General
-
Target
697d19745a4a3d762f0186621e081369_JaffaCakes118
-
Size
14.3MB
-
Sample
240523-c85j7abc82
-
MD5
697d19745a4a3d762f0186621e081369
-
SHA1
932f140d20135330cfdbc928e713d915cf46b642
-
SHA256
3ab044cb0fcfa748afad63aa102ece83c2ef60e577ab4028db00db7036b3b685
-
SHA512
b51e37d6540222245d5431ca84cc0bf3e65fd3d7e59043166efbdcfe7491c2c284cb054050936d7b0bdbc3d5a867d08c79ad984cfe3783e76a3c4b79ca31c4e0
-
SSDEEP
196608:e5T5JOh2JKySyebXFNx9R4rVkB0nOTSbJjk9pn26lKJjGh6O0DKBUvP/a4wy/Sr:GJOioXFNh4rLH9ipNcJjMIe4pc
Malware Config
Targets
-
-
Target
697d19745a4a3d762f0186621e081369_JaffaCakes118
-
Size
14.3MB
-
MD5
697d19745a4a3d762f0186621e081369
-
SHA1
932f140d20135330cfdbc928e713d915cf46b642
-
SHA256
3ab044cb0fcfa748afad63aa102ece83c2ef60e577ab4028db00db7036b3b685
-
SHA512
b51e37d6540222245d5431ca84cc0bf3e65fd3d7e59043166efbdcfe7491c2c284cb054050936d7b0bdbc3d5a867d08c79ad984cfe3783e76a3c4b79ca31c4e0
-
SSDEEP
196608:e5T5JOh2JKySyebXFNx9R4rVkB0nOTSbJjk9pn26lKJjGh6O0DKBUvP/a4wy/Sr:GJOioXFNh4rLH9ipNcJjMIe4pc
Score8/10-
Requests cell location
Uses Android APIs to to get current cell location.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the phone number (MSISDN for GSM devices)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-
-
-
Target
__pasys_remote_banner.jar
-
Size
108KB
-
MD5
63ba17ca047dc71aa659c7ed8bb60de5
-
SHA1
675bd0556bce8d43cd29a6d9b3d996d41f3e0b2b
-
SHA256
2750f3af62f5b9d1d21f6a8215f529e472e7098ac16295b976a29115e8520a52
-
SHA512
5b70f6bc391276d2034a97e371adad0a635caafdfc33d32791db1432d4cca3f0364e1af6b10b574df5c8f3345bd5539a4d70455aa521f10b239e68216f5ddc39
-
SSDEEP
1536:JsIZFap4+HLANZ5+01fFI5iWBrANsLIHmd1C4i6L/AvuWD7i3z7Y6mrfrJvIC8O:JPZEpHrA3x1i53hxLOQ4I4mD3zk6mlI2
Score1/10 -
-
-
Target
__pasys_remote_feeds.jar
-
Size
51KB
-
MD5
998d0c80e8909e287ddcddb327473b10
-
SHA1
f8325e2e823feaee99348910f15b21fbe5a44280
-
SHA256
0ff2445f8cb3a2f3a188744f7f0c7e64056db4dcbe228acf368bd07063c059a0
-
SHA512
bdb6349308e8c719524a7b14d84ec7a2abf1dd64a3d2e4ce04eb942df71860c2d03b0dfd5d032565dbbd564416a568d43db5d28c528a95ca57841c065da1d4d2
-
SSDEEP
768:4y9d5mXbldQcKnJU5WEsG0YZhE+a8azMv0MgyKvgQ6eGjL8i0kitSD7rKTN:J9kobJREVZzavzMhgyxBek8i0tKnKTN
Score1/10 -
-
-
Target
dynamic1110.jar
-
Size
104KB
-
MD5
107eabce49ca6d6271d3607ee05d89eb
-
SHA1
ed852fdc035601fc3ac3a137d3b84d27b56d4b16
-
SHA256
5d11a5c137b06acf8dbb77518019d3fe8158adfb9eef9b3667b76af9a1626c17
-
SHA512
87299be749ea4cd6fd02fc80d533a9114e3cf4a6c21d8e022100fdf134e71b60dc169829b1658fbdb6167e71877808dd7adc471a92f16d1bcdb80e09082fd29c
-
SSDEEP
3072:tDHHFvptvQG2hS2wiGNssr5Gt3Jm8nPmM:9HHr9Q9CN/9X8OM
Score1/10 -
-
-
Target
gdtadv2.jar
-
Size
69KB
-
MD5
31bac69b905c151e228140c2bf93c23c
-
SHA1
4985c76d0bb44baf34d4b4fd13da2eacf1f8dae4
-
SHA256
e0b01c300e018b5efac9e0a7f5574e096c3651da30b1fe84344ca34355da18e5
-
SHA512
d39dc5b7c3f31509678c237976e7df77a94484ac76107dcb509cc5b88d7bc24650bc6cdc27829edb3a71b2b46af8abc8b265adb87dfd58f908b375d47865eca1
-
SSDEEP
1536:MROeCPy6HfXriWaQHfbxjXy+XS3q1l6br/Uuhbeg4OgC3c:MRnuy6H/rKGtjNXu2wrXag4O5s
Score1/10 -
MITRE ATT&CK Mobile v15
Defense Evasion
Execution Guardrails
1Geofencing
1Virtualization/Sandbox Evasion
1System Checks
1