Analysis
-
max time kernel
48s -
max time network
154s -
platform
android_x64 -
resource
android-x64-20240514-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system -
submitted
23-05-2024 23:59
Static task
static1
Behavioral task
behavioral1
Sample
6cb67cbc7a3abdc1256518063b78e9b2_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
6cb67cbc7a3abdc1256518063b78e9b2_JaffaCakes118.apk
Resource
android-x64-20240514-en
Behavioral task
behavioral3
Sample
6cb67cbc7a3abdc1256518063b78e9b2_JaffaCakes118.apk
Resource
android-x64-arm64-20240514-en
General
-
Target
6cb67cbc7a3abdc1256518063b78e9b2_JaffaCakes118.apk
-
Size
12.3MB
-
MD5
6cb67cbc7a3abdc1256518063b78e9b2
-
SHA1
6e4f42b742fb135c7496f3072bc6e8026c33db30
-
SHA256
0c158c4aeb7f2050ba53fa14cc662fe8490abe64071a46d6bd43d2ef67499c38
-
SHA512
4e08f7075d77df91a28db0255434f368a12b74e3287a7ab64dbc43cd0f285ba21f92bba2714e1d556a48a981862f8c8d65398ccc98e3be6201314f7f916032db
-
SSDEEP
196608:YIAk7nQtr7BWdlIAk7nQtr7BWdOIAk7nQtr7BWd4IAk7nQtr7BWdqIAk7nQtr7Bt:BQtBWdOQtBWd/QtBWdhQtBWd7QtBWdq
Malware Config
Signatures
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
Processes:
com.zu.zudescription ioc process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.zu.zu -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
com.zu.zudescription ioc process Framework service call android.app.IActivityManager.registerReceiver com.zu.zu