a5db07ed51eae66000576339c4ddd5dc6c47c2b1cb354dc1d070d52d56603006 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6e986557a7a3d99af53844668f8d2894_JaffaCakes118
Size

31.4MB
Sample

240524-p8ae9sec28
MD5

6e986557a7a3d99af53844668f8d2894
SHA1

13f84263957eb54e8762d4c87c19ff14c703a3af
SHA256

a5db07ed51eae66000576339c4ddd5dc6c47c2b1cb354dc1d070d52d56603006
SHA512

d5d1bc393642f08545eec12cbe948aa9fb680fd0fe7f590880ef1a99e32e0b425744e1fad120b91865224fdd042dbd8d5d0c807bd83d91f32659e2390f000ac8
SSDEEP

786432:oJEMvs0BPmNE9zBvRfV+UGDmwio915uhoU+gZtGLmWX9EkLY6Vxr2xnB8NJoL:Is0hmW9zYUGKw9KhoUCiWX9EkLY6VV2H

Score

7^/10

android persistence

Malware Config

Targets

- Target
  
  6e986557a7a3d99af53844668f8d2894_JaffaCakes118
- Size
  
  31.4MB
- MD5
  
  6e986557a7a3d99af53844668f8d2894
- SHA1
  
  13f84263957eb54e8762d4c87c19ff14c703a3af
- SHA256
  
  a5db07ed51eae66000576339c4ddd5dc6c47c2b1cb354dc1d070d52d56603006
- SHA512
  
  d5d1bc393642f08545eec12cbe948aa9fb680fd0fe7f590880ef1a99e32e0b425744e1fad120b91865224fdd042dbd8d5d0c807bd83d91f32659e2390f000ac8
- SSDEEP
  
  786432:oJEMvs0BPmNE9zBvRfV+UGDmwio915uhoU+gZtGLmWX9EkLY6Vxr2xnB8NJoL:Is0hmW9zYUGKw9KhoUCiWX9EkLY6VV2H
Score

7^/10

persistence
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2
- Target
  
  com.skymobi.pay.plugin.advert_v10007.pl
- Size
  
  397KB
- MD5
  
  1b056d9760a74351eda29ab4c256962b
- SHA1
  
  d8df92d23126717d66c902dc73872c0a2a59b69a
- SHA256
  
  667e9e8fa56a1afdcc2e4be05203dc78f2695e55ea2a60e27374d57b8bf18c76
- SHA512
  
  b90029bce4fa1772af06ec8588164e8b9845fe6b0bbb86d3f73a7f3da97b57d320e0bdde87b6556651ae391f8a5fb2c885dd8358c78ab4f407672b631b41c8cf
- SSDEEP
  
  12288:10EfKQm4KJ4SRcEKAipz5PycIvdVIWP8HSXJt3:1VKJyAA5PycKzPsS73
Score

1^/10
behavioral3 behavioral4 behavioral5
- Target
  
  com.skymobi.pay.plugin.main_v10008.pl
- Size
  
  48KB
- MD5
  
  d46532ee0fea6239ad10c592ea0cb4ec
- SHA1
  
  04f456ffb2eae23188075998769e687ffafe4bf0
- SHA256
  
  97d0356c8517096c447c2fb34c97588e0fb76186341715d9f5897432cc66e3a3
- SHA512
  
  f60a7713deb0d4020e675b4e39fe7a2d667f0e4ea88c3da5bf19931e0b3e18a7bf0912bcdaaaa6b9439f313ebbcac53920d6d72d9f2ec006b1db4669d67fd127
- SSDEEP
  
  768:zP8SLTj3+Kw/BITfe1ZzEEzJHaItB+xZUBEXURlLR9I2BftGeoHZ2kBcNG:bby/BI0ztaItoZuEkfgaYvBcY
Score

1^/10
behavioral6 behavioral7 behavioral8
- Target
  
  com.skymobi.pay.plugin.push_v10005.pl
- Size
  
  47KB
- MD5
  
  0b298ad2929f7e367ecbf9b15f9a3411
- SHA1
  
  d71e8f1784015b3b2ec88b088c13da846ba8a951
- SHA256
  
  8c264b6756e42ca06c7b8a7e7a6d2225bd9603dd09465ebafcd41c5be2c889f5
- SHA512
  
  5911c6c42565a4b30687c7a3c483be3e8cb5478c74c751fef273210f97387d56580055afc53069ed33bc6863c508067fe59236ef07e29952c717d53373008506
- SSDEEP
  
  768:JtFfn/2jzH1GTH6Ppv7J4Ma8FMYiclN8zbeDJW9ZN8RUoQiqh8canLW:JtVn/yzH1Gapv7JrhyYiclN8zfN8RUP3
Score

