Extracted

• • Target

    618b9e6a6e2300a030c28adf06f74b4e_JaffaCakes118

  • Size

    23.1MB

  • MD5

    618b9e6a6e2300a030c28adf06f74b4e

  • SHA1

    d2cedddf81583c9c492b3fce1e64453aa7d104b8

  • SHA256

    c1ff96657a4a1ac1ff25c6c100e176ecec22f428d2375999a42c68273f998189

  • SHA512

    4fa9ef96ae65859545b9043488b2123915d9dc5ea8d29f802cd256e251abc8fdba37bbe1ff98aea791b5a098b98e4b4a38af25776fa5ad2ab911c37f3624a17f

  • SSDEEP

    393216:7VAQruGBT2TwfcUZYdTuN05YLS3AUDSmt/iyiOlC4cJhbN1k+FxJmckJanVXb:7TrpBSTWf4TM0vDSKKyidLJJk+FfUe

  Score

  8^/10

  bankerdiscoveryevasionimpactpersistencecollectioncredential_access

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    bankerdiscovery

  • Checks CPU information

    Checks CPU information which indicate if the system is an emulator.

    evasiondiscovery

  • Checks memory information

    Checks memory information which indicate if the system is an emulator.

    evasiondiscovery

  • Obtains sensitive information copied to the device clipboard

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    collectioncredential_accessimpact

  • Queries information about running processes on the device

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery

  • Queries information about the current Wi-Fi connection

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery

  • Queries the mobile country code (MCC)

    discovery

  • Registers a broadcast receiver at runtime (usually for listening for system events)

    persistence

  • Checks if the internet connection is available

    discovery

  • Queries the unique device ID (IMEI, MEID, IMSI)

    discovery

  • Reads information about phone network operator.

    discovery
  behavioral1behavioral2