Analysis
-
max time kernel
20s -
max time network
131s -
platform
android_x64 -
resource
android-x64-20240514-en -
resource tags
-
submitted
22-05-2024 02:19
General
-
Target
65aa8c4e3e86038466da82c4ee61ef20_JaffaCakes118.apk
-
Size
18.8MB
-
MD5
65aa8c4e3e86038466da82c4ee61ef20
-
SHA1
06abfef7bfb587fc37a06b58a1fa8ab2448c0b6c
-
SHA256
6e8ffb457c755929741a683783401c1a57d1b67f7a53c94fb60cb1b4b85340b1
-
SHA512
ed27177f6f2dbcb94394c8b8f6c74c10049b5c973658c2cba3f96491488b156aee039e8be3ab609d8873d93c81376b2a42cb6cb982c151d8f62a74fda21f05ca
-
SSDEEP
393216:atozVQn2/7rbz2k+TLa1xPm/nVnMlA6SGbpK1eYG1NtW2vT:atq/32TLa1xPm/VMG3GNoepR7
Malware Config
Signatures
-
Checks if the Android device is rooted. 1 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Loads dropped Dex/Jar 1 TTPs 2 IoCs
Runs executable file dropped to the device during analysis.
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks if the internet connection is available 1 TTPs 1 IoCs
-
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
Processes
-
com.pinxiango.store1⤵
- Checks if the Android device is rooted.
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.pinxiango.store/app_bugly/rqd_record.eupFilesize
349B
MD5f9d7350cd7d485b537fa7ae0ab893123
SHA13595bf230702439762dda40acd131d22257783ac
SHA256434623962c87e5d7d095fdeb8c7416eed2b4e1c46818cabefa2479281230aa43
SHA512aaf2b54837a81c7722ffe4ebc222fc972ddad2795e6c9e2ee1a75976e76ca967a5843e156bd9cf722c5ba33ee3d39be3de8016cb7696e90e36b3a528f0d3579c
-
/data/data/com.pinxiango.store/app_bugly/rqd_record.eupFilesize
1KB
MD52b7a22f5d957f1c7da10bc52d94cb6c5
SHA1f38c10742c6e8646129a31ba985062381cea02b2
SHA2566d3140648e8fc5b4635573eb8e71e35da9a6e5518dab5926e329fb6d738d6fd8
SHA5124b843ea07082ace684e4a69c069bf0779e47a1ccd4cbe285fbf544cd9520e403eee6e8d2e5ccb29c081ed5965b97782be8663d03d2bd027821b7799232c9ff89
-
/data/data/com.pinxiango.store/app_bugly/tomb_1716344393506.txtFilesize
56B
MD5bd0f8f8f3ad93fa07623422ec6e72003
SHA1c3589295e7a4ddcf35bcd7a2c13bfd381783821a
SHA2567fe875398dea7537a57a77c5275cbc8647aaf63ab6fd9148443b65df2e1d0647
SHA5122ec3e073321262b667afbf98fe4e9f51e4c0c58baaad506b120239031f10699d699b94470bef13007bd6199df3d3b03f1eaf147c0cba5178aee7e267072b1c0b
-
/data/data/com.pinxiango.store/cache/tomb.zipFilesize
207B
MD509590c9b41cde948b6ba0a876fa8d44c
SHA1040496d61ee86a5a83c442ae545caab54c9f81ea
SHA2563a50dd01af3881670e6e8291c37fb87d26737beec4413af9085d99f108c37958
SHA51209b88d8f19aed326312af057b4515e0c027ebc0e3de7828742a01a1b3b77240535a08b740c8e8f885d9b22c64ddf40e86ace96cd70fd9024784196c9a4ec90f2
-
/data/data/com.pinxiango.store/databases/bugly_db_leguFilesize
180KB
MD5e9a2a5ee7ee4cf56e75cadf33a33e78c
SHA143f52f538002dac6d89d6684ff1eb94d73c6e4d6
