0a5e9af7c0176025227f0322994c584d9d6ea8ce860652bc0d3fafbcf6da169e

Analysis

max time kernel
127s
max time network
148s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
22-05-2024 15:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

67d0ac9f6ffbdee556d50c0994bbec8b_JaffaCakes118.apk
Size

2.8MB
MD5

67d0ac9f6ffbdee556d50c0994bbec8b
SHA1

0aeedf3dbd1d3b9bbf0227a784542387d831fcdb
SHA256

0a5e9af7c0176025227f0322994c584d9d6ea8ce860652bc0d3fafbcf6da169e
SHA512

e4abb1989864f6028620987632efb6675230407eb3121acb628be83fc933b76c5665f19681560f3fe3130245c95a10531bc406b4f81b25d5b7795723ecfedb41
SSDEEP

49152:soiJYkYiv0YtEtcMwqvFb/R27Nkc6R7Rau6hbLzt8Q8Lo9azQEnvLnBFVwfFcCSE:s3TYi8oJybJeNoau6d2Q8oGvrBFVwf6o

Score

8^/10

banker discovery evasion impact

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

T1418.001
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.mopote.app.market

description ioc process

File opened for read /proc/cpuinfo com.mopote.app.market
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.mopote.app.market

description ioc process

File opened for read /proc/meminfo com.mopote.app.market
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
discovery

T1424

Processes:

com.mopote.app.market

description ioc process

Framework service call android.app.IActivityManager.getRunningAppProcesses com.mopote.app.market
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.mopote.app.market

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.mopote.app.market
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.mopote.app.market

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.mopote.app.market
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

T1471

Processes:

com.mopote.app.market

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.mopote.app.market

description	ioc	process
File opened for read	/proc/cpuinfo	com.mopote.app.market

description	ioc	process
File opened for read	/proc/meminfo	com.mopote.app.market

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.mopote.app.market

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.mopote.app.market

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.mopote.app.market

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.mopote.app.market

com.mopote.app.market
1⤵
- Checks CPU information
- Checks memory information
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4504

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mopote.app.market/databases/.ua/ua.db
Filesize
32KB

MD5
97a4fda1e24669c7c08c7a0f024b4ee3

SHA1
a922c0666ad6c2ce7f3e255ba6013a2200438a8b

SHA256
712030eff3ed2b9bbfa38cb62b6e468cc414bd020815f50df682ccd01cf68f6a

SHA512
149a01cacb639c9e9fa6de581ec36aa008632f96cfe739d01039a92f7355ec2202f35aa54404b9cb7e380e85810bee19bc275c15a369ea8ea62c145000a76a32

Download Submit
/data/data/com.mopote.app.market/databases/.ua/ua.db
Filesize
32KB

MD5
4cac7d31fb94d5c9581893537f64c5ed

SHA1
96bef3288546196ac3058b5eeddbe9da1d999fe5

SHA256
d1b111041f8aab3269f3da846b2ea199498d99f6905174a9d641f0faedca41c5

SHA512
0ab95e51a640148ac007d47afd5b9fd03ae5a3b9053e5e19a4f0b8089e17e41e311790ee9fe486b6752926799577bee041ed67b64d8772794e9d2329a96ce747

Download Submit
/data/data/com.mopote.app.market/databases/.ua/ua.db-journal
Filesize
512B

MD5
fc08d2f2689698e5529d418d16c20c54

SHA1
bb0cc3ea5634553e1f736a4a9362719604a73295

SHA256
cda6ebf7255fd2a0a0c0938eaccc183894c1ede5f6427cc115c7ded0c155c007

SHA512
33da0df833af6e55d5405d21fe366d15687a29ebbc75745b85b29b74671ae7f0d57a22d587a9512078ba949a6415dffe3566eee6f2120660b82154de719d888c

Download Submit
/data/data/com.mopote.app.market/databases/.ua/ua.db-journal
Filesize
8KB

MD5
83cb0554b04e6e56f780049161803625

SHA1
93e0288008b774fd862665024ff04de0aed7dc71

SHA256
de76b317631c2a9dcf8d73c706673c0b44857efc36ee7c11050ecd76cc17e040

SHA512
3e17118e248605c00098d89cdc67204a932b78ec59acce73429ed843779dbfa3c1679732bb7a0a55bb301305f9f20e1b4de06d555f7798b58d3dac1c3a793bf7

Download Submit
/data/data/com.mopote.app.market/databases/.ua/ua.db-journal
Filesize
8KB

