Analysis
-
max time kernel
3s -
max time network
159s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
-
submitted
21/05/2024, 10:23
General
-
Target
62f35aa349a96f87d9d4d039a76f924d_JaffaCakes118.apk
-
Size
1.9MB
-
MD5
62f35aa349a96f87d9d4d039a76f924d
-
SHA1
d26ff96bc11119559fbf0528a1f9512374ff85c7
-
SHA256
a8d82341fb23ea90c3dc30ec22d24e9499fbf0f77560f7284a872ce749a99798
-
SHA512
b967ac3b76208ff4cf39e121db299bc3ef584a75573895e368b9ef2bd003dfc35e40a323988b93e707b8031c6badbd42aef3b4030cabe7640d2fe1dba8f74f3c
-
SSDEEP
49152:ZMxM+q4EXPJK1SaR+jfzIAVjFg7anCzPPEfbO:ZMxMAKTjfzIAVjlCzPPV
Score
8/10
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks if the internet connection is available 1 TTPs 1 IoCs
Processes
-
com.d951759209.vgb1⤵
- Checks CPU information
- Checks memory information
- Queries information about running processes on the device
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available