226cbcbf28bb47cbf0f1d7e3e0ea053ced9f2cc9abc79e497d742051377b7125 | Triage

Sharing

General

Target

661fc4d9835c647d05b2e5fe09d0fcb4_JaffaCakes118
Size

29.4MB
Sample

240522-fydkhadc5t
MD5

661fc4d9835c647d05b2e5fe09d0fcb4
SHA1

a34d9bade370e59351b9de495764e5fe9cee85c6
SHA256

226cbcbf28bb47cbf0f1d7e3e0ea053ced9f2cc9abc79e497d742051377b7125
SHA512

12085dcf636fb4e6cb5a13e41874d61a103136caeda971d7292620e45f29f308a1b339f029e84fe176e7c23a8cd3daaf421271b73a9256072aa1f256fbaf8d7a
SSDEEP

786432:1CtAtynGuIMdFPuDgmd1eMUn02xTCxJxFqe:5tyGfMdFWDVzUnxe

Score

7^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  661fc4d9835c647d05b2e5fe09d0fcb4_JaffaCakes118
- Size
  
  29.4MB
- MD5
  
  661fc4d9835c647d05b2e5fe09d0fcb4
- SHA1
  
  a34d9bade370e59351b9de495764e5fe9cee85c6
- SHA256
  
  226cbcbf28bb47cbf0f1d7e3e0ea053ced9f2cc9abc79e497d742051377b7125
- SHA512
  
  12085dcf636fb4e6cb5a13e41874d61a103136caeda971d7292620e45f29f308a1b339f029e84fe176e7c23a8cd3daaf421271b73a9256072aa1f256fbaf8d7a
- SSDEEP
  
  786432:1CtAtynGuIMdFPuDgmd1eMUn02xTCxJxFqe:5tyGfMdFWDVzUnxe
Score

7^/10

discovery evasion persistence
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence