f229a

SHA1
9ba63c2aff1bb2c70250a9dec1f4893d2ecf827d

SHA256
344d6a8d8632f380bc914af9dc9f0296429a0e9fc273e68e57870032bded5720

SHA512
fa9386f1a267171f8c80095633baa7aaad145986608f9bdf15c6708b2b50ed19359f98f9b9ff395ad26e361a85cc9e26495b23ccbc1befcdb03aacaf167d58f6

Download Submit
/data/data/com.shifeng.livegame/databases/ced3dba9a0a3cac48a89f7568af12ad4-journal

Filesize
512B

MD5
e673620af3f63bf6e8bcc87447a9090e

SHA1
1cb4c7033d6be0a9c2ec069b053c471f343c9f32

SHA256
499061d44de2876e2ed7b1f0ce60ded6f28378e400256a869012e68b1a3e9cf9

SHA512
ed3395beb4e675100a43a1179193c3195dfe99f1f63cc681e563fa4f21e02e3415428483eac55c36948d16872c6a0c5322eebcffcaa67d35fa2c10d76f1cffe2

Download Submit
/data/data/com.shifeng.livegame/databases/ced3dba9a0a3cac48a89f7568af12ad4-wal

Filesize
36KB

MD5
0c89dbf250e6edeae1088c26ce433a69

SHA1
4ef54c438a0e32a77af9056e186f31115c0db4d2

SHA256
1383beadcabc7d0839eb054fce40cfd563e54a3f408c0490b277900f106ff7e1

SHA512
3d6b90178b49b5694de0bab9b93d73389e257b5155eff1c00ba7a53d4ba6e80a210e069ad2ad3567f1f58055131e725af60fac15dc8437467f2b17f43acecdeb

Download Submit
/data/data/com.shifeng.livegame/databases/d00980430c773ab27bfd284b83a98240

Filesize
20KB

MD5
4d94dfcbebb520179818353ea1259fca

SHA1
7fda4edfb8ed541470cbdb054d5181e37d4ba8b3

SHA256
c2f1d398d9b178dd32e8f323d2a8aed0e8038445c52e93a4285a21a813b7f883

SHA512
1ff89c1fe9951b802107dbe00048603ba9ec9e9d9d91934bff327c07dcf1bd6e8ecac9cd3fde00a74754fb9b037f38ef616b038d50c7640f572993afa31418ab

Download Submit
/data/data/com.shifeng.livegame/databases/d00980430c773ab27bfd284b83a98240-journal

Filesize
512B

MD5
359405714807a200721f5a7b14caf684

SHA1
c0388a633cbbbdd1a4e0672cf1c9d4bc7933cb84

SHA256
223cd8c842944cedd3be46168a06fedd03ef011ab62e955733d990459142589b

SHA512
5abcaba549763dd9090b5a25f915562531518b8f58a359c31d777f651e8c0349c71830102e8e90015e301b5abcc17b9936edbb077ac9d3e311c22c4bb415180b

Download Submit
/data/data/com.shifeng.livegame/databases/d00980430c773ab27bfd284b83a98240-wal

Filesize
40KB

MD5
90318afd40926de6090adaefff8acb9c

SHA1
a5cfe603511e53607c48fde2e98cbb91a510ae35

SHA256
d15ab94745d4425535f00cbea356329670a15405440770218986d2cb6aebdffe

SHA512
82fa320412ca43d4c46199a927d3371308bb08c1a4c96adbfff7cf4f12c17cfe38587e53adeda0ed9dd92cac4e9ab62b0ea4a8c01014b39c7f3ffb1563af96ea

Download Submit
/data/data/com.shifeng.livegame/databases/jqIqJYOT3JpT

Filesize
24KB

MD5
9c37108c041a67252d4fb5059436eb9f

SHA1
f65bdd652f9b2a098993d2aca0be2578e8eed20a

SHA256
f4a3fc85419d0e98a0312af88fdeadf75bd9969460820043559d6ee45e7ace55

SHA512
d7b92b0b4900439a28552339cf7e80e2937887c7de796e10df0bec393d136bdcdeae47991133a5c144547ac2ffe484b9c99e60280246858f6ae9b8529c5d8548

Download Submit
/data/data/com.shifeng.livegame/databases/jqIqJYOT3JpT

Filesize
24KB

MD5
eb54ed7166731982a5d1901a35aa3a0e

SHA1
f9f35213f0b87132130fc2d799c972fcfefed690

SHA256
06ada750e0c81f713f8cf8efa3c7cf0960b4524e685d6735fb0b3c78ffab892c

SHA512
7dfe7ee3f6d8b63eb7dab1defbf3a2e2c3e0b7a23d610873d2f6ef167f59a5b66cabdeccb97b09fcdd38a21cb2a62cd306b39537eb8b53a0dcd66aab34e9e2de

Download Submit
/data/data/com.shifeng.livegame/databases/jqIqJYOT3JpT-journal

Filesize
512B

MD5
c6bbae7a1c66c5a920b525920c824757

SHA1
41de6daef1a0a557a0c44b3d8667cc05a86d4acb

SHA256
8bf504ce2e6c463399303ce6e00ac808a0585a3964a46ea10abfaec1591f8d9c

SHA512
7e6aa24d6802e5bfbe68ad3e5ca4a399b88b2ce672ee1fc5b51d33d148ca6e8da8d80d5931f539f238cd152a525286329a52059a67a9c8fe69b73358b0dba9f0

Download Submit
/data/data/com.shifeng.livegame/databases/jqIqJYOT3JpT-wal

Filesize
36KB

MD5
045f12754e489d9842f44311096e87be

SHA1
d428802aa4c6ba013c5acb50da417645aa35a25d

SHA256
a29a1e29b6217ef96b3cd96bb905a12140e523a8797c0092877a477d1c8601ec

SHA512
f5b1ae1c0b9f83090bcfe8c8c490ada5a94c903010caada7f1e2f95a677674c8fd078807ff3adce030311734e319bb5d64a82d85e86807f2137052f931763163

Download Submit
/data/data/com.shifeng.livegame/databases/jqIqJYOT3JpT-wal

Filesize
12KB

MD5
4793603c25a512117c91b5b72bf1e1ee

SHA1
82821052565f5ec384a6aaea2223c6c66c377500

SHA256
94bf051d568a6d9af274e0daa5ce4ed7a60882b2569932f5ecc9b837b380cb14

SHA512
2002686b9273c64610a2c3cf94bfe1b596e12743af3274d5ee5e8acdf214ec3a6dc2c90ef2bd1888b3935e5fbb07281c4d89130fc084a9c14f36cff870cb2d13

Download Submit
/data/data/com.shifeng.livegame/databases/wIU6pTyUBYWX

Filesize
24KB

MD5
3f46387c5a9161a06c35918e4715e9e4

SHA1
f03b4527b29495a3f50be85d6afba301e9e3f1c1

SHA256
687a930724a6054924254f945ae475e34ae87ebdc2054881c34317cd91d46ca9

SHA512
614fa11f57f1ddc2750185eb908a580f1ae1ea53d4f4ff6881610942a36554b918138af7103859821d90cef12ea68bcab1ca0e4548cc5a78ee7a3c658b37f3ef

Download Submit
/data/data/com.shifeng.livegame/databases/wIU6pTyUBYWX-journal

Filesize
512B

MD5
a1e1b4a17ad1642bb66c9581c779e748

SHA1
32c98cf795c828116d6c63cc16e91662e359e853

SHA256
dded67f9d5aa5b4ee6ebd771d440d735648422e84c560973891c47a70c05e5e4

SHA512
7cab535244be0b84e72f2356e785aaa2256569e7e78bfd5bd31e7c53011651a7789cfc632c37cd1190c7eec9c55fd56befeae96dab8801ce6052c0438b9fa543

Download Submit
/data/data/com.shifeng.livegame/databases/wIU6pTyUBYWX-wal

Filesize
36KB

MD5
b510ed34e0b2bc3197a5cc700f5dd023

SHA1
5518c7c0c5ef88dbe2304dae1a9f9188904f572d

SHA256
bcd924be721360a7bdd953e02b9aa25630f410ce87942592304624acbd67a2c8

SHA512
2ba1583463832dcef83f58c41e7b3a173d238d23ccd8d815bf6e6956718b79270a97a345214a5e3355fe1c2844d34a15122e62e29f1a05c1575f2897798a9a82

