Overview

overview

8

Static

static

6

6aafdc7b33...18.apk

android-9-x86

8

6aafdc7b33...18.apk

android-10-x64

8

6aafdc7b33...18.apk

android-11-x64

8

Analysis

  • max time kernel
    177s
  • max time network
    146s
  • platform
    android_x86
  • resource
    android-x86-arm-20240514-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
  • submitted
    23-05-2024 10:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6aafdc7b33f555dbcabe47391f27dea6_JaffaCakes118.apk

  • Size

    2.9MB

  • MD5

    6aafdc7b33f555dbcabe47391f27dea6

  • SHA1

    58393ece86c0b706ee8b3a4edd7aebe65857d468

  • SHA256

    d27bda7528e05a262f22d184357f1a7ad718841d5e003b0aa1c31b228a01c87a

  • SHA512

    0cce02acbbbe6e3c94b5d02661d9bfa9e9ff9823e64d4cc5ed96b9734cb9dea31f51ef5d63eafb57a3d9804ee6223b8d2488a9d8035f87584a19dc6f5e8ecf4d

  • SSDEEP

    49152:A3eRpohslRG7JO3PHAx/SAw00XYUGllxzksXoi/uSfzh86WFuDNU6O9RYCNKfNgh:a4l87JO3PHAcAw0Mv0oi/lbh8HuGRCLg

Score
8/10
discoveryevasionstealthtrojan

Malware Config

Signatures

  • Removes its main activity from the application launcher 1 TTPs 1 IoCs
    stealthtrojanevasion
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery
  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs
    evasion

Processes

  • org.proxyprovider
    1⤵
    • Removes its main activity from the application launcher
    • Checks if the internet connection is available
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    PID:4300
    • su
      2⤵
        PID:4332
      • su
        2⤵
          PID:4353

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads