Analysis
-
max time kernel
63s -
max time network
131s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
-
submitted
22-05-2024 19:11
General
-
Target
6850d89b830c1fea5d1478183760d21b_JaffaCakes118.apk
-
Size
14.5MB
-
MD5
6850d89b830c1fea5d1478183760d21b
-
SHA1
e0a63a268f777e83f678ff9cf38b12e6a0218bf4
-
SHA256
285c7d0e50cbfab488bd4d6b236746eaf2794dce24c8b2f066ffcbf22dbdac03
-
SHA512
7f4bf986096cc01823854dbc2dfc84b423cedfd730d4c76beb299c83220078a8cfa0f6ed6022edfd76dfe5b72a86b03b248b8998f2cbb825f207c1cf1b43af4f
-
SSDEEP
393216:aq61F+rgK+ZPXVKfR7DPtd19zTJqzbVHR8fGbrEHR8fGbR1:at0rb+f6NFJceMrWeMR1
Malware Config
Signatures
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Checks if the internet connection is available 1 TTPs 1 IoCs
Processes
-
com.bbdtek.guanxinbing.patient1⤵
- Checks CPU information
- Queries information about the current Wi-Fi connection
- Checks if the internet connection is available
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.bbdtek.guanxinbing.patient/files/.um/um_cache_1716405153371.envFilesize
617B
MD56237be5e1c8e3b0d02089b0319b798b2
SHA1fe522e4afeffafe04e5e02113f0f94ba4d9d2292
SHA25654f6b8b8f4529308b3b4ee59ffb4d398e4e4760d946b868a2ec052cfc4baed48
SHA5123d1c7e7ed11dd4876b25f995586f4a5b040bf86820c0dc100c74e93e6527ebfd0fd617b0485775572073d0020113296ee4aa39a3bce7785cbfd9c529f5dd4a29
-
/data/data/com.bbdtek.guanxinbing.patient/files/jpush_stat_cache_history.jsonFilesize
158B
MD527eb6a51bc38314461bddeaed28ec038
SHA14b3561b3ea31e3091fdd8b18d4e6f1d1f3ff17a7
SHA25672c49d13969db9ff165509f6ed7d61976154514e9254369f95d8c6de58e31015
SHA512cd13ac44a65dd6d40b4c2043b1600ef014dce7a8c9ac75cb137c81ee00856ffecea2f970ce55f7ca2bd4a073f95be83f6de4156e961267dc12c4bf1037329a4f
-
/data/data/com.bbdtek.guanxinbing.patient/files/umeng_it.cacheFilesize
310B
MD546c3641bf530febd00187b524277e645
SHA1684c5200ec6e46fa6fd38b7cdfadfa0e738f0aed
SHA25643194ed8ae2fbe8f81bfcfc309156c722a0f8d1510f0ed4de19624c58f7d6647
SHA512cd9da403ad3a48b0e3cf347f6cf27acaf1dbcf18597799238aa247fa38ab78681511705cb16c53657f58b673010f108c0fc354c929de744fc5e2a3e3c4f21811
-
/storage/emulated/0/Android/data/com.bbdtek.guanxinbing.patient/cache/bsCache/firstStart.0.tmpFilesize
205B
MD5ebd0a8eb67558615753539aeb3d65b8e
SHA18f0412e9c02b550e32277b4156148bce7d76b558
SHA2568502516fe3736502849dfbfe1b7ffacee408b4f12c16faef354c6d08abdb0790
SHA5122984c3bda0bcba4b6303319790462ed33ce3727c4a0deaac559478ca335416cb8f07e04f81556c9f5a52d27bce9c6e17336321ad615c54ac3b29313b7cf7be15
-
/storage/emulated/0/Android/data/com.bbdtek.guanxinbing.patient/cache/bsCache/journalFilesize
69B
MD51a3b0e64d7c68c81e493bbcceebe46e6
SHA113a0e21c14986136493183ef92051b21db6e4ec2
SHA2562c9ad8f4db099d483d239881681c72f49aa18fc3c275d88efb13d48c816572f4
SHA512ff1d27bd67bd076228bb565cbfabe518f27e1eb57abd40067c3c9e064888a1ad9efe4004e784a67ef9c32ea63bf7774c662b5e0fcff9c5abe33e75b33a8b900a
-
/storage/emulated/0/Android/data/com.bbdtek.guanxinbing.patient/cache/bsCache/journal.tmpFilesize
31B
MD58c92de9ce46d41a22f3b20f77404cc1d
SHA18671a6dca00edb72be47363a7071be65cf270373
SHA25668bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274
SHA51230f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56
-
/storage/emulated/0/data/.push_deviceidFilesize
32B
MD5a31ce93322f197b280d619a01e289f1a
SHA13e56ac88b78f9f749547f3d7d9e9c7ffb90a9836
SHA256a4b625cc106b555d630c86859a9682143916a4588fcde1a0f413c0f5a9ba8d32
SHA51234d3f0f15d8418e25098bdf985ef807c2f45031a2772a686035aa4186da6042d7a2d1fc69115b7ea7de2fd4e7014a8c0e81c239d76026670d4fdcb6a8c41bc03