General
-
Target
6ca5f9400da4dc892e455bbf7d68be43_JaffaCakes118
-
Size
8.0MB
-
Sample
240523-3k5s6ade45
-
MD5
6ca5f9400da4dc892e455bbf7d68be43
-
SHA1
e4d154483d31785cf9b663873e07fb5951dc5995
-
SHA256
274dad90da49484e49f3452a43247ebbe1f9ac5621e9ade5360d6ca4a65fe16e
-
SHA512
3eea7edda4775fc40a98cb2935e7f7f00593dcaaa333ab158ab4a67e88f47392504dfa933197b4868305744f6281c41d1b2d40c99317bfd1788549b44346016f
-
SSDEEP
196608:TPBxNTSpmSbMY49Rnhno3b5od6zuw8TcXBKq:Tr9SpmaMY49rno3Fpi01
Malware Config
Targets
-
-
Target
6ca5f9400da4dc892e455bbf7d68be43_JaffaCakes118
-
Size
8.0MB
-
MD5
6ca5f9400da4dc892e455bbf7d68be43
-
SHA1
e4d154483d31785cf9b663873e07fb5951dc5995
-
SHA256
274dad90da49484e49f3452a43247ebbe1f9ac5621e9ade5360d6ca4a65fe16e
-
SHA512
3eea7edda4775fc40a98cb2935e7f7f00593dcaaa333ab158ab4a67e88f47392504dfa933197b4868305744f6281c41d1b2d40c99317bfd1788549b44346016f
-
SSDEEP
196608:TPBxNTSpmSbMY49Rnhno3b5od6zuw8TcXBKq:Tr9SpmaMY49rno3Fpi01
Score7/10-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Queries the phone number (MSISDN for GSM devices)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads device software version
Uses Android APIs to read software version number for the device (IMEI/SV for GSM devices).
-
Reads information about phone network operator.
-