6aa117d60a0ed52d9f0db31ee66c1b89a96024e08fa498c99b284a107f238652

General

Target

6a66316ef88e1f46ac97d0a9b473c9fa_JaffaCakes118
Size

17.2MB
Sample

240523-ks3pnabc7z
MD5

6a66316ef88e1f46ac97d0a9b473c9fa
SHA1

36f1ba3ae123dd55e3aff48635a5dbe065aeb7c7
SHA256

6aa117d60a0ed52d9f0db31ee66c1b89a96024e08fa498c99b284a107f238652
SHA512

5db9253414758721c72ca575612de45f0ec8715a805736f794018be4c8da6a1782f0a7c797c528a06a0c023d2753be0b0f88089dbd76fe12e5567c44251afbaf
SSDEEP

393216:j+S4rWx656o6k6E6V6f6m6a6u656X6s6I656M6oscrnFmT8zgvkfprWt8+GM3TsS:jzEWEcBckfNWGTqZ5

Score

7^/10

Malware Config

Targets

- Target
  
  6a66316ef88e1f46ac97d0a9b473c9fa_JaffaCakes118
- Size
  
  17.2MB
- MD5
  
  6a66316ef88e1f46ac97d0a9b473c9fa
- SHA1
  
  36f1ba3ae123dd55e3aff48635a5dbe065aeb7c7
- SHA256
  
  6aa117d60a0ed52d9f0db31ee66c1b89a96024e08fa498c99b284a107f238652
- SHA512
  
  5db9253414758721c72ca575612de45f0ec8715a805736f794018be4c8da6a1782f0a7c797c528a06a0c023d2753be0b0f88089dbd76fe12e5567c44251afbaf
- SSDEEP
  
  393216:j+S4rWx656o6k6E6V6f6m6a6u656X6s6I656M6oscrnFmT8zgvkfprWt8+GM3TsS:jzEWEcBckfNWGTqZ5
Score

7^/10

discovery evasion
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Checks if the internet connection is available
  discovery
- Requests dangerous framework permissions
behavioral1
- Target
  
  GameBox.jpg
- Size
  
  2.9MB
- MD5
  
  f56814a880accf06829ad074b9584195
- SHA1
  
  b94071dcb7526e240f92d39913ea5c28977aac75
- SHA256
  
  9c0424fd2e81bc8661d2ded8c15f6f346b729e0d203b9df879299704fad31e2e
- SHA512
  
  51c6484fda6111306df1b73c86efd01b309a9683ac343eeaa83d7ca5d99a2441b9fcb268a14e8354f09ea773b9f929a29009145f3a9b80a475e43141554a2ff9
- SSDEEP
  
  49152:PEHwm+BJCRFrKkSmB7KwG3hxmgTlAG6YiAhQKK504KFuK3DeI:PEH/+6XrKkSq7PyxmgTlAG6YVQKx4KpV
Score

7^/10

discovery evasion impact persistence
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries the mobile country code (MCC)
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
- Reads information about phone network operator.
  discovery
behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Checks CPU information

Queries information about the current Wi-Fi connection

Checks if the internet connection is available

Requests dangerous framework permissions

Checks CPU information

Checks memory information

Queries information about the current Wi-Fi connection

Queries the mobile country code (MCC)

Registers a broadcast receiver at runtime (usually for listening for system events)

Checks if the internet connection is available

Reads information about phone network operator.

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2