1^/10
behavioral10 behavioral11 behavioral9
- Target
  
  com.skymobi.pay.plugin.recordupload_v10008.pl
- Size
  
  38KB
- MD5
  
  79f0a72b0a71d99dc3949b1108b58bed
- SHA1
  
  14daec5e964c153c43c4ac559f194a08b0945d8d
- SHA256
  
  38f4d4b7894ece9feb353712ad2c143c2b8b9a2c358c30b0b3dd88dbfaf11329
- SHA512
  
  f103cb32705c76f083ce2213810ccfbdec7f861a723b2ad7a45b25098f8b0b26ca546a9dcd84f6fa525407cf1133a7178afe6b8fa4ab858a66a1aba6b5ee1e7b
- SSDEEP
  
  768:H15wISJP5+YhtkLeW9+jpJBh7h4QMaqedbpED13UtOkZ5PRTD+cirMElv1PFF9/9:V5bSjkLR9+1VvxHxpEDVUrJRf+ci4e1H
Score

1^/10
behavioral12 behavioral13 behavioral14
- Target
  
  com.skymobi.pay.plugin.smspay_v10010.pl
- Size
  
  243KB
- MD5
  
  ad80af881d61b2621ff35ac23a64bb03
- SHA1
  
  dcfd8d030a6cca0019a9bffcc71034da652c6975
- SHA256
  
  7ee8865641ef10822e311767453a26df04457c3e885a1d7e2f76b8d4803fed00
- SHA512
  
  8dd72d61a4ee446ae64c4d052c57d8f5baa2eddb847c9d48166f1e3b5a9eba30766635708afe3902b0fc6c4162f31146412ab7a70305f7e29e3d7530a7413dc1
- SSDEEP
  
  6144:NjAIdrffUy0VqVcdQ6SFo7ehxZ2mMe0BhRrVZvrK30UMWWX9Ekv:NjAw6kV6tehrylPPLWWX9Ekv
Score

1^/10
behavioral15 behavioral16 behavioral17
- Target
  
  skymobi_pay_wxplugin.apk
- Size
  
  31KB
- MD5
  
  4abe246a2b32e1dda12ed84205b1680e
- SHA1
  
  5ba09c33b5effcf8659f4f4b7fbc811c090675b8
- SHA256
  
  d0e4c857bd0c54581ef0cc5ff8903ab99e6486de6dfbed70cb178dbc2e85b25a
- SHA512
  
  a8f6e38338b9410ff03f226fa575b7196daced1140c404eacdad28d42629c6ad00710b212b0df01ae7bedfc3e97a7b495765c4dd83530719353688bf29897eba
- SSDEEP
  
  768:c4wrwcYjeHaruzIRgBPFcnjTOKPzap/13GioGs:c4wPlSuzIRgBPQjTf2p/1Mn
Score

1^/10
behavioral18 behavioral19 behavioral20
- Target
  
  com.skymobi.pay.plugin.thirdpay_v10007.pl
- Size
  
  293KB
- MD5
  
  23a87775a54cc84ae9951a9f8bf39317
- SHA1
  
  b53b240cb7ecf7d9b17d3e015e586bca3d7fa13f
- SHA256
  
  1b96e5dcba10f73cf1ccdb139fc748cfaf8c5b8340394a37f1413b4eb9a4a8be
- SHA512
  
  910339d3d59afcf85313a11c8cf5efea706de8df606d220bd8b2f63d98c94060b922c43f29fdfa8e0dd951d1ca881b79d2e25865af2e29ccb001da786994cdb9
- SSDEEP
  
  6144:Hb0JRVJ2tkFpvvlbY05z1kkqb0D8w2bsLBZXbSrmmwaQIe/F:HbG/2i7vlE0Ekqb0EALTSrLwaI/F
Score

1^/10
behavioral21 behavioral22 behavioral23
- Target
  
  skymobi_pay_wxplugin.apk
- Size
  
  23KB
- MD5
  
  9a7e5dd06c037db87a69ef6594ca7f87
- SHA1
  
  26d2ee93cbf738586b56cc5ccf1a7f0f4a714f79
- SHA256
  
  ee657bcdf113d1b80c70368f4a4284bf81cb0b83e0fbfabaefb6b582b9edab0b
- SHA512
  
  c2c7b701e776e800b35bf2ab09f4019e48f17d213e4936cfbdb25c054bc2497882ae79b4eddf68010b58f7b2fb8e164f29c65bd91ecfb74321425216ffc45314
- SSDEEP
  
  384:ZT822Niwn2f1QWeLP+uDbPSkjUX5N0XNFJHm5+qLNb8:C2zwn2NQlPhG4UpNClHKzb8
Score

1^/10
behavioral24 behavioral25 behavioral26

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26