MD5
50c396e0a38554d41a6f62849889b0e5

SHA1
32ad51fe601e36b9d27fd46b545817a38a5d5dc6

SHA256
66df40c7e9b25e231e2075430a061bcd418ce2b875f59b04b48b1a63ebbef605

SHA512
7e3ca9dce4e61a6b3fd2e750ab9136f320c43072daedfdcd349a65800a75f6cb7b40a640d7b6ec40dad11e3952bf46feacd727c2af86c0e351f9dbbac5f67608

Download Submit
/data/data/com.mopote.app.market/databases/.ua/ua.db-journal
Filesize
16KB

MD5
4908efe952f3f85f216ae537731a3b4f

SHA1
221b46ac3e9ce446695a614c6b56de6881830252

SHA256
922e3c6a913e082bb653e59053fce626d3c0ad1aab9ab3a57993ecf810051e4b

SHA512
638deb7a871c065620659448d74e027810ecccfeca71154a03b3e7b60e4f47d1a22cb6b30021790d66739b56d02b3a639579153848acf26e0707c70ee9ec0eab

Download Submit
/data/data/com.mopote.app.market/databases/.ua/ua.db-journal
Filesize
12KB

MD5
f6aa52683651b54daa97fdc8c6829f94

SHA1
d3909d0af4f67f46d0e00f0086384b5c47ddaaa7

SHA256
dabe9fa8a38f1e27ee80383224bbd4f9467c0f10c7350835d9b96552fdc30355

SHA512
ec331a6a7214283addbb3ea1bcc38fffaa865e1db1d236152d52b3fde58aa98628de497d46a59aeeb00fea3c40e21161ac9e2f3a83c89d09360ec7392386bae3

Download Submit
/data/data/com.mopote.app.market/databases/cc/cc.db
Filesize
36KB

MD5
86752a4be6564d8370f2f0e403995003

SHA1
29f7d50675f6e59f3b808eb6dcc8619384412115

SHA256
50484dcdc6b9c2801773018386a8143a52a5153eb2eeeaf5be8bbe46a49ca90c

SHA512
79c9435c1e0d41a3f97784be3e5a3cd8c0bd2d32ecdf326808bacb00c76d876d0447617d6e72ef04cd4b996c92eda4eb7bb200987ae7928ce2e0e7c8e807a5ec

Download Submit
/data/data/com.mopote.app.market/databases/cc/cc.db
Filesize
36KB

MD5
4cfe777c9f6e7859f5efe2197401d8e5

SHA1
bb3774e8879ad5f6db0c37f151c3d6bc7b4b207a

SHA256
c422190539b6414072fc3950da19a17985c0c4c2172740b2f74682b520af5231

SHA512
6be469864edaf8eaa110f618f8abd27962da92e20945dcd38073ade2b60b10f00552d54d5db9d9f75ca133213031030e71e2e30113ff033e5ef507a28fe0b1de

Download Submit
/data/data/com.mopote.app.market/databases/cc/cc.db-journal
Filesize
512B

MD5
fa12237bf4d9ec5d9a270796637648b5

SHA1
c613d20fc80885254c3851b42219c1124dba7620

SHA256
2f6e5554b0a094fe647c697a16bbdcc89be864afd2520ad9809adf91e0f4b81f

SHA512
6ba9fefb5bb6db586e78d8518183108ab92a6b349246a8223453abcb8c37862c3f110d245ab3a51bf7b9ae34eeb982300f64a14dacf7efeeb66f252146d4d478

Download Submit
/data/data/com.mopote.app.market/databases/cc/cc.db-journal
Filesize
8KB

MD5
e63f7e01d368ede4e85f9da21953eec4

SHA1
bc41da6549276b4094ac2f9b196fe1fffc7426ff

SHA256
5f8da7732b4f5574da289e04af01a43edcdb8198be8a452860886ac06f58c576

SHA512
610b1c1db09361c6c4175626e2d0e01ef6e31260ca22893367148cc982a127d1d3b27047b4de1b54e0cc7a9071fa161299615e09f95feb101848f7a80ffd22e0

Download Submit
/data/data/com.mopote.app.market/databases/cc/cc.db-journal
Filesize
8KB

MD5
05d0db6454b0b7b030d65a8bcd09119b

SHA1
0e2e9bfbf39c25c022080fe3e9550f6e2f189871

SHA256
873cbbac98a1faae64250c6d16276d13845d44ba940e67a9ce16a19f2f091ad2

SHA512
9e5f2db10795827fdb1e74886f027da3be3f5e1770388fe8778de17c7e0983d83dbe35ee2f12857ca5810efdce22b6b95ba881a5d957f5305aafeb8676315044

