Overview

overview

8

Static

static

6

6ae13257be...18.apk

android-9-x86

8

6ae13257be...18.apk

android-10-x64

8

6ae13257be...18.apk

android-11-x64

8

Analysis

  • max time kernel
    108s
  • max time network
    158s
  • platform
    android_x64
  • resource
    android-x64-20240514-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
  • submitted
    23-05-2024 12:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6ae13257be7b6861d68943eb2a95eace_JaffaCakes118.apk

  • Size

    649KB

  • MD5

    6ae13257be7b6861d68943eb2a95eace

  • SHA1

    f76ed6e06e16307a3db88bc7aa05644b3927d787

  • SHA256

    0fc6d8af79195e401d8bf92352a96df8455390cd8572ab057bd8f5c030a6c052

  • SHA512

    f9ab18f133bbdd4702b2d723f4da517a93a511e858cea77bb777f2e6624986c792a344204d9b21f58da882a4f009545da13d98d610363f04aa1907f5c6608de8

  • SSDEEP

    12288:xw6TfQpveQAQmQVAu0rA+gXP9NrhT5v2/26UBt4s:IRR/VMrA7rrhTx2+7tz

Score
8/10
bankerdiscoveryevasionpersistence

Malware Config

Signatures

  • Checks if the Android device is rooted. 1 TTPs 2 IoCs
    evasion
  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Checks CPU information 2 TTPs 1 IoCs

    Checks CPU information which indicate if the system is an emulator.

    evasiondiscovery
  • Checks memory information 2 TTPs 1 IoCs

    Checks memory information which indicate if the system is an emulator.

    evasiondiscovery
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery
  • Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery
  • Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
    evasion

Processes

  • com.gameloft.android.ANMP.GloftFBHM.installhelper
    1⤵
    • Checks if the Android device is rooted.
    • Checks CPU information
    • Checks memory information
    • Queries information about running processes on the device
    • Queries information about the current Wi-Fi connection
    • Queries information about the current nearby Wi-Fi networks
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks if the internet connection is available
    • Listens for changes in the sensor environment (might be used to detect emulation)
    PID:5176

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/pri_tencent_analysis.db
    Filesize

    44KB

    MD5

    c3fe737dd72119d803372a8419d298a0

    SHA1

    8eed042ccdcce5bcab2734b12fb2d3f763b8f6c4

    SHA256

    d904dc24f52421231fa085948bd22608d4f5a10d6090ae9f78140a8e5c760bf7

    SHA512

    4c15800b06d515b5cef7a1d932f547aa40563544fdf40b995c18d16553b7a888fd11ffaf4753d8ca1f71815cdc9b8e89b774c52556d3509bb116f126c3443afb

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/pri_tencent_analysis.db-journal
    Filesize

    512B

    MD5

    20b6bd5ac1b94b6b20c09927ff79a069

    SHA1

    075ada2cb7fc424297b34c3ddf23ede1452f9abd

    SHA256

    4564f3e9f8733a41a2d9b55f4fd74ef5b7adbbd08c2fa98a806a4c64d7bea472

    SHA512

    94a3826e2b907ee63e9b86bda9fb1cb0e53716d91b1269e954037b8a748b68adcfc0a52dbf6ce35a2296bb462bfa5901eac787482aac77f96079f2c1e1cf73d8

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/pri_tencent_analysis.db-journal
    Filesize

    8KB

    MD5

    eea25bdc030cd36bbc5a80782347742d

    SHA1

    2f1f83800b443d04276c2e4ae9fa53eeb41feae1

    SHA256

    f15f63e61fc2473c3654e730501e3759410ddaf12f355a53c324a95637f0e37d

    SHA512

    3583c7ff098fadd5c1602ae57e27bf58c760153258b74e85f9a630610d897f90b5b68b1328cf021db61baad3671d18413b391a5f2c3a6ee94c4f468c2e520c03

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/pri_tencent_analysis.db-journal
    Filesize

    8KB

    MD5

    029327f986339c6afedb467853b85a8d

    SHA1

    cf0c282fdc6faaf199ebc6928fb223c1b147405a

    SHA256

    74431544a5497814f63dbe99856e4241a612fa0cdbf341a0b0745b7a79cea37d

    SHA512

    437e39754932441d88625db44f2101aeb0a84a4d09d53a756ff07f8be9f84bb3db9d312ae448816863221d6b547565c926b1a04eaa2b9d1183ff3f1d00e934e8

