Analysis
-
max time kernel
162s -
max time network
151s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
-
submitted
22-05-2024 14:46
General
-
Target
679f92481a5fd52740f69c7639a4311f_JaffaCakes118.apk
-
Size
600KB
-
MD5
679f92481a5fd52740f69c7639a4311f
-
SHA1
5e07cb8a16ea233ee617897ef710f799f3a4fcd5
-
SHA256
9e14bedc5f5a619ffd5ed95eb98312384ac0da2667bacbf3daeea5f359b67212
-
SHA512
8b01161d2761f7a39af2254e72d37a8ac48ae88398dfaec6d9013d556a4fba84968f86170ee9001661b15c220ec9534905f5eff91acf9db703976062f2a3b394
-
SSDEEP
12288:uEQxhv+5dElRinRQomdi3p/QTaRHa0fiadICelXXzua9i:uVRC2inRQfuQTIHa0fiAbelzuaU
Malware Config
Signatures
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
-
Reads the content of SMS inbox messages. 1 TTPs 1 IoCs
-
Reads the content of the SMS messages. 1 TTPs 1 IoCs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes
-
com.tk.tmovie1⤵
- Checks CPU information
- Checks memory information
- Queries the mobile country code (MCC)
- Reads the content of SMS inbox messages.
- Reads the content of the SMS messages.
- Registers a broadcast receiver at runtime (usually for listening for system events)
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/storage/emulated/0/2024-05-22WJLog.txtFilesize
83B
MD5ebaa92488a9b5550cd07b745c00e24d8
SHA1417a47c1adcdf2215d01c90f1fb7c802fda45634
SHA256a5e11734dc179a116dfeb2064553e22509508140856eacb2fd22d62fe375b681
SHA512b8c6c9ac3eb732a8aa877fea59dd4b4450271998984fce47389afbb8dbbc2829d40afaeb9a8eda8bf402703e2f9e71d556f9b25a2918f6de558d05be96cb6340
-
/storage/emulated/0/2024-05-22WJLog.txtFilesize
81B
MD52500add4ce82941ca9e9704c356ac0bc
SHA1b28fb6187c62d1a0f21b3c2c03e1c0907e8db401
SHA2566fa48a0560e639d00a787d99ec1b943cccf91e88adbe0780eab8d2602a9b9e91
SHA5124a100d3008be0776bd97cae5b98f8369a3c921761ed9dee06e40f49c9c5290d38780e6301782663a575095f0d331addc6f8b3c2be31a909f7a935b9578f35a3c
-
/storage/emulated/0/2024-05-22WJLog.txtFilesize
80B
MD5df694ea48826dbd66d2d5e79765bb15e
SHA1a639fbee387df5d8f38afa4db1ac3d592693adc2
SHA2561ebd4127bfb91b85576bdcd02a6eb9c220acd4d4fc0d6632930fe59e56afe8f1
SHA5129dffb0ac40277d5bb24a76e86348471e392e5385011655a9c074b46f1e1a03733241e654ae06d1f95be9b7760ea01de9a382966e8cf75ec36c381f5ac652e0c9
-
/storage/emulated/0/2024-05-22WJLog.txtFilesize
84B
MD55935cfbf1208145bae8a313db3d9231e
SHA11b5fe6c1ccf41cbe2c24c6d5f07815ff2ea830bf
SHA256c6378e8fe085802a3986a015fac2a8e7c8eaa3c77dafee5a03b97601d955f2de
SHA5127e287a832cf6565d481bc401fe3780498fdcd2e6f3c2061b53ff77d7e227321c9bd54b93f34929058eb4ad826ddadcd5b345436537ba41fa3854b7ebe4ff1ff5
-
/storage/emulated/0/2024-05-22WJLog.txtFilesize
79B
MD58932317bb93e4e05e6e55fc94b614f0b
SHA14ad0a6c682869ac3eeefd5fec862cb48ffda596e
SHA25609cf1fd5791d999579bb8e0984e9b8a4ef1f8135c83505ee197fac3c96e090a2
SHA512a9a0a1418a4f3547197707e64da980950b4503767ed2e3a12cf078639d9f3320977bfbf83be390ce7cbcda2eb8db0893610fa4a653367448babf18875f9239d5
-
/storage/emulated/0/2024-05-22WJLog.txtFilesize
307B
MD53987b2e1da5cee637c2776196c29b674
SHA1f560ddb36dcdd5115f3cd59457262c93c4259366
SHA256feaeb32786f314df84e341565b3c4812adc2ecf7558cb7e262cb66b9ae75bc85
SHA5124956212f601686f9dd5a4acb44a88422f82ee11c6aaa3f740821a715bba319175de2ee86853a509b8a8ead49be2ec140cfbe766b9e13bfd12b30a5e07478ef23