1e4d4c511c5a04b41a5e7c50e92041037a7a03f883b60ff426e210525bcdc3b4 | Triage

Sharing

General

Target

689b9b3a2f3266ab6f7b340c1a19c736_JaffaCakes118
Size

15.1MB
Sample

240522-zrt4fsgd2s
MD5

689b9b3a2f3266ab6f7b340c1a19c736
SHA1

b8abdbb17736bd7051320a8328e747a02be2b8bb
SHA256

1e4d4c511c5a04b41a5e7c50e92041037a7a03f883b60ff426e210525bcdc3b4
SHA512

fd0739dcfdf65630da9b4fb62d8e20015d083b1269303752df8e09348fe9886bf9718a9fbc68e276c23cb9f0e346e1b45db6e1239835aaaed30b52d7132d0eb3
SSDEEP

393216:HijiAnaIIUHbowx660CmlLcwVOpM3RQbtL9VsFZrgjzuN9YUUrh:W/naIlHMPHChJR9QrgjzuN9YUg

Score

8^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  689b9b3a2f3266ab6f7b340c1a19c736_JaffaCakes118
- Size
  
  15.1MB
- MD5
  
  689b9b3a2f3266ab6f7b340c1a19c736
- SHA1
  
  b8abdbb17736bd7051320a8328e747a02be2b8bb
- SHA256
  
  1e4d4c511c5a04b41a5e7c50e92041037a7a03f883b60ff426e210525bcdc3b4
- SHA512
  
  fd0739dcfdf65630da9b4fb62d8e20015d083b1269303752df8e09348fe9886bf9718a9fbc68e276c23cb9f0e346e1b45db6e1239835aaaed30b52d7132d0eb3
- SSDEEP
  
  393216:HijiAnaIIUHbowx660CmlLcwVOpM3RQbtL9VsFZrgjzuN9YUUrh:W/naIlHMPHChJR9QrgjzuN9YUg
Score

8^/10

discovery evasion persistence
- Checks if the Android device is rooted.
  evasion
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2