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db
    Filesize

    44KB

    MD5

    75a8670a67145030ed488ebc5804bd84

    SHA1

    3a58bc59e0bf2ca2bc9950d1851d84cedec912e1

    SHA256

    8a73a9ede4d76de22b1b72fee487075ff5b801a5a8c99f296cdd4f5579169358

    SHA512

    ef8e8e59c2a440a37c66fc3edb3084c7b6cca679550dd128236b2f6943e6170c481085e49a9653bb0e958780b4542ceff670ab60640205c06e8c9a11a32b1eb4

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db
    Filesize

    44KB

    MD5

    ffc984f1686a0278df3492704c2f8340

    SHA1

    e04a41aef2261279c269e802645e819a84ced967

    SHA256

    4f1d5b1e4ae29d8191b72fc4c775aa1de2d5dac791dac2238d754c865dbcd27f

    SHA512

    9ad4235267f9ed6278928e27f52ec8d318ff6451c0c28ad0e0cbfc67a55a8c9f73325f93a9c3a308db3f400e585f36af96a569798cb7e62b7d09ab280a5418aa

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
    Filesize

    512B

    MD5

    0e5aec32c9df4d9429989eb66c9bbd91

    SHA1

    7bc54fb9425ca71108a7223559e0f0d58bf4a071

    SHA256

    0b5c2d5b4d335808c735d5a65f85fd19c34029c21b85c09f7329e5bf03b76d9f

    SHA512

    0a8786ec8de8632ea92b43edce2829b6fc97d1b0833ca6fc32c9ab3bca9de08e406ef0aea1a986bf5ede5bcb5279dd648ee38f42a921fbc94cc3465cf331c693

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
    Filesize

    8KB

    MD5

    78eeef240594c0900713eda61f8fc72c

    SHA1

    e4951c3050ed7ba867b18f8077cbc7dfe518a54a

    SHA256

    0fa3981ff4381925d941498184e954b655ab4dabb44350389f639ad7498bc3c7

    SHA512

    9dd5ccb287f4858634374be3c219c8882e735808069a968b5103d5e950a70f3bd56ba0d0bd9990285ce672cc115ad9adf5ee70733170a5440a01f38adcd920fc

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
    Filesize

    8KB

    MD5

    5e670e3d5e990d901457f11012311c2a

    SHA1

    a981e3d2e110c415db092c380097892f79a8034b

    SHA256

    9013b9bd4ca126af808febedc984a8a11d0cc8017edc371f3b7187c9ddbc5529

    SHA512

    99eb162f19d1569e5ed1858c3d75b0552abeb56462cf532c240f6be13185b69f42141b7ccdf2b46bd676b026e7bb556ea311af3e219212f46d9f623caf55f619

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
    Filesize

    12KB

    MD5

    14cfd46c685f6dfd7333dd254582da5b

    SHA1

    b33d9fd0c619356da96a497984a86f8d656fda98

    SHA256

    16fb8055c1ad0e2d87de55448d72a38a8ea80df73f7ba1c54a6c522937c614db

    SHA512

    c905cda1149df15a2768e16b7738df0f2e95d99209352dae1b0624b419674b25953b7e3d243ec8c547a765d77af6db6f12deb322a4817ccb9c318c39ddcb5295

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
    Filesize

    16KB

    MD5

    8c6143d8b3cc068e3b6f9eddfb963d91

    SHA1

    8762e8249eb37ad63217e36808267814385150ff

    SHA256

    0ede8cdcc5cd717d0c0c7bbb0ae55e6b318a3dbc7efbf0bd3520e555eb3a2f01

    SHA512

    dcea8726cbc734e64e8b96fe0fce676b5bdf52975c5546e1c1804a66af899be8ec4ad7cce3eece4a31abba60e3cc34efe495523885391b021ee2678818ad60f3

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
    Filesize

    16KB

    MD5

    674fedd7f1c249e85e95c473d705fdc1

    SHA1

    72d5d42f2e9bd2d8bd2a574597b7966c145ba843

    SHA256

    1f7a722c5a083186a132d82dbd9d05a5cc5492a8daca665498b4e6c6f5d73c12

    SHA512

    cd7e705a1636cb830d5fd927690b39c2dcf4bd6602899e68840a84e0c4631e97ef8482b406f4af217858d386511b2cdf971f5ec13d57f07a142d379c31766821

