Overview

overview

7

Static

static

6

697a6472ed...18.apk

android-9-x86

7

697a6472ed...18.apk

android-10-x64

7

697a6472ed...18.apk

android-11-x64

7

Analysis

  • max time kernel
    155s
  • max time network
    164s
  • platform
    android_x64
  • resource
    android-x64-20240514-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
  • submitted
    23-05-2024 02:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    697a6472ed5f06d54b42064e5e6850f9_JaffaCakes118.apk

  • Size

    2.3MB

  • MD5

    697a6472ed5f06d54b42064e5e6850f9

  • SHA1

    20a9f3b505707157cf6c4408c6c66de0c2b47e09

  • SHA256

    db0a1bc3fd2329470b9ba4df85badecd3cba7b5ac997f3c04e7f4a1dc1faaf73

  • SHA512

    7c7a3a32f4af5a23bc94479e9ab76caaca2bfd899cd973f4cfef90a61855c23c96f50594b88e1002e787eb0c94f0411abd6ffdab00bf72cf8dfd921540d11355

  • SSDEEP

    49152:tzZSmIi856LJMe39AsDzX90b6AIoBN5/NNyf:vvIiDyP2z9dLoBN5yf

Score
7/10
collectioncredential_accessdiscoveryevasionimpactpersistence

Malware Config

Signatures

  • Checks CPU information 2 TTPs 1 IoCs

    Checks CPU information which indicate if the system is an emulator.

    evasiondiscovery
  • Checks memory information 2 TTPs 1 IoCs

    Checks memory information which indicate if the system is an emulator.

    evasiondiscovery
  • Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    collectioncredential_accessimpact
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery
  • Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery

Processes

  • com.cyou.cma.clauncher.theme.v591975b04f1f6705f128bbca
    1⤵
    • Checks CPU information
    • Checks memory information
    • Obtains sensitive information copied to the device clipboard
    • Queries information about the current Wi-Fi connection
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks if the internet connection is available
    PID:5228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.cyou.cma.clauncher.theme.v591975b04f1f6705f128bbca/databases/http_auth.db
    Filesize

    20KB

    MD5

    62a3561989ede658cd16cc1f14199c1d

    SHA1

    6320791cdfd16b26450bf711bd6776d80a396912

    SHA256

    9ae0206411304ee027e0cfe3b4e6732ced5b423f99c33340dafb68d2b5b215f6

    SHA512

    c4ef43e702e053ee39153149d1fb11311c57c6ad5393ea905df942df8bcd3625e2224563eb4c35bfc45e140aa09135c5123f48d220fe622d9dcf2a4cdaf5dfe4

    Download Submit
  • /data/data/com.cyou.cma.clauncher.theme.v591975b04f1f6705f128bbca/databases/http_auth.db-journal
    Filesize

    512B

    MD5

    ea8e538ccf6765202020b687e5305a33

    SHA1

    18fd7e9fec0936639ac2c5b1a7d3ecf8d1462c54

    SHA256

    2b6e8c641f8a010d1ab2066c401661cf1f0a932603a26f05e432743291c64019

    SHA512

    d38a2ba8e35de4a9ff57ddbfc9d6d27f02cab29d2eae0be5d96d20e3df2ceeea16b8fc77bcf2ebc3b2be898f1e37171114ca90c8909b652de7f71836cfbd4204

    Download Submit
  • /data/data/com.cyou.cma.clauncher.theme.v591975b04f1f6705f128bbca/databases/http_auth.db-journal
    Filesize

    8KB

    MD5

    92424681cab2cb81fcaf183c3266f7ff

    SHA1

    d0572c0ccd9b5e3d198aa7af68e2efd2be644285

    SHA256

    60e9f6acde999d0961e7f20512cfc43b07436c09cb3ed214b1c45585b09ad75c

    SHA512

    f3ee04743f9c4111b383eddcf6d6d2b780fb860d4ec9c85df79bb55e5df1a6ee56ae6dd9087deb29d5e594f137332a9c89bd5d4dd3ce081041272299ee83d5e5

    Download Submit
  • /data/data/com.cyou.cma.clauncher.theme.v591975b04f1f6705f128bbca/databases/http_auth.db-journal
    Filesize

    8KB

    MD5

    b21d6b3423fa0c9ad14b191566c7b6b2

    SHA1

    a2659623ab3684d6a2a2810d177600bab9f453dc

    SHA256

    ae92b0da73f1b1143808d44d902d1c0ba0fccb00ee334e74ba2f8c2445862478

    SHA512

    0a28dc17f47d2d331a9734f067d172f2af30e8da5f9798d8622093daa2f6d3b761903ac9102d55e3c72b0cf91a88d45be9303aae5e5fd14c344f3b95e9eb0451

    Download Submit
  • /data/data/com.cyou.cma.clauncher.theme.v591975b04f1f6705f128bbca/files/.imprint
    Filesize

    773B

    MD5

    1897f315add50bdcf8bc93f2ef7dc817

    SHA1

    a6e2eb818b6d38ec6781d8a8c24e8896f2b54b2b

    SHA256

    11a2a4adcf2cbe4a50e6e6dcbe766ed2711ffbabb3995aa586fd843e003831c7

    SHA512

    32cafda98c4f98b98711a443b56c4ad4c4ebe24b2d037a496451de6356855b695cf52c12101463e604b708f32cfd00b2c3c0d1a97230bdf2b6f2fd7f4db6a5ae

    Download Submit
  • /data/data/com.cyou.cma.clauncher.theme.v591975b04f1f6705f128bbca/files/uuid.md
    Filesize

    32B

    MD5

    9cb7c9a62fb94a56351ab8859120b306

    SHA1

    9caccc22e13d10415d6b0ca3bb970820b1767afe

    SHA256

    0c4394cf6df22fe1ef0010c7c94ba7ce1c53a5716e312041b53b36c1e15305e8

    SHA512

    60e4e47ac553a3f1a6a1e473a27c0ab2bcb6c4876656aef0440e97844ab60116f79284cb602c37f54e9879dfa2e8456acc870ec25b211a0be71fde3a98f0b680

    Download Submit