Analysis
-
max time kernel
3s -
max time network
176s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
-
submitted
24-05-2024 09:59
General
-
Target
6e203227ec57ebcc8d39e7eaeedebb0a_JaffaCakes118.apk
-
Size
14.9MB
-
MD5
6e203227ec57ebcc8d39e7eaeedebb0a
-
SHA1
23070a52ac7eb9a8454af90bda2348eb3633c4a5
-
SHA256
e62ccc97b7ee139ff4ce6034efa91cddddd9e5693bb899f938a043cf771ffd9b
-
SHA512
5a46b6f40e818c27c784477df2a0470a8aa9650cbf71000b0fc03e20d5bafaed4535825a5e0a4d5eeabff66637701323996c3f23f890d651b45458a54a5e31ad
-
SSDEEP
393216:sJ6U9lA9hiTdE0hLa4yzqfCP/VZVhsS/jRTQfEC5k0WIYmC:A9lA9chmCcckKP5k3IYmC
Malware Config
Signatures
-
Checks if the Android device is rooted. 1 TTPs 1 IoCs
-
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks if the internet connection is available 1 TTPs 1 IoCs
-
Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
Processes
-
com.jukun.yazi.game1⤵
- Checks if the Android device is rooted.
- Requests cell location
- Checks CPU information
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Listens for changes in the sensor environment (might be used to detect emulation)