Overview

overview

8

Static

static

6

6ae13257be...18.apk

android-9-x86

8

6ae13257be...18.apk

android-10-x64

8

6ae13257be...18.apk

android-11-x64

8

Analysis

  • max time kernel
    139s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240514-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
  • submitted
    23/05/2024, 12:04

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6ae13257be7b6861d68943eb2a95eace_JaffaCakes118.apk

  • Size

    649KB

  • MD5

    6ae13257be7b6861d68943eb2a95eace

  • SHA1

    f76ed6e06e16307a3db88bc7aa05644b3927d787

  • SHA256

    0fc6d8af79195e401d8bf92352a96df8455390cd8572ab057bd8f5c030a6c052

  • SHA512

    f9ab18f133bbdd4702b2d723f4da517a93a511e858cea77bb777f2e6624986c792a344204d9b21f58da882a4f009545da13d98d610363f04aa1907f5c6608de8

  • SSDEEP

    12288:xw6TfQpveQAQmQVAu0rA+gXP9NrhT5v2/26UBt4s:IRR/VMrA7rrhTx2+7tz

Score
8/10
bankerdiscoveryevasion

Malware Config

Signatures

  • Checks if the Android device is rooted. 1 TTPs 1 IoCs
    evasion
  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Checks CPU information 2 TTPs 1 IoCs

    Checks CPU information which indicate if the system is an emulator.

    evasiondiscovery
  • Checks memory information 2 TTPs 1 IoCs

    Checks memory information which indicate if the system is an emulator.

    evasiondiscovery
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    discovery
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery
  • Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
    evasion

Processes

  • com.gameloft.android.ANMP.GloftFBHM.installhelper
    1⤵
    • Checks if the Android device is rooted.
    • Checks CPU information
    • Checks memory information
    • Queries information about running processes on the device
    • Queries information about the current Wi-Fi connection
    • Queries information about the current nearby Wi-Fi networks
    • Checks if the internet connection is available
    • Listens for changes in the sensor environment (might be used to detect emulation)
    PID:4624

Network

        MITRE ATT&CK Mobile v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/pri_tencent_analysis.db
          Filesize

          44KB

          MD5

          d49d7954856af1367cc4234003f83406

          SHA1

          2b14125332ff63565c83027adae8d070d21a870d

          SHA256

          0cb364f2b8459fcb1c39c4470add3c267f86acf5484e6f5ad1494ec7bb3622d3

          SHA512

          290e016c5748d77d4abf604fd2d5ce15c5ec18c36c9e030487f7759fffe7410fe18f46d8335f03f7cd120b87b24f212929f6c585948859b69493fd6958b35068

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/pri_tencent_analysis.db-journal
          Filesize

          8KB

          MD5

          70e45366c755269eb43c92847bf700fd

          SHA1

          3cdf535b72e6a59a7991f1a00023370d25a1da9e

          SHA256

          f7684f4b18ecce5847056f229da3c26960da522501ebf63bb0c319ffed8f9d19

          SHA512

          919facb645e746353c69a0024eec9ca6a40b63887350927b04398ad06d28a4d1a31da944964591bfe156bdad5f7743c0ee69fe76a8a0bea6073f3d86ec2149c2

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/pri_tencent_analysis.db-journal
          Filesize

          512B

          MD5

          c8bfef68cefebe3f1a5003b208a24971

          SHA1

          4782a2ca6720e64d5c3b1b50760b81586c3e3134

          SHA256

          4eb2fb2235970fb8323633e351a56141afa303a807f4bac203b4f75835bccaa5

          SHA512

          7551a3cd8fe2953ece254ad7d2d6d7e67d4f862ecdf09fc7ffcf27f836f2c270fc31115723effaeeb6acd217b07698a136ec34f1a18ca86bc8a710c09c754b69

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/pri_tencent_analysis.db-journal
          Filesize

          8KB

          MD5

          a6db5b8dcd8d09f41788edf5553661a7

          SHA1

          56fa64d368fad7e90e7b03b6c67ac4bb4d0cc1be

          SHA256

          62eea2d01269982777de8d0fb758841a4edb4a3e1352c42f6dc35f079724755d

          SHA512

          648979741b56710ecf68971a4a8fdb43ee53f004804680ecde5cbd3759b376da8edded0758727863a60405600712bb002b2a2c350235031da1dafb031005c122

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db
          Filesize

          44KB

          MD5

          622d9d5c4f2922cab14ef9b3cb8c5a46

          SHA1

          6e42323549f830ac98a5c313e67b9693456b711a

          SHA256

          416cafc5e7710ddcc9114d6d246715fc1217f3dabf436646d950585cdc68acfe

          SHA512

          e1ba82f206818cd62aa2b91d3ccab3475f5725e550d68a2807720991daf99eb8170445c426d47aff8e22804399e678df7fe50aa6e495a5626106c1cfc7735e0b

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db
          Filesize

          44KB

          MD5

          24d7b56c1712a4cc0aa652c5f5661be1

          SHA1

          076cafd0636eec08e60d594173fe73131b5b477d

          SHA256

          2e04a24fbdd4367ea9e3ca9c185910dd33d9478f3106108b9ad8253fd85487d9

          SHA512

          728f6b68c59e4f516c8e9aa039f3d1cf410592d432daf58ad0ca80561fb26d485838a7048def598ea381a02b075e2ffd24602dc6ab026342e9361c3d61771d77

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
          Filesize

          512B

          MD5

          35a86ed82e6aec10dc3771e5a50a29e1

          SHA1

          7f9a0ae7c503fb40e89e534bf9f6a3de1572cdd2

          SHA256

          a3236e716d67e8f500aca250d821d74f2d1400dea56c4bd4ecc0146aeabbb289

          SHA512

          3abe29f8a872ce23996fec1fc7aa13205ce3a58d07942f6e812155713e331599d1abeea493fe15a006ab2b3735aaca3a3523688bc7c285e35e24499b34d8c079

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
          Filesize

          8KB

          MD5

          e39f1faa05906b7c28565113e793dc65

          SHA1

          9bade2023ac3cde8ef46b699d667d212d0748029

          SHA256

          598749b421dbb638fff4ba5c86197efc03f0b47b6e4df939fe7814d36d7ab111

          SHA512

          6af940638b7bb4edaba04464a3a409ee1fe043f6dba75f8f35a5ad3f85621d4e8033583e4fcc12c188c831a7ae0a9460b188dd287ceb81e215ef63d2eee27b2e

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
          Filesize

          8KB

          MD5

          0c820ef18426d1778743418a2b7a9cac

          SHA1

          0cd749fda0e1327dd43e432a95e86eee274730c7

          SHA256

          59d7c20c815e0668ec95c2fe0e9b5360c0540cd2ba1d2cbf7fc0b0db36751164

          SHA512

          00cb94568ff8bb5193fc6df6fbeae78b7c44f1430284c263f50fd285f990acde1048e5263fbe7e8a75ff8ac05ad3df47d0f436c0d981e428d0fab7da28a2616d

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
          Filesize

          12KB

          MD5

          07295b7fb7f023a8715917acdeb5e224

          SHA1

          7c4f6738073f625666ed513b8b85d54294d0b8b3

          SHA256

          2ec61723ebb8dd31a9aa3692413587b16ffe1365eff43abd3e239ef6b1764605

          SHA512

          025febd35e630ea273636ac2b7462ea44f9f73f6978ea543dcad278fcdbf3c90a7ae1c5bf078c1454816290cafeff67c20c5453703418bc85f2eee10d1647e42

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
          Filesize

          16KB

          MD5

          6a65eae46bde522fb3706a784e399e9c

          SHA1

          47217e810b3e4a6f4a953091319e845fd9bd025e

          SHA256

          a6683ea3b0bb1ce011936944a97178b74e86c25e2146c6a3aaed5804363c67fe

          SHA512

          d65e54f20bc70a0577e184676e52c858c8b1c60744619750b09f7cb58e1dfb56202d09189f61ea25fab640a5cac4ad2b01e1e6f1ad25f0535dea2d9da40e27cb

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/databases/tencent_analysis.db-journal
          Filesize

          16KB

          MD5

          03604643e137029370f3cead2a8c1da8

          SHA1

          6a287099978534ccef145f85dd2c9614b8661e3e

          SHA256

          dbdcc71d53b780811e7477a8b778c1ecb0827235905d0e2b50f54f52ad0b397e

          SHA512

          f8914bbd858e4a427e9528af8185c747898368079c2dfbd81c38dc9cba4bb27cabd9c0592abf91825ec487d592dfc8360dcede2b7f97ed2dcf57a0bef334ea51

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/.imprint
          Filesize

          829B

          MD5

          e9679da90dd4752e4525d4d5e5111a5e

          SHA1

          8875db7907aecc81d6acf2d19e30deb02b179058

          SHA256

          ec1dbbe505ab4239c6313efc249501912c0911259e195de89e82392d9fc68fd8

          SHA512

          7be6cc3988f4e7fd7275391f23dae592f0ab996ca74ba3802b5a977e1114264d5827ae586b531da3e0aafd73edbb22d1ec603ebad6ce0fc29a5517686d282a6b

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
          Filesize

          20KB

          MD5

          6c33fdbab3ba12fb330b03d5a0ef7519

          SHA1

          c2902116493f9f773df35905e74af54468d0d91f

          SHA256

          478011067e546918b0271833e514beea40d77cd561391d554f470ecc9d02ca97

          SHA512

          4baf90560600f40a81ee44b4f7207740bd17c05708826d30eb8bbdcad349c753d08ff9491b73c6b3c3f4edc1caccbedaf32eab9d50e248f11998cb72e9c1ccfa

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
          Filesize

          28KB

          MD5

          5eba6609179b853a355a8e916f89d563

          SHA1

          62d062c375d64a6fa830718b6c6ceb6da1490797

          SHA256

          a08dd885c5bc5adb5af65b824606838b0ff670359a9b7d47ecf35f8e491c6706

          SHA512

          af62644b08b5ad2fc6d75a1351fce8fd9719a8fcaee8c5e6748e32d9ca0895f6095b419abae9ad29dd5654488514c0e3d2cc728f7d8b4d824338427c0c07c0bb

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
          Filesize

          32KB

          MD5

          d710d1d5c3360dabdbf10310ae7f67d6

          SHA1

          5255a96e4df23d99e1110f19f3bc89392f09f66f

          SHA256

          4e596e1c353c0a4168ec5a393fd881e3b539b33d584adac18146c331b92db9a9

          SHA512

          3f0c67c8990b95655e1668974ac8958b75c18b6a4cc47751c5a2edeb21514f7caf865d5a08449897614e931f6585d5e33257a60ec57ca48058aab2db22d8b2a7

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
          Filesize

          24KB

          MD5

          1c2d84bc6b485fedae43449d3c341e13

          SHA1

          05e5f5cb9f06b86d2fde52a9b515f216eaf51eec

          SHA256

          5c37562b3b5dd9d77301113f98bb78f010cc00aa239a49feb46f014c1e9329fc

          SHA512

          bd7a38d30152d3fb7b0bd4b8ac490a42b85f93e0dcd8582471e80b8da3bfc522753d4eade5646d1353fed455316b71fc0edca4cacac5eebf4cfcc7abd26a7951

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
          Filesize

          28KB

          MD5

          0c865fcf3198154e769d565aa3c81c8a

          SHA1

          058e89e50d7823966bc90e25f36fd03cf632bcc9

          SHA256

          f6793d10083c04ab19f70cb5ced2eb17000b447bb943ea791f5de55699d33ca6

          SHA512

          18a32befec8f653ad21dc3deffe2b9f31551585941f7d01bfe85c65884f2bb86baa0c83e4162ea588cac854320c8cc02126540c9cda3c7fa1e596b64f837b073

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db
          Filesize

          48KB

          MD5

          291e894a24f8b3513bad952a2e7b9638

          SHA1

          3f26e4a14ba174b7ce735fdadc420e739a17c4c3

          SHA256

          3bb38b611fc61342b3f7cc5c401fe5c56eb0d15f22829de54f73559b996434fc

          SHA512

          4d13dd72968c8440a21b63dac26c61734b4f777aba5639fa90b79103b1995c47700a44fe69e7fa240a4307a8ec8e4c421c63154cd3ad66839e126b622f1cc35c

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
          Filesize

          8KB

          MD5

          a858edfab861c6c14bc48907fcbfdd9f

          SHA1

          b958f171f62388acc485ad592c2a20cf54d634ce

          SHA256

          8280484e4a3b5e53f02c0c71a22ad6f58fd66e037e8378acc25ef25be535826e

          SHA512

          dca5c1b92c2e47c82cbb42bf5c5f3a337d8ef1cec6afab4ec0e8520da3ba98c7e4cb851115c372d98ed62271c55c2960cb28a9e72ac3ce5ab4110eddbbb6490e

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
          Filesize

          16KB

          MD5

          49b2c95d52a3f3ce9e44bb4b14a7e377

          SHA1

          528ea01dd95786da8c03f08c398578bfa9714e85

          SHA256

          ab24c51bd748e9f48d4ee87af664f3dea17797c05f3741ba895279abb1e0ae9f

          SHA512

          8bea7880991a7a906ec13778bb486b6675fa4e7e9879a4ad5456e284ae261db62fcf0f72168de4ac28f8c8379ce879bb22f23d6a28f1d93860c2c5f4e6642b35

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
          Filesize

          512B

          MD5

          7ed352974ac77e5c2e187d612285627a

          SHA1

          69b646955a76bee0d880e849e7f365c25f2a327f

          SHA256

          f6aec7c4db204df6a6b92d21e3abe8a805d444a24aef9d6cf72de7e3e1a9ec04

          SHA512

          fa5a0da6b47c5219d478aba2fcb4362a43596ab03e028c9dd3585fbfbf66af90d57564734942716aadc292e4debab7198558a88a2865a1b0875055a11e2e5887

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
          Filesize

          8KB

          MD5

          60afa40b27479f2fd366b01fd9ddf3ed

          SHA1

          c8bf230b29140c5ada28bd30c970712ca4d1df16

          SHA256

          a98f34ff96a9fa382b6610025f7d2bbc4e4339861066758598c0fdce145271b6

          SHA512

          3542665486e67990de2a8927373b7a9a506121200c73f323aca6c881e5ba66c5ebe643a4421499717f1de72e4e840d2dfabf9ff2d8fd3e53baaba5f24033747c

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
          Filesize

          4KB

          MD5

          8617957840b06fc3155903b33047fc62

          SHA1

          a78649d6e9dc7aa49f13d07b7cd2806197d46637

          SHA256

          cf9d89514b2bd9d1bf7f99e70c26bd87aecbbad0d84fce1d4ee3fe1b6efebd60

          SHA512

          a5384b1ee0270b80ba2b76b2104013f11f96c475f48874d5bdcdf7da5f237989b68d0052eebedee76029a5194afc9bf9997925d1ad00953311237342a44cbe05

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/TDtcagent.db-journal
          Filesize

          8KB

          MD5

          f0ed4dc5965766bfb43289062f89fb38

          SHA1

          d52fc8c7ddd8c7f5324ac94c74ae69b75d11695c

          SHA256

          37e80ad750ce0703e8e61c6b998f619e6548c340a03b0f7b378e2682329363f2

          SHA512

          afc0acd4f324754f5b16c397927db409144b94a793a163bac7a2fd9ee47367b971c69ebad3bed2c9211d3bbe0e61d52540b9103f05df1fb267e22d2bd0d6e35d

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/umeng_it.cache
          Filesize

          245B

          MD5

          25c305673f77d7627cc2a8a3d48fc4c0

          SHA1

          db2e82fdd8c1b4c1468fdd3eac6d057189406450

          SHA256

          f5252f0d825ae86e02054fd9de5fe42cd3186de85c265699043c5a6ddd7ee394

          SHA512

          5bfcf429f5c45da450c6729ada395c3c6b15045eef0532af1746956c09b5d0c33a6ffffdf82e766a67ef4a6373c066de7c16fa71d7f134984c9acfb247562e98

          Download Submit

        • /data/user/0/com.gameloft.android.ANMP.GloftFBHM.installhelper/files/umeng_it.cache
          Filesize

          125B

          MD5

          986b10a3e3abbab4fa541c2b05c26a68

          SHA1

          501985d2dedcef995037e52cccc183421f8d8ccb

          SHA256

          7fa77b86ea539371468831eddb4377a1f3865ecbdc433a4cb95315278c2ca9dd

          SHA512

          21786de7dbc71a1080417610273c8f5f72f3e739e63c4ba6bf693d24649f723f17ef91356f8c44ca18be70736a89cc230cce9ad9a1e2eb07394e8ed34bcdc977

          Download Submit