eb40eb2932f8bbcb5c9903a7bbbeb4d9f1a432914f3a6a24a2a1f182552089ed

Analysis

max time kernel
4s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
21-05-2024 15:41

Target

63d3e0588dbb6ecd09706786d76ac056_JaffaCakes118.apk
Size

17.1MB
MD5

63d3e0588dbb6ecd09706786d76ac056
SHA1

d3497ab8f9d098c29c1669c52e81d0d3da5884c5
SHA256

eb40eb2932f8bbcb5c9903a7bbbeb4d9f1a432914f3a6a24a2a1f182552089ed
SHA512

4946c64a5a01a552c0ead0e4327f96dd0540afbe948696655c7613dd0b27c0537a7a4324eb7722694f7f7c7a5598d73bc31ae3ca8c59b13f1a7e324929a2e93c
SSDEEP

393216:xEv4O0M6iEYWDwCF+GUjvB7ObhnFGaLR2tzuM/DxwPaEsjV:xEvXgYWEoyvdenFGaLR2tRdwzsR

Score

7^/10

evasion

Loads dropped Dex/Jar 1 TTPs 1 IoCs
Runs executable file dropped to the device during analysis.
evasion

Download New Code at Runtime
T1407

Processes:

com.cardlink

ioc pid process

/data/user/0/com.cardlink/[email protected] 4675 com.cardlink

ioc	pid	process
/data/user/0/com.cardlink/[email protected]	4675	com.cardlink

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

/data/user/0/com.cardlink/.cache/classes.dve

Filesize
24B

MD5
7ea4e8964042112157a7826ec0152e05

SHA1
7fd78073b9e2bf666256905dbbef3add4c311b1c

SHA256
f40592f9a1346a79474ab04571076302798d3076de625db4d021e77567a036bc

SHA512
dfa089c7db0565e49e90b0cdbf3cfda40299179f06dec4d423e5be3b8c28fca3abfa99c1bb14fea4bb277eab6378b5a42c7c7cb64d75fbc3b016c4858e95b840

Download Submit
/data/user/0/com.cardlink/.cache/classes.jar

Filesize
2.1MB

MD5
6d3de32a1770e7fc68dbb6fa4a728906

SHA1
c9110e812461c2b283bbf1851287d31fc9cfe312

SHA256
6ea1fef266c16527ba40dc3a39a6a3e679e35af3c459e92356f350e402537017

SHA512
356dc1602b5d2dbeb1a2b2ecd897d6f9589cd6fb163e2c438811182cfdf250c9df67904d8c7fc1ed08267e54d3081e68541f5708b37d87ad891f50c4569d4450

Download Submit
/data/user/0/com.cardlink/[email protected]

Filesize
6.6MB

MD5
93e9cc0d956fbf5710b1f73e96718844

SHA1
9cdd452861bd29003ae62118b1961980692c10b0

SHA256
5e2c273f277ac5014a6b012d82991ace496f95007362a44e9c9da53e873fe25d

SHA512
655d9f33b441b069307fbb98e8e363bbf7bccc39aa3276023258e016204ee0dc884a4dc18e3115095643867f29c21eb393458acf3fd1249e9879b6e14a85017a

Download Submit