Download Submit
/data/data/com.shifeng.livegame/databases/wsUL1uCdKvjD

Filesize
24KB

MD5
59413190ea19211285b5c0fed44c19c8

SHA1
ee67b7590047c3c17309f6e6eed48556aabe4c92

SHA256
3511c95f09883c65de19c3be645faa921aa3baa92d21b5c284133da349158e2d

SHA512
6a65fc51ea3e163ed1da558c2f4e911857ab4d3b15bc27135a4639e8fed9022fd6d89b4dd39a39b3bcc69060d7565f68ef23bcde4e622a2dd823e9fd217d314e

Download Submit
/data/data/com.shifeng.livegame/databases/wsUL1uCdKvjD-journal

Filesize
512B

MD5
c9ae34adf2f16103a86e2314f641af7f

SHA1
10b67a88843db9ca011985e417f8f588864c7bd7

SHA256
8e9a6573ee1dffd98de907e768f0c94163982e41eabf0a34ab58cdb8e356802f

SHA512
79aa93ae138af32d7123142ffcf77cc1c5e89964e85ebeb3da54692cf9f39937b27b66e32f529c5c1a865d80e05286d3c05212ce6fa91fade785fec8f7c29904

Download Submit
/data/data/com.shifeng.livegame/databases/wsUL1uCdKvjD-wal

Filesize
36KB

MD5
9f80844ac4be20a642c297215eb1f6fe

SHA1
5644b8fc1be5fb6fd293127704f3690d291446eb

SHA256
2280bc06a8d03249f3c900ef34baa77daed5bec7c99c65c0daf5a6bd1fa26854

SHA512
c84de723e3e00786a0d5fb184c4b594eb9eac18e7913bf7cbe6f4360bd7ac40b3243966ff45d7b419331ee0469f60ce62c3a199daf87a27c62b6953bf482bc53

Download Submit
/data/data/com.shifeng.livegame/files/mobclick_agent_cached_com.shifeng.livegame

Filesize
120B

MD5
c01cca21e5db52ba56754bab07782c69

SHA1
49927b2a97cdb0fc73ac0e621afa52eeacb285db

SHA256
3f038adb65c18b283bd7576e412f291a6a961e20690151398d067fe0c92a4199

SHA512
aa2095af6649af4f69f46834f78809ccbdc163648b16b42690750f2c0c691a42fcd26a66b182994b90024e40c4e75fed8a000eaf06224a7f53dc465bb1204d27

Download Submit
/storage/emulated/0/Android/data/.dataycache/i42d45df023jnkdd93la483f9xGFKXI

Filesize
26B

MD5
3c33e392d0bcb15294b1ad95f8c63ebb

SHA1
c421f448ddb928f9dc78f160cfb642b12cca03dd

SHA256
ec795dcf5ce8a6cbccc2078f0a90725cc74b4aaabca0a9535e99d752235d0e81

SHA512
1790a4d4303d805dfa8a6a3a5eaace03abe0cee255fc62b603c283901e46fedb36bc3fe466fb34f0cb181d4221043133a061e498b8c433513f315791e51d121e

Download Submit
/storage/emulated/0/Android/data/.dataycache/m929bb76e8110d1a70260af57b446ebc

Filesize
22B

MD5
b59f7f521008e55e9592aafa4ce3ae36

SHA1
3696a3e25428639f58fdca352138b57cd796589d

SHA256
00dae9faab5a999144141684ab00fe0d34136bf967b8be2573ef1027e6f3bc72

SHA512
aaf6505afd366e58af9e9e9811e67f7784e7d1258e962d81b9e83bd8e8b507bd840644364f34bfd2a21537efc71c8d00e460810ef73ffe6c258e7f83498e5bb4

Download Submit
/storage/emulated/0/Android/data/.dataycache/s92TjjdfoP2n3o9dfji2l9s1olkjf0p

Filesize
26B

MD5
95058d3fa3076e4fdbc058e18d566e0d

SHA1
f6082f93a9c0ce4565c1228e61099d1b3b4f1c6b

SHA256
a079ab1b81730bd46de6049424ff404e37db84d47c48c5dae619911c9647f299

SHA512
2bee197091f0e83989094b48f1fbcda3d9af8f9f5bdeb2716f3d659f99e97167e3863d1cd2e4b5e1537b866860ba016f4d7f9005e03e3f2d0c1dc3b2a0b264bf

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads