Analysis
-
max time kernel
94s -
max time network
146s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
-
submitted
24-05-2024 11:02
General
-
Target
6e4799ab938068599bd993e79a145298_JaffaCakes118.apk
-
Size
3.1MB
-
MD5
6e4799ab938068599bd993e79a145298
-
SHA1
6893c9dd45a70311313d83dec12f919519e94e79
-
SHA256
7bf943484defa524df2f1907f52b9bbca8656d716efb9dfed8e581501e0fa9cd
-
SHA512
602c20243b6b73251d8d54a2022ba6a5f431baa90fa60ef6c3f9cd2af62730dd857f5f82b104addcb7b6614f5161d9e4506f8cbe877a498f6a0cc0402afd061b
-
SSDEEP
98304:+Lv0jcB/u3eccmROZEostBwi6KcOJoCdPTEmqY9lcQmXN6nc:ImHjUstmiLcOaY9RmXv
Malware Config
Signatures
-
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
-
Queries the phone number (MSISDN for GSM devices) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Acquires the wake lock 1 IoCs
-
Checks if the internet connection is available 1 TTPs 1 IoCs
-
Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
Processes
-
com.cng1⤵
- Requests cell location
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Acquires the wake lock
- Checks if the internet connection is available
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.cng/files/E2FDAA28C7344D2F9FAA4A0FEC1296AAFilesize
118B
MD5513fc0640f933f6f9bbe0ced93883b43
SHA1db57237c0adf935833a542552910a42308b6ce7c
SHA2565c594e2549028175020e28fc5fb5f594aa104cc6970bada0fda3f922f2287e59
SHA512632ad5d34e4aa2e4543469e45cc41726f33385ec1239adb0a5bd4fce4d9bc641132a8a33f972905a72f801da3423333da54b45db51bead2866e6298f080147d7
-
/data/data/com.cng/files/E2FDAA28C7344D2F9FAA4A0FEC1296AAFilesize
118B
MD585422917b1bc350c54d547f20658fd25
SHA1502b994ebf4e5b6ca217f53ab43d560bd8ed69e3
SHA256aa19ab378212aa1ca1efd84de32f8d55a927095c612068e57bb468c8892d13f8
SHA512ab66d4af28971a7e2a33b462563e033e5bd5ada28e1e380c78daa9ac4e5839c61e3da613b651c9c360c6e5e578e9900d4cf2cd2a6c2efcc0e9ea6cefb5ab6563
-
/data/data/com.cng/files/E2FDAA28C7344D2F9FAA4A0FEC1296AAFilesize
118B
MD5854dcfef826755908dc0189523aaf87e
SHA132c703ff2d44a417b5a8bf8eaeeeb37c5553d3ff
SHA256890c8f81487a0d87f6a10dae9c92cc99b0b495cbb0db577b1034505730b88519
SHA512ab5390e40ca55fe098d83f35ffdbbc5b20c9d6a7429943111bd092afbc02471317e187e23ae344dd393ef388f1e775dadf24243858395702a50c556bff2daac6
-
/data/data/com.cng/files/E2FDAA28C7344D2F9FAA4A0FEC1296AAFilesize
118B
MD5e066e85516f0308e2f8f005fc4d0b06e
SHA1fb64c2203a498cd0f6c2a9c106c7b09f0c671e5a
SHA2566442087808e84a385d9290609883713ffb778904f2413ce9258b7928c76eecf8
SHA5123dffc084b76bcdadb7589ef4d90b280e9b99316fca90e4d6eca7bd0455a6f2eee8c14e0a474238eae69e1e1ebdb73c73cce8afa563df77b9f6e4f066e1b87fd1
-
/data/data/com.cng/files/E2FDAA28C7344D2F9FAA4A0FEC1296AAFilesize
118B
MD5af12bdb061117afc6e35085a25d486fc
SHA18d3ba92e168c0bfc3720ecb7503ee89fd7d68dbe
SHA25685aff2d9d20da34e0adcda8edfe7d353518cea5fbbd9d41bf53c52e54f937b5a
SHA512528e25b848682af3efad263e4872b844d5f39a4177ac8d0d6d7e7679f81c30c18dc950f3b21f6a9da8d83b5d5ab1383673d88f4cb9f50c07ac0a50d4f91a116e
-
/data/data/com.cng/files/E2FDAA28C7344D2F9FAA4A0FEC1296AAFilesize
118B
MD557398e6c60768d6a86734588a8e1ab59
SHA14467ff6cb127624516f24fade1203b4936ee493a
SHA256d14e8a773ab82601cb9afcb6d77ced29739e9b4267da0c6cdb09ac6a18df9150
SHA5120ab3b589376eaa248f7c95298ff3cbc5dd26e4c5f05811a57705edc8e0bdaf8acfde7d9e08be6b1137bdd7b0cc8d40db61706a05bd1a0501bfab5c167d302c28