SHA2568feca258984b0250aaa54a8f04483ad7de52522dafe83c1acb75149a088737f8
SHA512e8c8c9c9e93356162a8af34deda992177ee8808ea0748211878af8e665b131aa328484abe09e7fdf25c0a42edae899bcc4be24c3d4889c57729a7c5875dc4c9f
-
/data/data/com.pinxiango.store/databases/bugly_db_legu-journalFilesize
12KB
MD52d710844a8c546087ace69f37eef2fb5
SHA1a8fcf1318e0c2bb6b0b719a8ffba66fa0759f31a
SHA256b9687217c84c217949937a2e52e46e89606e415e4a2a08475e24b3ecdb161111
SHA512da051d6dde534d247f4090da0f4a94780ab584cac12e5111620505b7bc12cce713c56ad81c719deef3191c7c2627493874b3da1481d04d17ab478f38d222181e
-
/data/data/com.pinxiango.store/databases/bugly_db_legu-journalFilesize
512B
MD55e7ac86920f9c2f03ac20b7ad00581fb
SHA190c8b2ced8e1593e2ef42294195c97c6033e566c
SHA25655bb19047296e09253b6b5d69584ce175263dffdff8144dd94dff96ffc59d577
SHA512677193ac5ce8a7791b445c8967bc2a203666158855c2d29b8ea539f21432650e9b6b5d393e60292f604175faff8edc48da74707e9b8154c0e8b9160a46d46f9e
-
/data/data/com.pinxiango.store/databases/bugly_db_legu-journalFilesize
8KB
MD5876631b3ea06d8118c21528a944348ae
SHA12f5177b5c3f588f02e2bf48d531df961cd7f946f
SHA256285a5b2da7ed3a29bc5114bb5b58f9787319fa10abe503f09d8d8b861c4d4a53
SHA512a35daad737d75bc69056f0a13dd1282d6baea3db6496fe544be4ad0c07257743e41ad52d46359649c74777a2694f96f41326c49c43941cea3ccc973da6666df1
-
/data/data/com.pinxiango.store/databases/bugly_db_legu-journalFilesize
8KB
MD55d4417e09dc3007c1cc9e838ebd9898c
SHA1be2ff1f86b15416dc7b4a1ea2a23978bf0dda84b
SHA25638553603435f491fdd42cd2858c634acfd166553a6b8ff8d58c52401ef681453
SHA51243889aa0e4665f3af69f70c0e69c40a512c149a174171219c6ce1726914246987891373492bca3c136eee1733f66cc6508ba1896941893cf2ba5dbca0285bad8
-
/data/data/com.pinxiango.store/databases/bugly_db_legu-journalFilesize
8KB
MD5b63d0da18f17375750002da58b80f127
SHA1cc119242427c0a23ad4387a5565f2da3ebf9ae3a
SHA2563f6c4bc2311039e3ae30f78ee18bb0aae7116cdc70cf47bd81fc0dfdcec49819
SHA512661479183f97c1912c647fea9b43d9e202d63f0960c89f9e6a8d8411c1d08a8af26f7d15158d9dd1b9d0b2f3ba01651427f0b5b7cd76110270bc72cdb604d85c
-
/data/data/com.pinxiango.store/databases/bugly_db_legu-journalFilesize
12KB
MD5936fdda3450f058308ef5fdd79d38359
SHA1138284479cbf4171406dbf8551f31b9399f8c89a
SHA256b3972aa19aae741a1c2910de21cc218d92db221538a8f8ec4a9832e8b7b4260e
SHA512188e15590f422d7d66805e535db0f3180da044f6f35e1a364a465ce097faaa8102be17d22cbc3db4b43453c285d48edb106b94439884297d2d05f7664f349b8d
-
/data/data/com.pinxiango.store/mix.dexFilesize
292B
MD563f77f99bd2c2b772a479923bde11974
SHA1c7632e7d301e4463fafce85f84e9c3d7da3fdbbe
SHA2564c76a3af64cdd2f8713ffe2733dea50dbe714d0ca41c17d1847ee5b62a7ca615
SHA5123aae4a89d1ed51fdd911cb367eb10afe3c2264e4222085891b18a60d5412f85d10bf5c8f3c6642db70abb9aa42732bac5c42c42ee32d587100f53c21b5beb16c