202a42605ef3e633864fd20f97fe6dd27a4ebc32f78c7a53f6c958ec02c110ed | Triage

Sharing

General

Target

6860bc167892794058d17585cdab0ab5_JaffaCakes118
Size

2.8MB
Sample

240522-ya42nadh2x
MD5

6860bc167892794058d17585cdab0ab5
SHA1

927a785d3d507f95e8e5ca798e29e9413884b62f
SHA256

202a42605ef3e633864fd20f97fe6dd27a4ebc32f78c7a53f6c958ec02c110ed
SHA512

c7d5dbc9a79268534b5e08e23497a0601f78d1438a45d19e8693ee2cc3805c2ab5b17ea9710604334ed2637701cd5af519dde8c485930bd568fa23df100040aa
SSDEEP

49152:Rzltp+02VwUp0ED5vsg/X6P/cAIO/TJ10r50daBLz/NduEVPZK6xrfHrH4ftnHnK:Rhtp+02VBiENvsgayO/4r5lpz7mqrbEq

Score

7^/10

android discovery evasion

Malware Config

Targets

- Target
  
  6860bc167892794058d17585cdab0ab5_JaffaCakes118
- Size
  
  2.8MB
- MD5
  
  6860bc167892794058d17585cdab0ab5
- SHA1
  
  927a785d3d507f95e8e5ca798e29e9413884b62f
- SHA256
  
  202a42605ef3e633864fd20f97fe6dd27a4ebc32f78c7a53f6c958ec02c110ed
- SHA512
  
  c7d5dbc9a79268534b5e08e23497a0601f78d1438a45d19e8693ee2cc3805c2ab5b17ea9710604334ed2637701cd5af519dde8c485930bd568fa23df100040aa
- SSDEEP
  
  49152:Rzltp+02VwUp0ED5vsg/X6P/cAIO/TJ10r50daBLz/NduEVPZK6xrfHrH4ftnHnK:Rhtp+02VBiENvsgayO/4r5lpz7mqrbEq
Score

7^/10

discovery evasion
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Checks if the internet connection is available
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2 behavioral3
- Target
  
  gdtad.jar
- Size
  
  69KB
- MD5
  
  11f5dbbb3878a12129159e95befab508
- SHA1
  
  b2ab0b31241daa951bf2078b2ef68f1c9f3ed9c9
- SHA256
  
  745bb36869db21946930e482e9293c0122fffb56c5c979355cda3633979af1d5
- SHA512
  
  9f8a66e4e67355655ba96afa8a665b2887e694c7eedb55b51a95ffdb4979e2e3dc52c34f2782ee318b93bf3b03c08d379b0f59a5261dad563dba939fb5786327
- SSDEEP
  
  1536:emvauBJ4efD71+LigF4TGx4K8Pl5CCz9JLxzKrPZE:xvD71+egF4TGmK8Pl5Fznk9E
Score

1^/10
behavioral4 behavioral5 behavioral6

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

behavioral3

discoveryevasion

behavioral4

behavioral5

behavioral6