General
-
Target
6a2afdea243dadeb5be6909c47e412cf_JaffaCakes118
-
Size
4.4MB
-
Sample
240523-h5qjrahc8y
-
MD5
6a2afdea243dadeb5be6909c47e412cf
-
SHA1
84f902647e19522590fa692c0dd41d4d424a8213
-
SHA256
6193c7904d1fa6e47a307f9fc0d94409db61a8205558ecf47450bb92b5f2e84c
-
SHA512
595dc1cb40c03ec99f36285f9000d9fc5d919a8fd81a794f73efa71523a44a777361820730b9509190696cf55e7a01cf933d727e3bc87e3f59ede0a98fd75d59
-
SSDEEP
98304:OKIPzTGx8Cr7AsJt1kRuqXWb4EaVkyw/xrzvt7:ODrS8y7BrkkqvE1b/Fp
Malware Config
Targets
-
-
Target
6a2afdea243dadeb5be6909c47e412cf_JaffaCakes118
-
Size
4.4MB
-
MD5
6a2afdea243dadeb5be6909c47e412cf
-
SHA1
84f902647e19522590fa692c0dd41d4d424a8213
-
SHA256
6193c7904d1fa6e47a307f9fc0d94409db61a8205558ecf47450bb92b5f2e84c
-
SHA512
595dc1cb40c03ec99f36285f9000d9fc5d919a8fd81a794f73efa71523a44a777361820730b9509190696cf55e7a01cf933d727e3bc87e3f59ede0a98fd75d59
-
SSDEEP
98304:OKIPzTGx8Cr7AsJt1kRuqXWb4EaVkyw/xrzvt7:ODrS8y7BrkkqvE1b/Fp
Score8/10-
Checks if the Android device is rooted.
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries the mobile country code (MCC)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-