Overview

overview

7

Static

static

6

6dafdcd16e...18.apk

android-9-x86

7

6dafdcd16e...18.apk

android-10-x64

7

6dafdcd16e...18.apk

android-11-x64

7

plugin-deploy.apk

android-9-x86

plugin-deploy.apk

android-10-x64

plugin-deploy.apk

android-11-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6dafdcd16ed9b1de12d941c953bbcc5d_JaffaCakes118

  • Size

    859KB

  • Sample

    240524-hvthnahc6z

  • MD5

    6dafdcd16ed9b1de12d941c953bbcc5d

  • SHA1

    384706a68ce01681195c93df8218ff5fb8f0b4ff

  • SHA256

    c0ad8207d3bdeacf36dc9ba2fa24f12c843a683dbfe7a23480477e2063d9d123

  • SHA512

    217c9944a065fbaccb7063d43266dc54c41344f66641439bacafd589174b066409c33877d8e5af330d83d9bc69632c7ce4488db76b0e0b03f41259d93078d7cf

  • SSDEEP

    12288:z25RdddddIG5ojiW5HpdaTrxi1gmPLiqOU5ZUWWcZgk6vacVpLJNtcVJWQxDAFja:iDAiGHfav8zTrWtdCJ/DAFjQGPfUTgg

Score
7/10
androidcollectioncredential_accessdiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      6dafdcd16ed9b1de12d941c953bbcc5d_JaffaCakes118

    • Size

      859KB

    • MD5

      6dafdcd16ed9b1de12d941c953bbcc5d

    • SHA1

      384706a68ce01681195c93df8218ff5fb8f0b4ff

    • SHA256

      c0ad8207d3bdeacf36dc9ba2fa24f12c843a683dbfe7a23480477e2063d9d123

    • SHA512

      217c9944a065fbaccb7063d43266dc54c41344f66641439bacafd589174b066409c33877d8e5af330d83d9bc69632c7ce4488db76b0e0b03f41259d93078d7cf

    • SSDEEP

      12288:z25RdddddIG5ojiW5HpdaTrxi1gmPLiqOU5ZUWWcZgk6vacVpLJNtcVJWQxDAFja:iDAiGHfav8zTrWtdCJ/DAFjQGPfUTgg

    Score
    7/10
    discoveryevasionimpactpersistencecollectioncredential_access

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

      evasiondiscovery

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

      evasiondiscovery

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

      evasion

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

      collectioncredential_accessimpact

    • Queries the mobile country code (MCC)

      discovery

    • Registers a broadcast receiver at runtime (usually for listening for system events)

      persistence

    • Checks if the internet connection is available

      discovery
    behavioral1behavioral2behavioral3

    • Target

      plugin-deploy.jar

    • Size

      410KB

    • MD5

      1ed16b1d3282f62f77248719224a465c

    • SHA1

      9c2fa945dd3e94cab3670e833a09d07d3107ec71

    • SHA256

      ef9892398b431dceb1977e3f47459f47f9981472fbc3be44995164e4e4473b3f

    • SHA512

      bb08f2b9cd7deb3650f495c60650d7a916d60b1b8a7ee8c995e7cd62afd2eb80dbd3769e61ce63b89d5c358343dae63e1937d715621dfde19840884fab85d764

    • SSDEEP

      12288:VoTejh4kmDhFLi6O89ZUCWoPZ9dk6LwcV4dRDR7mi:VoTIqhhNhWGjAlsi

    Score
    1/10
    behavioral4behavioral5behavioral6

MITRE ATT&CK Mobile v15

Tasks