38946992ae547ceeccbe9282e18769f7d921d55c7b62f41a42f448c7e53983a9

Analysis

max time kernel
168s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
22-05-2024 01:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

65802c85ecd70712ed4d040b19a80d0e_JaffaCakes118.apk
Size

29.2MB
MD5

65802c85ecd70712ed4d040b19a80d0e
SHA1

b62e44aa6a5fbcb6be7b00af1ae4950dfbabeedd
SHA256

38946992ae547ceeccbe9282e18769f7d921d55c7b62f41a42f448c7e53983a9
SHA512

b2b61acc61e434846b918158437d152b2e70508bac832bb30b292702f460b440f544ba198a3151db03da9780399309867c0af8e9de9d159a5606b618a6f440b3
SSDEEP

786432:jPURpfrujqhfemmv6gEiSLe44Z3DzTV1RY:DXq5nqQ4RTVo

Score

7^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

abnehm.app.low.carb

description ioc process

File opened for read /proc/cpuinfo abnehm.app.low.carb
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

abnehm.app.low.carb

description ioc process

File opened for read /proc/meminfo abnehm.app.low.carb
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

Clipboard Data
T1414

Transmitted Data Manipulation
T1641.001

Processes:

abnehm.app.low.carb

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener abnehm.app.low.carb
Acquires the wake lock 1 IoCs

Processes:

abnehm.app.low.carb

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock abnehm.app.low.carb
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

abnehm.app.low.carb

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo abnehm.app.low.carb
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Checks the presence of a debugger
evasion

description	ioc	process
File opened for read	/proc/cpuinfo	abnehm.app.low.carb

description	ioc	process
File opened for read	/proc/meminfo	abnehm.app.low.carb

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	abnehm.app.low.carb

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	abnehm.app.low.carb

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	abnehm.app.low.carb

abnehm.app.low.carb
1⤵
- Checks CPU information
- Checks memory information
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Checks if the internet connection is available
PID:4622

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/abnehm.app.low.carb/databases/google_analytics_v4.db

Filesize
28KB

MD5
a1faf31ee42533b9810eb52bbed5c09a

SHA1
a4114b133cbb35061b4d54cf0b5983e638caeb4e

SHA256
893b6dc8d795edd8d52c1229a994059cab3f2ae6a9719a864e4f35ef0ad53b77

SHA512
658e273b2ec6cd2ebf440bb07e9b903d3c0ac10cdb1c794521487dfe1fe0bf8fac2f96f83b6d8ee824d9421942aa110392c59a87d090b4596f6830b0cb7a03ce

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_analytics_v4.db-journal

Filesize
512B

MD5
9bdfe5af5c8d59fd63ab2af328f0fde6

SHA1
46a2aede2a4fc9ffa48cc49f8244db9f21650293

SHA256
a0455dc4ff4b9853cbb638647c90795a9ea3845c67a5cdae54a7b4d7dab30ccf

SHA512
95a551deb22ad8e01c2d8d06997fdce59ffd8977d74176a2d172e2cf79c8509f12eab1e8de0ab6a0ba01c43feb2d1425b24e3cc68031a1f3de46f7b152d91cea

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
1d6a0477a0256dbdf106d89eaab78e54

SHA1
960ba064a8703f0f04b71028cdc686477cba5813

SHA256
619c6be67a237b9244004c12bc4bb6b8bc6a95a75374d7b5d44ae851dc3914dd

SHA512
8f454bae8f2e4ef42b1d4f1fd90737ac48986d160d63594039a4f35f5151e961fd62b973f9a4e94decd1012202225e6bd97c869ac3d75be2eb0fac636c7b7e2f

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_analytics_v4.db-journal

Filesize
4KB

MD5
929671a390313a25f256243eb771cd30

SHA1
4bdc2006b93ebd1b298bfe6cdd65dcf63430c6a7

SHA256
e2d8cb6fd63af3efabb6fb4d18c4341ba6fccebb20e3cd15bba00e9f634118d9

SHA512
96e916fc9091d162334d1c271a6b1a85703bb06b2c955d09d27677bae8fb21d9459dd2dbf4157c8b9daf5d6f2672d6429bbcc8e22d9841babeeaa8e93c5b710e

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
a7a889e08e0699f413b0193151f0fc89

SHA1
29e6e7ae2a69950f9caed64e344dff154375f1ed

SHA256
376bf1651fdca3d874983e3f71fdf3345546b9d21326f7ba4d408aebf88a88ec

SHA512
8d6ca4617dea130d5ff42571e739292477b11f092e6ed1b80d02b984947910b61ab4f5ddca2c17f6b27142014475165b3341a379477bcdc1fac9af449695225e

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
93ca58ae367b7c5e9a3095a875d47876

SHA1
c2738bdabd2e37c306c340570803c43e3d45a46e

SHA256
9f955c61ae2db0314ca97933514ea2ac6b0febed84dad5313da2b72aa4244db2

SHA512
becdfbdd130201ab4d9ea2773350436e1fc9c808af826fd631d0fcf34cfd4fc2e83c219fe8cc0e1019a05577c49f6924c714c40aecd47332ef8c09ce7005bd99

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_analytics_v4.db-journal

Filesize
12KB

MD5
c608501264c78f86b48b4702c70502da

SHA1
5a311043cfdd641ed9d9a34c7840024a1af6360d

SHA256
cfaeb3c5733a5efaf77b294c12cd6d8711e6bd946fdbd60563b8283c864cf811

SHA512
a8e1291389047bb198bb57da1f9040c33cd0c0903dd4261a6873bc4a1a0bf2b7c5cd410f15a7e943b5997f1cdfb73cbade50d363eb6b5dbce916fce526240559

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db

Filesize
16KB

MD5
61c8bfa4dccf88f887e6b476165c0082

SHA1
d9cbb74af168727bad9a29a3c5fd26a6b4f84fa2

SHA256
1c8a674720d00f995fdff7722266b64147ea3316219b25ac0307fa1bb98b8fd1

SHA512
d8bb4e255424b87832f7c1a82d8ebe7c82cf8be316280adb516bac02f92aaa1177eebc5e2260488b4e39b0e2b83c465d4083a650c3646da68f3b4970de8d9f71

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db

Filesize
16KB

MD5
25eca3b922b272489aa70a396145acb4

SHA1
9b3c1153fd7982181f66deff07d8e5222ba50cc7

SHA256
30c7938df96236f12bbe4dfd5aa7e446504c5d7511cc8156292d54310bdf4957

SHA512
5a197e544fdc57b1caaeb693cbd5ea63eb47742f09444db70c7b67a12dd17a505e27c53dbb4976a04b9e99ed4505a4231e50497d0086e356ba57ac67bc6c6213

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db

Filesize
16KB

MD5
621acb03f976e94c180caaf1c0a57f84

SHA1
8f5e2736a7a740a25959e5923418c1551bec5367

SHA256
d662a8274924e2427aa58d4f99d6077afa6e7be1ff6eb174c90a395a86801abe

SHA512
5d4994b05c0f09dc1813695fe96338379df9e484064e83f3122e1bb5be098d3d636df59470d29fb2ddbcd495cd8db59f53045eabfc07285a222153ffb8aacb66

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db

Filesize
16KB

MD5
63f92ec5018c647fb744e7bb8938af72

SHA1
caf694b838fcec93e7f1b5f431b764c5abe21b26

SHA256
d9beb15fc7450bc44f012a956fcb38086e2f2354dc51e702854b359d1a352cfa

SHA512
e58d435f3c58682cc717ab815dc6c4647c4e211d226020d175d40ae08f39edba1bc384d107f139a761074313cc91809d3d3a4ddeb84a0f4a1bb875785369dfa4

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
4fb71c538aab66600b9b77fc8cc16492

SHA1
939f9fb98cbe54492c053e8551f5839fcf42356c

SHA256
1397c576c5cf45078d70b4a6b2894d8a2bf97314afba5bf4cdf7af54ceb886ef

SHA512
28266903188d4cf2f01e70ee2f0248bdc05712c5bcb68e5e955b897189c53fde902030b0657a9ee4bc6ea63eb835c964b55dcae2173ee4edd482b712f0381418

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a9a811cf3da35d3ba8aba8ccd6fcf420

