General
-
Target
6792f5413c7f5be270f6d9e1c1a06d9c_JaffaCakes118
-
Size
12.1MB
-
Sample
240522-rsh4ksed31
-
MD5
6792f5413c7f5be270f6d9e1c1a06d9c
-
SHA1
15dc21506ab8df5ca4936473d915d8e387e2b241
-
SHA256
07ad7c183edb9938d9befc5c7065775e96ff387ceefd5de0d7e293557e7c4e5e
-
SHA512
80e8067e1205973c73eb172118946ae72c1068983a7de72cdbef5f4d6207751e483c568d79d83988b8885a27959fcbf9f29d61f58668ece14785cb3cb42f0f64
-
SSDEEP
196608:J3M12CxWlT8gUUTBgYmLS3iV8bpe/0/UCllVjcbPUOaZ4nYav3XA/HtF4:J3MkWcIgxe5Vb/0sU3OrYavAlF4
Malware Config
Targets
-
-
Target
6792f5413c7f5be270f6d9e1c1a06d9c_JaffaCakes118
-
Size
12.1MB
-
MD5
6792f5413c7f5be270f6d9e1c1a06d9c
-
SHA1
15dc21506ab8df5ca4936473d915d8e387e2b241
-
SHA256
07ad7c183edb9938d9befc5c7065775e96ff387ceefd5de0d7e293557e7c4e5e
-
SHA512
80e8067e1205973c73eb172118946ae72c1068983a7de72cdbef5f4d6207751e483c568d79d83988b8885a27959fcbf9f29d61f58668ece14785cb3cb42f0f64
-
SSDEEP
196608:J3M12CxWlT8gUUTBgYmLS3iV8bpe/0/UCllVjcbPUOaZ4nYav3XA/HtF4:J3MkWcIgxe5Vb/0sU3OrYavAlF4
Score8/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Checks Android system properties for emulator presence.
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the mobile country code (MCC)
-
Queries the phone number (MSISDN for GSM devices)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-
Requests dangerous framework permissions
-
-
-
Target
alipay_msp.apk
-
Size
748KB
-
MD5
d06ea38e4210a87d6b96f8b0491df677
-
SHA1
3ba573396398757088e559a9d372049a377eb05a
-
SHA256
76a24f83ad15586ff9a2081e420a707be9ddb0b5047e5b6de5974c41624ff2c1
-
SHA512
3d43e5bfad2b703a804a53048b6a88228a11fb80ac641d6594f774cc07f6c7367e0ee80b29966d02c9206542f467f55b0f1ddbbfef0ec372256314a7d1071f30
-
SSDEEP
12288:IjRAsoln+WMB1EgrGERh4xWgtSM7vXrRCn4I5p2Cnfv:IjRApZ+WM7yER61P7jw4IGSfv
Score1/10 -
-
-
Target
epayx.jar
-
Size
175KB
-
MD5
e70d3c3ff87401690af6a24542304a6c
-
SHA1
4ed2a412969626fb6f7cba98338c29160f9b99c2
-
SHA256
6a752a41d365e98a27cdad043a69d688b320df708227deb182b276ef14e87351
-
SHA512
15b102a0397becccaf1780df053290e4569b4fe3c28cf722922df7dca3cb72b8ebf89ab33cea62354038eaf3d1dbad39f3696ced47ceeb0365b84a5716b57548
-
SSDEEP
3072:Zaau3uCBHk77yuepqPs7R35NON2UUuE2oFFN9aDDMVEnYdY+HUbfGer:Za7dHl0MR35NOUUqRFFN0v8EnYdYmU7B
Score1/10 -