Download Submit
/data/data/com.mopote.app.market/databases/cc/cc.db-journal
Filesize
8KB

MD5
c4eb2113099e8c6f0b9e33557be338ad

SHA1
54da2c39e7bc279eefd33d5203a9163af4cb2d2b

SHA256
a3d09cfad2ad5da891a2237b8b9faefe92adf07ecdac4fe5d4d60d9915306960

SHA512
820c5c1b554a27a7c24ff7e62059c98cd421969d4306eef8a063eabe904c28cf695ed15748062dac44f39dae53a0163f5fd9122c82ca3dd83fd266e7c97433ea

Download Submit
/data/data/com.mopote.app.market/databases/cc/cc.db-journal
Filesize
8KB

MD5
a3122dd0f6a622bf894335d019ec3063

SHA1
5224f9219290b154c50828f5a167204d877c1de9

SHA256
b1df45781171cdb96aa59111049c91cb318795400b55d7f9a01381e7c6ceac55

SHA512
35a86f9671f7f6468ac7c7b6021ee82b70227e0fecdfe09c5b818afb273a5b87e348d0ea53a3c13827c2c2feffca26d903613a3336c0338387efe60da1a89465

Download Submit
/data/data/com.mopote.app.market/databases/cc/cc.db-journal
Filesize
12KB

MD5
b2d231cca3d67315bd6374c6c77b7d8a

SHA1
11ba9cba191c55e7e814642224a129cf58ba7723

SHA256
d2dae08279a53b03633df5a5f24a2017205544cb247d1ba114282e3ac13ceff9

SHA512
c53ebb5a8f78ef0f66836675bbd317eb4f92a2fd7765138c0845eebde34570182c2546789a66910876ffa03f6a61d533643fcb433f2bf4e32d7d288eea575bf0

Download Submit
/data/user/0/com.mopote.app.market/databases/appstore.db
Filesize
20KB

MD5
45ab7722b215d7b48f307d988d1ca404

SHA1
6529287605053bdd36d39ab8cc04bebcd938c87e

SHA256
c019f83264171c258937c1a99e092de96285a9eaf4544a7cfe0825ce277b1fed

SHA512
43d085fbe7c111aa931d4328e317026e1bd99b870863bfa00c17a0e2154dc832a7ed2f515a746cf12282dc677828afcbda18bbacbbbb48d1bdac7f8ff9383648

Download Submit
/data/user/0/com.mopote.app.market/databases/appstore.db-journal
Filesize
512B

MD5
01a29cf943fe213708fc5febc62b523a

SHA1
9436db33b3f9595cdf4aeb7f7fd1b67c8c81c8b8

SHA256
a0e4623532ecbae1782446cfc2b6a9deb1ac077d83fda97cbe3ea7c75b7e70c0

SHA512
9f038d03b23d2aca6ac8a11b3515af0a8b06a84d06aa7943b83e26707c50bbbcd2275f377cafb32afd0086d7fd5111d446cf598c008fa497e5c909458f63d5be

Download Submit
/data/user/0/com.mopote.app.market/databases/appstore.db-journal
Filesize
8KB

MD5
2123228b8749f5a0fb85922c1dc4e191

SHA1
00bca875bf08308a09debc0cc54dd36d36384c30

SHA256
d6dfd95884046c730a4d51d003dbe8e755eaffd9906d3208e828809ae4546c36

SHA512
6a9e617538aca10eb8959742738f6c83fa6f4c902f9e2ff4652b8652ff9977df1cb0ed50645dcc6c087031f014ca5f204c89917a66ea62c9a199e0f64e16f151

Download Submit
/data/user/0/com.mopote.app.market/databases/appstore.db-journal
Filesize
8KB

MD5
2524beb79925693b0f62ae18c032aff5

SHA1
2854fc97221e7b1bb0153e7162f6127cfeaf1e80

SHA256
bacc2e6bf356a0b5fb0acfc4dc35eb0be55bc23a67e907833828f02048da2bf0

SHA512
116ad9cd50724b63db1c02df40e5416dcfe60f1a2d34ee218f0eac0ace40a75ef29d991abbce85e079be441fed6dca44f648b0c3c2b8d4963c052e7f3545bb2d

Download Submit
/data/user/0/com.mopote.app.market/databases/com.mopote.app.market.db
Filesize
24KB

