133a588b93ab1d6f267443097d750a96017257cde6e0609ec30e3405eef68927

Analysis

max time kernel
10s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240514-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240514-enlocale:en-usos:android-13-x64system
submitted
22-05-2024 10:50

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6701a6808dfdf07b14605994c487b285_JaffaCakes118.apk
Size

16.0MB
MD5

6701a6808dfdf07b14605994c487b285
SHA1

b6341847488bfe4c4632ed6011d8d3e291dfdfaf
SHA256

133a588b93ab1d6f267443097d750a96017257cde6e0609ec30e3405eef68927
SHA512

52f7495ed4fc0a7273511e31b40dfebc9ca6f15ca393018a923744ca483ab21f9d6ae98008503f4b7eac03a4863f16a0c7b739e4bb6cec1238f195275f8d2797
SSDEEP

393216:a5MFAtDQNsPtVHEx0ld3QVQIe8wKoYCl5X:LOQ+VH3QKIetKo5l1

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.junzhao.shanfen

description ioc process

File opened for read /proc/meminfo com.junzhao.shanfen

description	ioc	process
File opened for read	/proc/meminfo	com.junzhao.shanfen

com.junzhao.shanfen
1⤵
- Checks memory information
PID:4290

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.junzhao.shanfen/databases/bugly_db_legu
Filesize
60KB

MD5
bfe7938d38f24cb9ea2ed4c517e53f31

SHA1
5f05430bde73e3cf197b0c026b8f51030f0a0ac9

SHA256
5663da57a21a0aa1eb0d9c361d82da35bbbc3d928061ff5c430f4e0f974d8c4d

SHA512
da24e5fd9118ae02ad9f60bd18537eb2a52901d91e07abdc1f49327c97144674d661d660390510057ef4b16efe830ba30b878858fbb3778a393061a6e6539be8

Download Submit
/data/user/0/com.junzhao.shanfen/databases/bugly_db_legu-journal
Filesize
512B

MD5
111fb2d91b5c72c9e048240b93a70acf

SHA1
87caf3606a46484f6d0d535c0d9b1b7eb51eef9e

SHA256
e43900f0ba3457501e5dab61b5735e2fc8bbaa33ae329fa66b9348353faf3dba

SHA512
17467a5d04b3f70a4499d44f7a787182b2a349fca8512cf9a4961f70320b33190b2f2033d50624c025a1c330b38d2973c0a378c479327935711b320d4e8693bb

Download Submit
/data/user/0/com.junzhao.shanfen/databases/bugly_db_legu-journal
Filesize
8KB

MD5
419af81fba3d8fd2513b3fa1269b7207

SHA1
4da5c890c89234d7a0efd05642d90fe68c6d7ae5

SHA256
91d0dd761617127c81af3cae4a198a25f01dca5f4913ffb2dfb4b744d9e4ac9d

SHA512
32dd137f63309ffc17f790208e39a3d37a6ad9493cd531436909c6f7e48dfa3576e9dc4e0636b2312b5474c055c28fc7d4b58f725476f5169868fc262a0de157

Download Submit
/data/user/0/com.junzhao.shanfen/databases/bugly_db_legu-journal
Filesize
8KB

MD5
5204435a352d00fe47f09b04caf0031d

SHA1
2e7607436243076ad8a90139c7aab6c835f3811a

SHA256
36267b0416b9f656b0eb2b44c28e2c23fc610f0dfbe0271afca7422c3e6d918a

SHA512
cb930e0cc81b2720363fe097ac320b0d12b7e39ac9839983e1998af0498080d79315a231ffe8e7c76a13b40ef75c8d2d2f6bcc41b5156fc3e26802ccc875e412

Download Submit
/data/user/0/com.junzhao.shanfen/databases/bugly_db_legu-journal
Filesize
8KB

MD5
cb42baf053516940fb572e3db3eec675

SHA1
67e6febad4cab3c361b9084b9a63bc912d00ea9c

SHA256
041783e4e86150418df06e48c0469af7988084372dfe6d7b7fcca6d2e0fb84f4

SHA512
f4955d3a5740d2a4d9cae190d1bcafa8866d547748f6bc73f1c0910805930acc0a168c19d0fc13ab80926653bf5533f17fe01400399f462c354297f0d1918c11

Download Submit
/data/user/0/com.junzhao.shanfen/databases/bugly_db_legu-journal
Filesize
12KB

MD5
fa9e8879f46a0fc8caebac18a48da477

SHA1
208887092ecd688b679139aecdd4e7e00aeb0a31

SHA256
d8002e97a9f056a69ed3b45a2606b06cfd3c72f1a3f848fbe92efe90902b3a16

SHA512
cab583729b4e2bd8a600ed560f4a4f43390db9d157af3ad252c59f059e9c216525fec599243822e4b0ded1b7325d999192fbd61ae54546fb9fcaf26544ab4e83

Download Submit
/data/user/0/com.junzhao.shanfen/databases/bugly_db_legu-journal
Filesize
12KB

MD5
c08af0ea9c28594c05d6de8c4609fb59

SHA1
9f0dc22c7ebaa581548b5305ed5602f54222fa49

SHA256
cee4a3fad4f4a339a3313b81cc379a964bfcb655d6efdbf47124a5a9669d2215

SHA512
f98a944839903e9fee12723bd8e11372ef97415b39aad15c2360933714de17ef0e93e87d2a2d8958fc55bc1f4179189af4389458a2df96f6472c7cb027b7eaff

Download Submit