71c23b430f9e7258377b94dbbb2b27b41a30b8f8b07d78081f1793a28ae9013b

Analysis

max time kernel
78s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
23-05-2024 00:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

693757f633dd41756ecd5fba28d093fe_JaffaCakes118.apk
Size

4.2MB
MD5

693757f633dd41756ecd5fba28d093fe
SHA1

64a6af6098d15cb1c012a6ac030e4f3eb41cb1f4
SHA256

71c23b430f9e7258377b94dbbb2b27b41a30b8f8b07d78081f1793a28ae9013b
SHA512

154fecdc28282c0f9c021a67c9f31f002ffc55aa378c755d9e744ab96f83113ef882e527c5dc2fac0496e45eccae6ee6108f5a3db392ca89f47b4d10247ff993
SSDEEP

98304:NfxDKb10e2RRIPbltwGgarm0S3n70rLqPMZFO:Tve2APZt03wrL8My

Score

7^/10

discovery evasion impact

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.playgame.qualitylife

description ioc process

File opened for read /proc/cpuinfo com.playgame.qualitylife
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.playgame.qualitylife

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.playgame.qualitylife
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

com.playgame.qualitylife

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.playgame.qualitylife

description	ioc	process
File opened for read	/proc/cpuinfo	com.playgame.qualitylife

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.playgame.qualitylife

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.playgame.qualitylife

com.playgame.qualitylife
1⤵
- Checks CPU information
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4323

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.playgame.qualitylife/databases/cc/cc.db
Filesize
36KB

MD5
5d7ea1a23af19b4340cc8d90f28297d5

SHA1
4cfe95b23a9e98378d69c4290af81b51fbe76aea

SHA256
474c4a54534ed96beacad7cc9a805a3f53ec9c0522fc7bcc59771cf500a6a0da

SHA512
33071f4c92da0a3df01c4a61dd165df7c7e0f4f37753cafe02d19fc876a5e7fcbb01c069c804e140ab8bfa0644a55f50fd1373646d1c439f817baa5ffbd47f7b

Download Submit
/data/data/com.playgame.qualitylife/databases/cc/cc.db
Filesize
36KB

MD5
ce6135aa1b1fe4f2c2db2a546d2a5558

SHA1
79b59582154017aadab783dc266fcb158c252940

SHA256
7b45f576c08c7f78220168cca4a0e33198b13e9bdc8b1da406ddb6887412000c

SHA512
2839075fe374c8567c839ae35ce2d33ec72fdaebf170aa7d224b555e5b0e74d4a43f2f67d17ed806dae841da883e9620d788ea052d06152678afa927307c7ce4

Download Submit
/data/data/com.playgame.qualitylife/databases/cc/cc.db-journal
Filesize
512B

MD5
f265681163132cee54eb12e64c54369f

SHA1
bd60a1b6c8b179086c6af826cf99639a420a3382

SHA256
ec96abc8b1d90d17494090ffe57c36caa6535ff4f70e44912c7b5b40c688abc4

SHA512
a7952a2832562686c1c4a0fb4ba094f64039c6b4b9a4329a9538882a21424c7f3c79f3ff206ca3f5fd9693ead42424e4dd1edfe91229d6e4da4722be9bfafd4a

Download Submit
/data/data/com.playgame.qualitylife/databases/cc/cc.db-wal
Filesize
48KB

MD5
6acf73faa7ab878e53abaec1bb144254

SHA1
7ba8f5d66b9a0eb111f53d5a8f1a4ec8fbfed59c

SHA256
ff6dc119852e0884c615c0475d95a46cf02b142f04230e45ceaa1b7b7f641b64

SHA512
77a15e54ab0a8a1a5980319ad13e197b612e9180aee9d4772e88c0b6e97c67534f9ded8a665b0313c0f00b43d2a0c885aa57f230fa460d0fa8717c9114582533

Download Submit
/data/data/com.playgame.qualitylife/databases/cc/cc.db-wal
Filesize
16KB

MD5
9dac3433667492b707e8ac6fa01cbc28

SHA1
f224359ff22a54e975e9e76b89072895186b5678

SHA256
a8c8fd6821b70e530b87ce5c41cb2bfc9a77eaa6566fb76974bdc94269d86b55

SHA512
2d9c715ae023cd082630690823667094eab16f7c909d00078ebdbcea00ffde06b213064aad41ae90e46921b210257062b669b414eecdb4ba1ac52c95f4ee77c1

Download Submit
/data/data/com.playgame.qualitylife/databases/init.db
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.playgame.qualitylife/databases/init.db-journal
Filesize
512B

MD5
3b66ebc4972714a7c475380016c2113b

SHA1
61079cd2ea65dda1f3657483bb812e94da822bce

SHA256
d74b761e17e62c986636f4bab1ee9c7f4431e97426066fed9c91c571ed721cbf

SHA512
f606735feeec9006bc6673cbea63dbd3b8ef5af6347f9c568c57f303ec06816943885a4b7910d601f5f0ca21cbce52864960deac4b904e513e4b470665f5f947

Download Submit
/data/data/com.playgame.qualitylife/databases/init.db-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.playgame.qualitylife/databases/init.db-wal
Filesize
56KB

MD5
7a1d592479042914c36ce661698993f1

SHA1
23a769efbda878d4d200ca9546d5c9a57023a777

SHA256
f89d5e1d7024018f87835d5de064499aaecf51024b89ab43df4e397a97ac18a8

SHA512
c32e5000399326dd05bf6a86192f5684c42f5f980c6060417234f5f508c06a6a1b06773c54424444bbfc79db01afc9d5e259f324fc59c032a806b289030c37d4

Download Submit
/data/data/com.playgame.qualitylife/databases/ua.db
Filesize
32KB

MD5
d604a3bf1f8d992cc320ea5b1f7609bd

SHA1
247f88df0b55c7d523ea5398637711a0e4a483a4

SHA256
329940b4d46326d58e73c842dd099704061d0ef7338777bf31ad895f29013c17

SHA512
67e28f6713cb5c238a9664df128f01a89a2efb7c8c9330c1e45bc0d40ebab81fa20df5166743d84d81dc0386a89ff0329f022281c098339baa2e851ff0a1e1ab

Download Submit
/data/data/com.playgame.qualitylife/databases/ua.db
Filesize
32KB

MD5
00d93b9e4c1ea814eb884a848e3ca857

SHA1
1cc799c42cda83d732227f095f5cd79c475ce149

SHA256
f3bbc9f773c5a1fbec5f3747cc09108f3ae498f2c8be15c2804ce5dc15b6b731

SHA512
de6036fd3f1e12469d8408c70c2b045ad4fbd6ef888878b6e19b542469567b1caafe4bb383899156677a3c749933bed971c890871fc9453a2f6bbb05ac312e9b

Download Submit
/data/data/com.playgame.qualitylife/databases/ua.db-journal
Filesize
512B

MD5
3653aba9ad62a43eac4a305d353a2e83

SHA1
d17841a886210b470a1b764c6e193c4d6f404f68

SHA256
6887a6df1c4c00386e3a795713df98ee137e1fb47bb35d60e649d2dcbc2fea08

SHA512
4bee0f8eab93d4bc772d7c0412eb05a9ed5b26bdd1595bd839e48fbf0ff49f9a03d4c14e96469e3a4ead7b1b5212972e8661a63bfaaa44eb40bda41154091847

Download Submit
/data/data/com.playgame.qualitylife/databases/ua.db-wal
Filesize
56KB

MD5
696798d60356d484461b06889f0bc4ac

SHA1
7883cbc783640db3b25f4e2477733ad5131729fc

SHA256
e7f3965dfcb2c3b1250d3c7b827eff2851daaeebc70fd63f25e1416b3085ef47

SHA512
35781b556811e31662bb43791444f8d77a0b97d0713a903998faa5555c0bd03d73a209a04a39107570f8f667396a4a92cee6d16942351576c347c3374a350364

Download Submit
/data/data/com.playgame.qualitylife/databases/ua.db-wal
Filesize
8KB

MD5
907ca3d5926bc868a86652789b6ef8f5

SHA1
33a64b1d38ce4a46e1b8f6c1f87b690640f04f69

SHA256
28a8d10133025ed3442265fd3f847b93c24a54ad8efc499595f4ed9bd85a9b29

SHA512
a9b467d705cbf668daae9482e36d650868175cbadd4b1c1f989784c714095a9498480f229da02161974744ad656b6273f28cb8e315b34040e26b97c843a82847

Download Submit
/data/data/com.playgame.qualitylife/files/.imprint
Filesize
1006B

MD5
720773245fb70e4b5ca40ed43c7b5157

SHA1
7415e517468604e90d50d1461b93131c48260142

SHA256
a09ae62d14186e4f958ae659c5bd706ce620cc85af7d69fc034f7859c72514d7

SHA512
d64e06f262803877bd3c240ad74d2a6f36524eb3d5300d61a13f9ad7404c26c884b13bf20b6e17661ef36ceaa658f275069e4609c5403bf20bafc64d22685a20

Download Submit
/data/data/com.playgame.qualitylife/files/.umeng/exchangeIdentity.json
Filesize
162B

MD5
ef109a430f939baa0e6019fce3986ccf

SHA1
7be9f50b517bc4e4032f3685aab689acbb3092ea

SHA256
ab0b502fdf55ee2176547e81c3ff7af28fe95719ff76fee0276b428a05597043

SHA512
f1d8426555ec21cb586dfa4e4ad9d1effd90df3dfe3748766bdfd54edd2041edd93f411c06f4098e4c23d74f301e2cb70a519437faa7d86961114ed791ac3b36

Download Submit
/data/data/com.playgame.qualitylife/files/exid.dat
Filesize
56B

MD5
c315632e63eaa50873c252706424b744

SHA1
26bd88064f62ccb1c9b57d8c22e3480dcb619515

SHA256
124183fbfb6af6d7baed2cf4f4ab99ede98d33a9068ca841a9158af8650b47c4

SHA512
277abff4a414e9c09203fc7720b29b8f95c6feed5e54a9b47459f86001c497d2b97822443d122787dd6d65631713953f02b38577c6a4a49169929ccb0616a7de

Download Submit
/data/data/com.playgame.qualitylife/files/umeng_it.cache
Filesize
413B

MD5
5969ddbb65693501d92b5f3d9912bbab

SHA1
b3a8e8a02eaf4f9647db25371853ff697dabcab9

SHA256
9350f2cf4274e4207ddecab2646f2b4902131351d023e3b23173a44b04128111

SHA512
79fec0ffda04578442c89045e5dbc82dbf2f82cfd93ac1cfcd210571ce79e1ccc894e9b2517e5f82386670ad42ff70d35ef740b3b93ead0f0de8457f77a0e846

Download Submit
/data/data/com.playgame.qualitylife/files/umeng_it.cache
Filesize
210B

MD5
cd2fd9f31892c0e30e4b10be71d254f2

SHA1
cfbffbf69487a289d6a8f1c4bf1de990b89dcd70

SHA256
7df11fac2a802457ab7f19b7509c4ab4af68950b58d23b59e8073ba1502eb8f0

SHA512
e587cd1aa26fb16513a4e64e8332ef4c7a6fdeb2a27b9ad9c0b89600e6cca2c5e97b95319c821db742869d1fe21d597a2dd992026a94508c097055dd464c52f2

Download Submit
/storage/emulated/0/.cache/b
Filesize
32B

MD5
b7ccfb7c49e126f38695547b644170f2

SHA1
8ebb07358575a07f2c089975f9312ccb319ed50f

SHA256
b756abd54388d4841b8d47bf81e00285d4ead8d3c5725641ee5ace8567aed03a

SHA512
50e5e626f20f6f3417bf0984ff10d20b3c21678b9da85ff8317bcba0e32e3566d1bbeced629d3749335efa803e93eea5b00ff7989fc75b76037656024b967cf0

Download Submit
/storage/emulated/0/Android/data/com.playgame.qualitylife/cache/uil-images/journal.tmp
Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit