General
-
Target
6d6cf0f0fed9aa783695289dda14bf88_JaffaCakes118
-
Size
1.7MB
-
Sample
240524-frpzysee65
-
MD5
6d6cf0f0fed9aa783695289dda14bf88
-
SHA1
61d9f31bc0a3e8f4d67457d341d48298d8f2f80a
-
SHA256
b64c2e06409550767937de8b575b1e12466df8c353af9164680d1a5c22e86f94
-
SHA512
88a0384fb41175f70ca0e8aff078ff4d0d4df1433f702f90435d8f82968f8658c39129a4acf26757425fb16b2257c4d04628c2cf39623930e12816c18b41da42
-
SSDEEP
49152:godDBp7vxFvkwyCIpBAQsozNIYVpUg0fWMr:fDn7pF8lTpvIYfI
Malware Config
Targets
-
-
Target
6d6cf0f0fed9aa783695289dda14bf88_JaffaCakes118
-
Size
1.7MB
-
MD5
6d6cf0f0fed9aa783695289dda14bf88
-
SHA1
61d9f31bc0a3e8f4d67457d341d48298d8f2f80a
-
SHA256
b64c2e06409550767937de8b575b1e12466df8c353af9164680d1a5c22e86f94
-
SHA512
88a0384fb41175f70ca0e8aff078ff4d0d4df1433f702f90435d8f82968f8658c39129a4acf26757425fb16b2257c4d04628c2cf39623930e12816c18b41da42
-
SSDEEP
49152:godDBp7vxFvkwyCIpBAQsozNIYVpUg0fWMr:fDn7pF8lTpvIYfI
Score8/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the phone number (MSISDN for GSM devices)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Acquires the wake lock
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-