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/.imprint
    Filesize

    830B

    MD5

    9bfcd188d886cf34aa68610ee027e6fa

    SHA1

    5c012c046bd07147baf3bae26c9f02b980b0f415

    SHA256

    eb6fdacebcb06b07619937b8a8cbac3e64c73df7383a4cdc0712682850e86e55

    SHA512

    a69c2ef6cb7ce89c778d270606d21acf36515a7c03c49fb2a38975ce0a4facc4360706087a6652ea3811bec8f2fd80797be8371895caa7104ba3be0b29b75758

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
    Filesize

    20KB

    MD5

    5c955eb8f918849babf61dcf8f579be3

    SHA1

    ecb9b60c850d9b77a0932f4d8758dcd0b6d53bc8

    SHA256

    7a93d965efb808f1dabb7db03efb24fb1d8192a6882cebe5608845985d25b5e8

    SHA512

    66f364ebf9a43f8797cc6df1df67ac9b86d3ff80b7d7e99b339f8b9a09fceea38a4ad7864372208e8c40bb730f4935bafdc02f0b110788d5e92dc6244c079d63

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
    Filesize

    24KB

    MD5

    0489d5b85822ec4a41da96d9ea1cce33

    SHA1

    5e6d1340e668bacfad66279f923f591f14368a38

    SHA256

    55756a4873c8cfa25ae5402997c404a9594b3d7fc49f14c7cd7881f6113dc9c2

    SHA512

    7450bd27f1bb0f9e7285e86e6c135450a2059394f08f0449b9b6f0621a598f1a40a961cfb7442aca57e63a80db2ebabb61e96bf0512d759042358d6fb9402072

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
    Filesize

    28KB

    MD5

    f53cccf4488c55cec016966fd8461e24

    SHA1

    962ebce41a357da64efd1381dce8c9c9f92be2df

    SHA256

    341e9b9384f02b07b5b4b4a66e4c271e750739c871d2d25983bb551fdb550d28

    SHA512

    3f3267b7ead4a6b3d2fd0dbc9e69808ef9f211ac14fb2d46b2afad3ca58422a4fe216dc8f8efd5938b742ca97daae52d009f74b2f781eda71132fe1f10ec6a13

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
    Filesize

    28KB

    MD5

    0613fab6aa80c38338d9152c9816b940

    SHA1

    786718e36a937646701470f9a3c769e9c20b3c5b

    SHA256

    c431fe8d26089d837b3645060d796f8c413dccee01a23b6db23b75725759d591

    SHA512

    90554f3b7d43d5e64bec2d1e7c3046e3e8c25e81d3714e9dbcdafd56e37c55484f3d185b631e3ecc39d2e7fa8dd7dafd14b23148c67041b95b7bc80cc46b2386

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
    Filesize

    48KB

    MD5

    b6b7d7389e351b307a177d626f252887

    SHA1

    f0503354035e5376fe11a7f9f8ec8cd0f303c4c5

    SHA256

    3500028bf311966c20b528317c2560f9abca1a32af0177c2ec1aa90a0f8fb7d9

    SHA512

    6dc39b2de60b2a1a98e606c0e27c0a3b9b6e9646f5506b540271aaabdd39cdbfa64b45687d28324fc47e6b0a5fc0f34e42056f0b601e3cfeb956aa2b9adc0531

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
    Filesize

    32KB

    MD5

    f63801a7c15aefc466a9f9f60f6f37dd

    SHA1

    80ef2791b0ec8fbebfa3b851eb958ed5433e2529

    SHA256

    65ca5a0cf65f0510e225ca2057765d724590c98759ccfb0991c22945eccdc626

    SHA512

    39ba7e38bc56f595f66d40f8bcc6bbcb65ec779b143cf838c3a4c0de88a6592f1d97580716ca2b766a531bce2ecfe4c8c65accdaf9149ffd6ffa04fa6a8f30ad

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
    Filesize

    8KB

    MD5

    c75eee1fd1fc8cce2bf1a22aed1e7b49

    SHA1

    dea61a57568d7bc5d451bafddaa980e9377c755e

    SHA256

    326f360bff59f960953df2a6711ec37826abe331e417a51bb1e7c068203b710d

    SHA512

    27945fad4a6e722998f9dd3624ff4f8e8258febc8b4ad8a69869796a373025e8a3568a519fcb465e71f5628ebe0a8257ac3b3cc24ac10d47bdb63c8de2d0f22f

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
    Filesize

    8KB

    MD5

    adb6c3bacbbd7cc8f8f908c53a35fec0

    SHA1

    7eb2c346bf4c951449706c3283c70dd0e077aecd

    SHA256

    748b8fa771b877528d571f0d51f4acac7d24ceafb04eb1997cb9877ad5d8ee03

    SHA512

    bae2a57f297ca7b64ef5b9c65fb8f1dab4eaf85b02cbcd4bfc129d622cc19e6ae64576f93876f0d782eec7f3c791c27a5eaddce31c2828f666a0dd046d7d6330

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
    Filesize

    16KB

    MD5

    6eb958e791922edbf668799ba8efd1ae

    SHA1

    87d328ce0f6255532224968155eac67cb29b59a9

    SHA256

    e200c96c6ec10ac1f1b622e29c07423a34ba564b6dfa7fb27cf18b55da657f53

    SHA512

    950e62edb7252d478683d295ada986e0da3dc9f4e7522cff1710a115b77dbb3f6a1248aa7a89383454484945ea1d46a4130e5389c843153b056902994538452d

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
    Filesize

    512B

    MD5

    44a051cf17bb69762b72f6a4a8b05e6e

    SHA1

    60343d293a679f7822a520123474280be45bfd2b

    SHA256

    a9c8d6b7ef6f2f854854b3b04f241f0b716ecf6fe061b038472cd9185bf038fa

    SHA512

    9ed98e2e1fcd8075c6e859cb0937e244ab1a3c91cc625131cb5f7c10d77df790952e75c2588cdae7c649fa9f2abc078fe0a277146be4b373548104dc098b3eac

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
    Filesize

    8KB

    MD5

    3275a5586ded6d871c24336e48948a0f

    SHA1

    63daba82ad8d7298ce502ed66a61e63cb2c97362

    SHA256

    23f5414ee41d0317e3b2318142450e80b5c619c6648f6228599056a76ca6394f

    SHA512

    1b966470213aad51c72869f753dd293664b647ce30f30cf7ee28be854f77a1f8a9c4a58c4390769ca3b22bdac7c5657b4f7961d844b3ac38bc1598d5f90a2fb2

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
    Filesize

    4KB

    MD5

    cae82d7c2cfc1efb5b13df0da5858829

    SHA1

    fcf63c7a79585e93529775c488b65f7ba940d78d

    SHA256

    006dc73738b8ebfa55a6ad8076874a7166c0f6a5208662ce3b1575212b580088

    SHA512

    e6ac24bd4da0b12b4ce55836fef4bf9af50b881d670d0e178edb43d602f1e1e77b35fa9e1c32ee203ff86ca4555b2a01fdd8ab055229ccba5fd8b43f3ff21b44

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/umeng_it.cache
    Filesize

    245B

    MD5

    35284b107702a8fc4601f99ec1368d04

    SHA1

    e0dc90e2c14902bba1218497066929a8dad817b2

    SHA256

    e67507598b813cb5465a62a0ad410878da5ebd1d04ffc2141518193a94d00030

    SHA512

    0030b114b0b744e9b372d5575e656cd583ee7c1e71aa43c7dbf8e292fbca57a1afd3a72e8805fb059b70dc0ddc6fe4243b3ff500699252970b4ee373b22b8255

    Download Submit

  • /data/data/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/umeng_it.cache
    Filesize

    125B

    MD5

    4c8fb4408a179e9f4edc2ae01bd3cbde

    SHA1

    64a9521def1487e63be894a9429e842b310f4125

    SHA256

    4e878fd4a18d00fd0b0e80cbddaf01099ecacbf9e2858fb2c737544528b43c5f

    SHA512

    9a41b56b3fb1e93a4cdeb130daf1b05f341139602dd889c9a62cadf1aafa853b30b9bd2a35007f7e309c2230c18a6cd58129d69b8f25a26688e6cc24c6b2e4cd

    Download Submit