SHA1
f3a7f1705f8a6a147109092284f0c0f0764fc1d6

SHA256
f1b48dd7de056934df864046d8fdcdea058c5b39d6a1e56eda7c04f48617824d

SHA512
2ec3a3169ff4c7ca56668e5ea1e191cdfd532ae28993c75559d946ec7434dd753e98f18562bd111bbe5531d25628fbe0d3fbc6078a9923e78941217f397a828a

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
d56795edc68dc5a7453d59eec059a608

SHA1
0dfdef9cf606c7854afee65d5ca00d9e2e6a4717

SHA256
14a2a2a5d605ffbc031481af046ab18527983c8dad41002bbef07a48695d6f3a

SHA512
3a7fa1db48c8b5e782d17614290aa286e2782ec87ec519d31ba2f7653a3c0f4d06a77ba06d5e4713a0404c201d948c89dc5d9210de01697824f68a2232901d6c

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
c4b1ef4c8d7910c8658c983597c2e1af

SHA1
3b698c4caa0aeca651ac9dea0fc0c303cb7f0abe

SHA256
8dd44dbf2288fc7977a40a0f96cf564b9793862dde591e9b203f6d5e03618ac5

SHA512
ea91bbb7633941b862d7044816e186d4da067e24ba55c608d8f3cacce8f57b73ad3a35573ab48617caa2fde7ab15456ac7eebd8f831d2240acfc9a2bb0ef71f5

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
56e3eb7332ae1cee49be3c5f4472fd23

SHA1
19b6795307707893297534b4b412365303911b43

SHA256
35f355890e99cdfbc42be6e81b7af781e2d9e95d2d995cb7adbe21d36e13b8aa

SHA512
ead7132ec809bad1c6f6000d51f5c8a1eab34748f58a0bc2bc6d670f119785aa29c212130f505af1f1990332317b609680281807ddb25bd30de02a8113dad8c6

Download Submit
/data/user/0/abnehm.app.low.carb/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
351996a5909288ed4c9d223e61637eb7

SHA1
d77f51e819e50535aa5b44e356ab82004c72360e

SHA256
3d6996e41666f7cfdf03422e10d46454b5ae03dfc9b425ecba87a4740ba88d2c

SHA512
8b7a6b33090ce61550112a69fe4d071dfbb9d33ac04121c77bd31b05b9a2184ac94c5cc70a02b24ea71dd2ffb4e4fa3c07ae42a44a5cdef0f6f3ce54948d86d7

Download Submit
/data/user/0/abnehm.app.low.carb/files/AppEventsLogger.persistedsessioninfo

Filesize
495B

MD5
a0bc3c9e4ab57315a64ec9e5879bb7f3

SHA1
612c95896c5395e7bf1a3c4898dcd1bd9b980a06

SHA256
fe6cbd32f64093de0593dadb5cdd25b63721f2b105728e0e6959b6c276748fb3

SHA512
43104ee30943ea2dfce89ba2dcf8c0989e5895d0eaf4c2ef8d6891d835f154578b3762b5a31c84828a93fcf61f65b44d130be98a65b77d6e46201bea9b6f2d71

Download Submit
/data/user/0/abnehm.app.low.carb/files/gaClientId

Filesize
36B

MD5
fbf6830e098316397492e189abe3a25d

SHA1
ac8ebd8fc47888cc9dd02823f015a62a2f902f64

SHA256
557f146d19b273011653fcb902fc895aa89c0cd07e59909623cc49d4eb209520

SHA512
02a46914245dedca793b6452ecec6fca2e9c11afeaf63c8e9e0e5b6ae46e2eb814d7e166f94a4f62b99df52d06b5032382c94caf31355f0c9ccc7526c91e1dcf

Download Submit
/data/user/0/abnehm.app.low.carb/files/gaClientIdData

Filesize
32B

MD5
bb5b50d742e153e0cff6a5e6f3d42513

SHA1
7d7affbe79e7b7482362becbfe3031647051c7c5

SHA256
543aa717061ecdee1e0ea13a900a396ee7c71ff123cc950134587abb6d7df851

SHA512
ef4eeb66a0102bf143a4d88f247b3603b8a7f142ba6633d836ff2aebc18c1c08cb40103f632d4f94cb5623b7ff2378586127475e853535a338c40b428f1ee42a

Download Submit