General
-
Target
68e23c251edec78b1388479b3a624c68_JaffaCakes118
-
Size
4.3MB
-
Sample
240522-2n8tjsbh46
-
MD5
68e23c251edec78b1388479b3a624c68
-
SHA1
61560000b260ef395912d00b42cdfd45c37022ff
-
SHA256
3a15ac97abe33306250c353dda5cb8d6abb3a3dc54ad6b16e58935c8e0b39fb5
-
SHA512
3bf4960d5244b202d997c91492a00831df0df2ead3f4c755c758d682c718fa23aef2e979c9096170c56bfcc6324f406df6466cbd82e03f95c883b4fb7f7ba378
-
SSDEEP
98304:3idjivEO7yThKWzF6TZcEpHt4SzMKcQOZZOg6qpV064mqfrg6nF:S8vEOWThKrT0SzbKD6qj0pL
Malware Config
Targets
-
-
Target
68e23c251edec78b1388479b3a624c68_JaffaCakes118
-
Size
4.3MB
-
MD5
68e23c251edec78b1388479b3a624c68
-
SHA1
61560000b260ef395912d00b42cdfd45c37022ff
-
SHA256
3a15ac97abe33306250c353dda5cb8d6abb3a3dc54ad6b16e58935c8e0b39fb5
-
SHA512
3bf4960d5244b202d997c91492a00831df0df2ead3f4c755c758d682c718fa23aef2e979c9096170c56bfcc6324f406df6466cbd82e03f95c883b4fb7f7ba378
-
SSDEEP
98304:3idjivEO7yThKWzF6TZcEpHt4SzMKcQOZZOg6qpV064mqfrg6nF:S8vEOWThKrT0SzbKD6qj0pL
Score8/10-
Checks if the Android device is rooted.
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Listens for changes in the sensor environment (might be used to detect emulation)
-