General
-
Target
68856ee5eb02c752d72331083217d265_JaffaCakes118
-
Size
30.6MB
-
Sample
240522-y9gqeafd5w
-
MD5
68856ee5eb02c752d72331083217d265
-
SHA1
fafbd93e049f1136787aeb4f3b4ca25e4b2347f9
-
SHA256
e773b7f5a8fddb33bfa01fab77790e877873ba349a1afdc530b3bf403cc76397
-
SHA512
bc2b0ab293ab8d241192e988aea341534d6974b340063cbcfa41f46056b91755372e6ec86a55928f70424056294bff8909200317764c28b3ace34b4f3504006e
-
SSDEEP
786432:deal5Z/sIVf4Xsz9r3RnfEYypD0h+t1grd:dT/Z/sb0r3lEJpIwru
Malware Config
Targets
-
-
Target
68856ee5eb02c752d72331083217d265_JaffaCakes118
-
Size
30.6MB
-
MD5
68856ee5eb02c752d72331083217d265
-
SHA1
fafbd93e049f1136787aeb4f3b4ca25e4b2347f9
-
SHA256
e773b7f5a8fddb33bfa01fab77790e877873ba349a1afdc530b3bf403cc76397
-
SHA512
bc2b0ab293ab8d241192e988aea341534d6974b340063cbcfa41f46056b91755372e6ec86a55928f70424056294bff8909200317764c28b3ace34b4f3504006e
-
SSDEEP
786432:deal5Z/sIVf4Xsz9r3RnfEYypD0h+t1grd:dT/Z/sb0r3lEJpIwru
Score8/10-
Checks if the Android device is rooted.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Acquires the wake lock
-
Checks if the internet connection is available
-
Schedules tasks to execute at a specified time
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
-