6aa117d60a0ed52d9f0db31ee66c1b89a96024e08fa498c99b284a107f238652

Analysis

max time kernel
7s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
23-05-2024 08:52

Target

6a66316ef88e1f46ac97d0a9b473c9fa_JaffaCakes118.apk
Size

17.2MB
MD5

6a66316ef88e1f46ac97d0a9b473c9fa
SHA1

36f1ba3ae123dd55e3aff48635a5dbe065aeb7c7
SHA256

6aa117d60a0ed52d9f0db31ee66c1b89a96024e08fa498c99b284a107f238652
SHA512

5db9253414758721c72ca575612de45f0ec8715a805736f794018be4c8da6a1782f0a7c797c528a06a0c023d2753be0b0f88089dbd76fe12e5567c44251afbaf
SSDEEP

393216:j+S4rWx656o6k6E6V6f6m6a6u656X6s6I656M6oscrnFmT8zgvkfprWt8+GM3TsS:jzEWEcBckfNWGTqZ5

Score

7^/10

discovery evasion

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.jhfx.jihefeixing

description ioc process

File opened for read /proc/cpuinfo com.jhfx.jihefeixing
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.jhfx.jihefeixing

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.jhfx.jihefeixing
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.jhfx.jihefeixing

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.jhfx.jihefeixing

description	ioc	process
File opened for read	/proc/cpuinfo	com.jhfx.jihefeixing

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.jhfx.jihefeixing

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.jhfx.jihefeixing

Requests dangerous framework permissions 11 IoCs

Processes:

description	ioc
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

/data/data/com.jhfx.jihefeixing/app_xwalkcore/libxwalkcore.so.tmp
Filesize
21.0MB

MD5
e9bdc278b4674038e8b76a1339a90bb8

SHA1
027697f1f67b4be8e60e85ec15af000385cf6e51

SHA256
6e8b694193196c4521df4d99c64f9ca6310b836370e1c417d6036713a68b566a

SHA512
9a1949dbe03423e5ebf22b69447ce2cdc91360e5942372c45b27ca17e003242afc819febfb3feaa504d0495a7c8a07c5ae5e01a258e3b9dd855817ea13fa68a1

Download Submit
/data/data/com.jhfx.jihefeixing/files/umeng_it.cache
Filesize
310B

MD5
b12096576a29ac59dc305bf0370876fd

SHA1
8cb9a4ce185548089f3462e129548cb0e04907c7

SHA256
159e42a89ede1107e4674c4a21bab0818d2520f7bbdb4e30beab2f51ab713ba9

SHA512
a5a2dc40e948bb7f19c40a6df28e5b973fc30a3827aab4605b29ec7e9c443bf0d73b82444762da664ee48c0a474821984248f80f73c36766a424416321b3059e

Download Submit
/storage/emulated/0/meiriq/GameBox.apk
Filesize
2.9MB

MD5
f56814a880accf06829ad074b9584195

SHA1
b94071dcb7526e240f92d39913ea5c28977aac75

SHA256
9c0424fd2e81bc8661d2ded8c15f6f346b729e0d203b9df879299704fad31e2e

SHA512
51c6484fda6111306df1b73c86efd01b309a9683ac343eeaa83d7ca5d99a2441b9fcb268a14e8354f09ea773b9f929a29009145f3a9b80a475e43141554a2ff9

Download Submit