d6ff91bf1984051508f08ccbb21bb5d09a7b556f86f2724ba1c7371f233ef828

Analysis

max time kernel
176s
max time network
159s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 00:21

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6553454cd44ef6fb60c8737fbb386503_JaffaCakes118.apk
Size

18.8MB
MD5

6553454cd44ef6fb60c8737fbb386503
SHA1

bb44bab9f73295c087fbb19a00d1e6fa5b08bf48
SHA256

d6ff91bf1984051508f08ccbb21bb5d09a7b556f86f2724ba1c7371f233ef828
SHA512

135fb1de94c0f4a9b6943ba788729a52c0c875c458c950548eb72c20110b5e975614fcf891f0d77d6bcbb08f90120101536b9b2798911584f76b195626e78cbd
SSDEEP

393216:hxJQbRmVUZLGE6OCtU3Ln59W5FmUyreGBUP4vUFNVSAQ7w9ka:hnLUZ8U3Lnu58DyJP4MVS5MN

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.liulian.singledog

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.liulian.singledog

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.liulian.singledog

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.liulian.singledog

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.liulian.singledog
1⤵
- Checks CPU information
- Queries information about the current Wi-Fi connection
- Queries the mobile country code (MCC)
- Checks if the internet connection is available
PID:4292
- getprop ro.product.cpu.abi
  2⤵
  PID:4321
- chmod 700 /data/user/0/com.liulian.singledog/files/txRes_1.4
  2⤵
  PID:4378

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.liulian.singledog/files/.imprint

Filesize
898B

MD5
8b372c7766889b6192b1919196d496cc

SHA1
7abc82e9332ace0d2de7e5f308aa40bea8bc8a7e

SHA256
5418819bafb26f669a6e1bbf7d4156807304ddab5c417a3bb17814d3d6513d3d

SHA512
325876119a4e37cc935ed5fa1e8606c47b375bccf92426be0459eaad623dcc6fbf79901689d77714556ea49fbc80c27318dd1622db272037a2bbdace7e6edbe7

Download Submit
/data/data/com.liulian.singledog/files/txRes_1.4

Filesize
198KB

MD5
e080fdfeb107a1ac2187ceb773eb4c75

SHA1
c01a6256d9f7e96b7e9a64c69a03669606c2d705

SHA256
75ca8d40ca096b67f2fb2f8b708c9034feaf59254464ce7e27d4006d78d7c440

SHA512
359055fae748a7f8b85bc152410b027425fc06bf14156debdafc6c04bf029380fffe10ff907dc71d72a3f2ff1ae6a3f4a0788df35b8da02469c37c1c9460d463

Download Submit
/data/data/com.liulian.singledog/files/umeng_it.cache

Filesize
310B

MD5
2d9a29598e16215ec508ba03de0d38e8

SHA1
6835594073a827d9ebe0211b738a1327524af691

SHA256
72c776ca6efb2e29af61b8c0f94c9a19a0b4538bbe8b83358d28ed5b93152c1e

SHA512
a93eafc1b552559ad597693539c313a1f3ba8b3e554449c3cf652582f20fa34c6fb1155a4bf763f5adcddde1f1659a807c0237b7212f64aaaa72f3e8fba42850

Download Submit
/data/data/com.liulian.singledog/files/umeng_it.cache

Filesize
158B

MD5
c715446fe858067d02e42e4fd28a0577

SHA1
2cbc8a58da29504b05c523037f535e5a0166e29b

SHA256
40e2b2459b599355692c8d79d7a311c513a8fcd72283b40ba76ed02eb4078526

SHA512
ed5d521ea29a124f5c655aae39b4dcecbc4b023df30b7301324d7c0ad95bc6b233976ea0f26dc46f18c27cbfac35b525f9a2c2a15d94ef8412080e6650fb2953

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads