38f254aebefd53bd13f520fd509058bd80edfdff557e1717c11aa5d22a04fe4a

Analysis

max time kernel
2s
max time network
132s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 03:32

Target

65dcb4917f171da21e4673a9add0e55b_JaffaCakes118.apk
Size

30.4MB
MD5

65dcb4917f171da21e4673a9add0e55b
SHA1

d22aa0897b8d70522d44dd091505a7c6c45f692e
SHA256

38f254aebefd53bd13f520fd509058bd80edfdff557e1717c11aa5d22a04fe4a
SHA512

d04d86a40cd84ad858800e38736617ac9179e971f399ca582ef30f13f7f18100429c28ab0dd0d50dbfba5d31cce3b72c0f4ddd1d1d906758b522637dbe4f080a
SSDEEP

786432:phJnx5+kyBOt1TWZQowhqklzz1FgZQe5U/KL/O67E:pLx0AFWy6Uzz1Fbe5i6A

Score

7^/10

discovery

Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
discovery

Process Discovery
T1424

Processes:

com.shuqi.controller

description ioc process

Framework service call android.app.IActivityManager.getRunningAppProcesses com.shuqi.controller

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.shuqi.controller

com.shuqi.controller
1⤵
- Queries information about running processes on the device
PID:4343

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact