1118924cca9597dfcf35ce2e95cca0cea50bef2cbc4e1990f77695c77cdb13a3

General

Target

6829b1512c93d1c127a895492467a358_JaffaCakes118
Size

31.1MB
Sample

240522-wvnjasbf55
MD5

6829b1512c93d1c127a895492467a358
SHA1

23ef664e6ffcb123420d24a52cca1682d0797979
SHA256

1118924cca9597dfcf35ce2e95cca0cea50bef2cbc4e1990f77695c77cdb13a3
SHA512

9af550a6cf6fe6eecfa59437c2f8fb6cf6d367e518767bf0c49525a1062cf320e735b6dfcba2178b845e1d7a618445f1f84f2e0edf7006154db9fa5dbfdf9b5b
SSDEEP

786432:3TVtmxsdEYU2gJbE+JS+SqwMQFbCtO/1q5Qi3/pdryqPsDy5:RtmIg1E+JhOCg9q5Quxz75

Score

8^/10

Malware Config

Targets

- Target
  
  6829b1512c93d1c127a895492467a358_JaffaCakes118
- Size
  
  31.1MB
- MD5
  
  6829b1512c93d1c127a895492467a358
- SHA1
  
  23ef664e6ffcb123420d24a52cca1682d0797979
- SHA256
  
  1118924cca9597dfcf35ce2e95cca0cea50bef2cbc4e1990f77695c77cdb13a3
- SHA512
  
  9af550a6cf6fe6eecfa59437c2f8fb6cf6d367e518767bf0c49525a1062cf320e735b6dfcba2178b845e1d7a618445f1f84f2e0edf7006154db9fa5dbfdf9b5b
- SSDEEP
  
  786432:3TVtmxsdEYU2gJbE+JS+SqwMQFbCtO/1q5Qi3/pdryqPsDy5:RtmIg1E+JhOCg9q5Quxz75
Score

8^/10

banker discovery evasion impact persistence
- Checks if the Android device is rooted.
  evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Checks Android system properties for emulator presence.
  evasion
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
behavioral1
- Target
  
  plugintest.apk
- Size
  
  2KB
- MD5
  
  4d458aa5c71469d65a5616513a8f16b1
- SHA1
  
  703d03ff0ecd8b04746658013a5608cad6f5584e
- SHA256
  
  c9255ea556426c0b58dce510b5b8ed5a7b341acca0d2aaeed147c406b6b9645a
- SHA512
  
  b833f5c31a533eb194f912c22d10809837d096e61db98b76acce5dfebbc5b2d357fad6d37b6a70ab18382e13d12b222f8c55326792fac6613baca8c6fe6f3d5c
Score

1^/10
behavioral2 behavioral3 behavioral4

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Checks if the Android device is rooted.

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

Checks Android system properties for emulator presence.

Checks CPU information

Checks memory information

Loads dropped Dex/Jar

Queries information about running processes on the device

Queries information about the current Wi-Fi connection

Registers a broadcast receiver at runtime (usually for listening for system events)

Checks if the internet connection is available

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4