2f7b1171f34fe432f6b53124b09637e1240a05156cc073f526defd0fab923c56 | Triage

Submit
Reports

Overview

overview

8

Static

static

6

6dd69eeb6c...18.apk

android-9-x86

8

6dd69eeb6c...18.apk

android-10-x64

8

6dd69eeb6c...18.apk

android-11-x64

8

Sharing

General

Target

6dd69eeb6cdcc9229d1ac79e4926b0d6_JaffaCakes118
Size

213KB
Sample

240524-j1wqmsag84
MD5

6dd69eeb6cdcc9229d1ac79e4926b0d6
SHA1

dc9932040c4413aed837ba6311c8442eeb7f8715
SHA256

2f7b1171f34fe432f6b53124b09637e1240a05156cc073f526defd0fab923c56
SHA512

5c585ef375c76e941e110b67664c1dc548f6606d86e8abe00bec3cb50ced6b9c6bc9068560c17c1d8b13849b87c65887ed13694c827d20b0572a289b0e8e5d77
SSDEEP

6144:fIb/0szi6yig4a8dHtVIFXhYoBKSTrfI/+NE3Muiw:wz0K99xa8dHb0XioBlTrf0F3MTw

Score

8^/10

android discovery evasion impact persistence stealth trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

6dd69eeb6cdcc9229d1ac79e4926b0d6_JaffaCakes118.apk

Resource

android-x86-arm-20240514-en

discovery evasion impact persistence stealth trojan

android-9-x86

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

6dd69eeb6cdcc9229d1ac79e4926b0d6_JaffaCakes118.apk

Resource

android-x64-20240514-en

discovery evasion impact persistence stealth trojan

android-10-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

6dd69eeb6cdcc9229d1ac79e4926b0d6_JaffaCakes118.apk

Resource

android-x64-arm64-20240514-en

discovery evasion impact persistence stealth trojan

android-11-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  6dd69eeb6cdcc9229d1ac79e4926b0d6_JaffaCakes118
- Size
  
  213KB
- MD5
  
  6dd69eeb6cdcc9229d1ac79e4926b0d6
- SHA1
  
  dc9932040c4413aed837ba6311c8442eeb7f8715
- SHA256
  
  2f7b1171f34fe432f6b53124b09637e1240a05156cc073f526defd0fab923c56
- SHA512
  
  5c585ef375c76e941e110b67664c1dc548f6606d86e8abe00bec3cb50ced6b9c6bc9068560c17c1d8b13849b87c65887ed13694c827d20b0572a289b0e8e5d77
- SSDEEP
  
  6144:fIb/0szi6yig4a8dHtVIFXhYoBKSTrfI/+NE3Muiw:wz0K99xa8dHb0XioBlTrf0F3MTw
Score

8^/10

discovery evasion impact persistence stealth trojan
- Removes its main activity from the application launcher
  stealth trojan evasion
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
- Checks if the internet connection is available
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

discoveryevasionimpactpersistencestealthtrojan

behavioral2

discoveryevasionimpactpersistencestealthtrojan

behavioral3

discoveryevasionimpactpersistencestealthtrojan

© 2018-2024

Terms | Privacy