Analysis
-
max time kernel
21s -
max time network
148s -
platform
android_x64 -
resource
android-x64-arm64-20240514-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system -
submitted
22-05-2024 02:47
Static task
static1
Behavioral task
behavioral1
Sample
65bf8a29f0fd119d1d0d6b052c2c4278_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
65bf8a29f0fd119d1d0d6b052c2c4278_JaffaCakes118.apk
Resource
android-x64-20240514-en
Behavioral task
behavioral3
Sample
65bf8a29f0fd119d1d0d6b052c2c4278_JaffaCakes118.apk
Resource
android-x64-arm64-20240514-en
General
-
Target
65bf8a29f0fd119d1d0d6b052c2c4278_JaffaCakes118.apk
-
Size
5.0MB
-
MD5
65bf8a29f0fd119d1d0d6b052c2c4278
-
SHA1
0e941e3b52fe699a1d9bbf943e7829f2299605f6
-
SHA256
42b2ded4877d2750db85312e7f02e7dee6ef607101d9d4514d0f87810faa360b
-
SHA512
f59e2d9a76f223dbfa5fd00298d2de0bbd55507fcf22feea62eeadf8a1bf19cc8b41385d5a08eab78855dc8f5dcfc69f3ee3743cf5f22ca63c8b4e4cdb6aebec
-
SSDEEP
98304:tEWv1y/PfAVxXogEl/LvMYms6dP1fjyaeDGm1pZGS4kIKUc9UjoLOL:fv1yvyXogTCslyqm1zGSHUKUTL
Malware Config
Signatures
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
description ioc Process File opened for read /proc/meminfo com.yxxinglin.xzid25591 -
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.yxxinglin.xzid25591 -
Checks if the internet connection is available 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.yxxinglin.xzid25591
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD5058cf59421dd48b341d4edba9a029de1
SHA15c0a101f024d86263592038a19d453e4491ed3f3
SHA25689fd4e8452470b8db40ca03a6f830e9e831c2615592843518de6d83a074833e2
SHA512e1384fe963a1a4c4dd9a79c588f33c2cbcf439621460361413aeebb2bde590516d21bdb326b7a4806d15c0be61b7647d2cb0f9bd790b4acaab6021bd66e115b6
-
Filesize
512B
MD5e18b3f5c150429a6c96bb57810c5a44f
SHA19b64c1a29ee1e2fa2a19d1fe1fee256ad762a00b
SHA256921ff2a0bc2433e44952b0da0e39f04304180e66a0697943b0db2064e3d048de
SHA512200f0f9c6b68817cb3bfd7e6ffa9b3c1449c052068f75b3a2caf92445ac50289456823d7279dfc50ca0363549a8ddaebdf2ca6e4a6aabf8aed7802ea2abdd776
-
Filesize
8KB
MD5b505cb987fab9b10858cc0ebde132dcc
SHA1fd39d907bdb8249d21b916ed5df10c57162a47e7
SHA25676b634e178d03ed6e9e202a05e84a809c487d4f09846e89ae13b674171f5cd71
SHA5128dca40dfc90bb0bb08ea740f202393d68791768d1d2ddbda1f320e6bc39d4cd01a248fd2a8ab72286c441378ea72bd8f512e20703de74501cb398e36207b324e
-
Filesize
8KB
MD517e67d0a875a795903cd5a4b113ea33a
SHA1a758fc7feb49e3f9df20afc9fed5c9da1f3feb2c
SHA256f5b9a73a757b6a712b7a0151e2cbbec0cfe1ede7bcc1111e511dcb5f280d1ecd
SHA512029b4bcb9afeceae4d39913d6e45d06a7fb5caac3fd1c65bf9b8bf66e1f22dd3308227d9448cb12eeabbc29f6aeee4c1a00e618c572bb7acbb9941cc9418277e
-
Filesize
36B
MD537e8e716e0e2f4a0b05cd9571d95b84d
SHA1f8d068f6931707bddb8cd69f706f2224ad1fea3c
SHA2567080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca
SHA512e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6