MD5
665000c7a9fb1b44c09b4cdf49597d98

SHA1
f46197365eff39ecfa6a995f961786dd7c4a86f6

SHA256
d46a906650e85f6618d8d29cbea2d0cf745da42c9dd347ce52b91e85668faabb

SHA512
7077190ba4bb4fd0472141bcb540442f96649d63c05ef74b596e1dd4396d734e39ddc380f590c7880874c46a7105662ef0a6f5463b8b50a72b0e601193a3bd75

Download Submit
/data/user/0/com.mopote.app.market/databases/com.mopote.app.market.db-journal
Filesize
512B

MD5
e6a3d79840b9ed38271311a6835e3c20

SHA1
88a64e5662c0a1b639ab44009e98a671b7e42f9e

SHA256
3cf34375183d927cf0762e0d767a29dac05a167a7615812dcae18ed7aa2384da

SHA512
a78d3891620624300ee16e4e352626da35e7347e5bb662c71ed274e4a5bf96ebc6e08b051149696492304de367ea9e2153cccee313ae0cd2ed58e0a3c0558b76

Download Submit
/data/user/0/com.mopote.app.market/databases/com.mopote.app.market.db-journal
Filesize
8KB

MD5
f251df37cd137c38089e4558147cf06b

SHA1
a54267a12b18243e2ace39a0d0cdb0854b8377f5

SHA256
2260001af1e8f5675ce18ab953e2c3f69092a43e0f2f7d3da3ebe324e55af840

SHA512
730c66a6a75601eac54f00251479948dbb2164bda24a516a67a67b7347f784cf5b0483a8172160c1c5c3d5b72067617e28fd074da6f21fe82de6071160a28abd

Download Submit
/data/user/0/com.mopote.app.market/databases/com.mopote.app.market.db-journal
Filesize
8KB

MD5
1068dbfa19b29165fb0bd58cac2dc5af

SHA1
0f371504553fccbaa80bf2bf4899ea3e3bc04a7f

SHA256
13e2605cdeeac127576c3ebd69156f5d9fc9a1b86cfd89811809765823132727

SHA512
ce9fe1edf8408a398ff91553688f3e8be145e67a2b49b16b21eb0cb9a15f5beec4ca8b4c31fbcd0939bcedf1a357b52b9f599b7d0bc9b34823b5ea888f45a825

Download Submit
/data/user/0/com.mopote.app.market/files/.um/um_cache_1716393664109.env
Filesize
1KB

MD5
6ddc4158f611cc33077768a7d9d4a782

SHA1
ef38ddb786b61c549d612e0554d18ad6db330ea9

SHA256
a3b8b7cf7082df252ef31a81ed24c4412bf4db8b7d4791154bfd14ff9bd6b142

SHA512
1f2469451b1dffef6e5a3ba3559ec069eb537a82943e61863aef45b8e90e9bdcce5406c0c8f10724210ba0217c37e57702d530627f52f267b254653de305f173

Download Submit
/data/user/0/com.mopote.app.market/files/.umeng/exchangeIdentity.json
Filesize
162B

MD5
d202b7f1e40be4984da7744cc62dc8d4

SHA1
c6dff3830a335a272c78b14b815a5627b13de1b8

SHA256
b48af80c566a9b2c5def6e6ad3a8d882a5c7a6973792404b1e517fcef8fbab43

SHA512
7823af78d834f0678876c37d2c9065cf9ae62fff29afa64d7909697fc0f875859ba6a12306a36855af4b10d3d1adca6544a29f4a550839083af542f1fc61ea2f

Download Submit
/data/user/0/com.mopote.app.market/files/exid.dat
Filesize
62B

MD5
8c04cee02ecb204fc8de0f2936fe314c

SHA1
0fd52514dda24b717ee5fbb9852073766a3ef445

SHA256
4fa8ff07fc4d4a21297965d472281a0a7ead24e4e5914a9904350a05aac2d13e

SHA512
a661e1ed32838fe5405d0d4c6a7a644dbe0c6347e10d5e5d2790e5fff240c5cccad6253bfcf9c94f124b640276ec95ca5084d09e4cba0e4a230b889960e7737b

Download Submit
/data/user/0/com.mopote.app.market/files/umeng_it.cache
Filesize
350B

MD5
8b3524710a304f59af0a72b3fc7092bb

SHA1
7a7bad0e809988e1798fbc6b3bfe6e6b06eee065

SHA256
3fc59ed06f66d700f0797a97aa2e22f7d5c566f28fd7b47f5c2a16880e940ac5

SHA512
301b6e37bc9dfc5a1aee7405a24d400c918a2c27ae0d0bbe4e954651aa135807c69d1d7276ad575a1295b1c46865f06dc6166258032a70b1284d307bd289dd30

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads