0e02e3fbd00614f98d92601fac17cc1943696c820cf9cac07a82d5103acf20d2

Analysis

max time kernel
179s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240514-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240514-enlocale:en-usos:android-13-x64system
submitted
22-05-2024 21:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

68b09dac25e455bf9cdd11fc7454a17a_JaffaCakes118.apk
Size

11.0MB
MD5

68b09dac25e455bf9cdd11fc7454a17a
SHA1

a38c25612288702a4b54dc26ed1a12cf1fd9dd85
SHA256

0e02e3fbd00614f98d92601fac17cc1943696c820cf9cac07a82d5103acf20d2
SHA512

794e5c3b29e4a9c39bdb8bd4297f2b8580e6d612e2bb58366bbaf2316ed09fa6b283ef56b43346515a940aec5f7de528dcd5ed1885dabd8d9cea599aca618d14
SSDEEP

196608:RnZub7BUDndPMAkZeRIS0tcxUgiBJdwJSRHJiwbVu/aAuHEy+55AwpuYVooUTzDL:RnA7CDndPMAHRI4UgiBJd22FwFy65Awm

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.ccenrun.mtpatent

description ioc process

File opened for read /proc/meminfo com.ccenrun.mtpatent

description	ioc	process
File opened for read	/proc/meminfo	com.ccenrun.mtpatent

com.ccenrun.mtpatent
1⤵
- Checks memory information
PID:4312

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ccenrun.mtpatent/app_bugly/rqd_record.eup

Filesize
346B

MD5
c37f4ec5d0801dffdb7a69a8797c7cdc

SHA1
56862aa3b9c0d139ab159c24015a198b5bd7b8e2

SHA256
e776851391d5460c4188fb2f510af726a6cae36ecca950237eb639ab30838a31

SHA512
9d0d24431de0a3fbd66ef67ac0e4f9506792a503a6034acf8139252b680602b5160582dbad9717c966997bd576a7fb7d9202e46edfcf77bc99b15681c3dfe4ce

Download Submit
/data/user/0/com.ccenrun.mtpatent/app_bugly/rqd_record.eup

Filesize
1KB

MD5
5179bb0e37b515bec74815d4df9e5325

SHA1
7eeb229d981223bcf6c5003471296038c2a70b64

SHA256
37cf01c5ae0bddc152f91990bd67ef8d2777eb032193a5f111ed6b15803a5ac1

SHA512
b975077e1b8d0d9b9ec20ee4168da477124ddeecf0597a8d772838c12b58c388a9ae570c71af114011f3f12b2959e2b457c9e93c9c25f371daf99308ccd1f3e8

Download Submit
/data/user/0/com.ccenrun.mtpatent/app_bugly/tomb_1716413197411.txt

Filesize
56B

MD5
bd0f8f8f3ad93fa07623422ec6e72003

SHA1
c3589295e7a4ddcf35bcd7a2c13bfd381783821a

SHA256
7fe875398dea7537a57a77c5275cbc8647aaf63ab6fd9148443b65df2e1d0647

SHA512
2ec3e073321262b667afbf98fe4e9f51e4c0c58baaad506b120239031f10699d699b94470bef13007bd6199df3d3b03f1eaf147c0cba5178aee7e267072b1c0b

Download Submit
/data/user/0/com.ccenrun.mtpatent/databases/bugly_db_legu

Filesize
60KB

MD5
ffbbb4131e96e5f324a2b64afd7bfa4a

SHA1
6b9835e5fa7a5e24fa40fb2a71a6bf63166f7ebf

SHA256
a905e506828540de146872ee72f5ec67cafec75172726365ea315eb101a0b6cd

SHA512
5a806145ba72f629f1d060a643d001e237c59eb0ae7d67648590420b279626d8833794184566e52abad02acfad062e5ea86fced62c84d8b72993078c87a571be

Download Submit
/data/user/0/com.ccenrun.mtpatent/databases/bugly_db_legu-journal

Filesize
512B

MD5
e2da9a5c907fcc88d006504c3359e9e9

SHA1
11af23ac2815503f5116f4b37b1421bd38c467ac

SHA256
c9edf9a13ed74a70ada3bb3a78bc70c6c4705c51de505710074a3bc99e5bf8e1

SHA512
f92bc68a2a61fe74d27320868e35c4e5dc048e5f27b762313b62cd31a4bf5fbdee93bdfe723d37dbd8d801334a0022ec5c24984e40f0a9c8c2427217036b240e

Download Submit
/data/user/0/com.ccenrun.mtpatent/databases/bugly_db_legu-journal

Filesize
8KB

MD5
94267652d6b3f70fc8daedab8842fdb7

SHA1
a8e84cc3b74fb64f923ae4264a98b296827bbd3c

SHA256
01dad08e6305ffe420b314767d501915d0227062f6828d80acbf612d573dfc6f

SHA512
2dc187165b0b91c86c5dfdba91ddd5e08351b263a6d2a3669a991809edb400f56c30446235d0bca0884014d8f5e14c5337452cff4c0fda4299ad14abd082cee8

Download Submit
/data/user/0/com.ccenrun.mtpatent/databases/bugly_db_legu-journal

Filesize
8KB

MD5
db05bc7a3f88c981d850cf6244652d25

SHA1
e1c088528bddc141eef5f2e0214901259f76ef35

SHA256
871b1efb08790e68d950364681d05fe5b11632dc4d90fc3b725e04ee19b04269

SHA512
7e1503a272880f2b99598663cdbd88dc27f8847bf62b80486f4b247ce0c2471f4f4f0b0cba65388a33b54cc52de2a8c72d6226245d0830a61c3285550a65cafd

Download Submit
/data/user/0/com.ccenrun.mtpatent/databases/bugly_db_legu-journal

Filesize
8KB

MD5
7fb85a963b9a58fed6e078505e6848b3

SHA1
dd4c51be837de2f61244d45763ed979aa7ec1ef6

SHA256
2939ea9921c0b7d8d93a1a9519045f1c7f002ccead6457d0116e6b1b7c521805

SHA512
2985e77139ad95343ea98820255da2ff5263e72f9aa1801373a7285c222f44fa42ad2e61b7f1b63e8ad4ac6068884e7458068e0646c346ed63768faea25477a1

Download Submit
/data/user/0/com.ccenrun.mtpatent/databases/bugly_db_legu-journal

Filesize
12KB

MD5
bd249d18bf209cbca355465f96a84a8c

SHA1
dd93e8e59d9e050cde338e42885dcb2c6db29681

SHA256
ed26b20e5aa3941abcf1f94b7572e2d7c88caf8c087b3a9a0fb7ce4fc9c09c38

SHA512
ecb759a1c9a649486a8f19ee6fd1595118cde8f80db047ec5da6e9bccc7b20d4dae38bc2c27274d2cde05c3c4827b1158280e9e6beaa811b06ff6f7d336b0b00

Download Submit
/data/user/0/com.ccenrun.mtpatent/databases/bugly_db_legu-journal

Filesize
12KB

MD5
66053e8e6a63db0b03775f968dec0750

SHA1
2b46dfe62073be7c4b509c22490d27d777c714ca

SHA256
899ba5c0d001c7d2336d96a5fd4267ef1d805f1aae312d8be37a44333f2310dc

SHA512
d96720c364384955f01b9226029c3353847f991619536ef04482402bd2b673a79d387b39122a4f4ee8f2e564a3552d8d2620a6cfbf2ffaf85ea3212d271c5a4e

Download Submit