10384255c298d073bb93dea288b6d88fa83ea722a81c1b15cc784e5042fb6696 | Triage

Submit
Reports

Overview

overview

8

Static

static

6

6eb9f3ad05...18.apk

android-9-x86

8

6eb9f3ad05...18.apk

android-13-x64

Sharing

General

Target

6eb9f3ad05408d99680f326d07d17a43_JaffaCakes118
Size

7.5MB
Sample

240524-q356esgc56
MD5

6eb9f3ad05408d99680f326d07d17a43
SHA1

f65aece0b21d29601291c8585dc361d7dbdcd55b
SHA256

10384255c298d073bb93dea288b6d88fa83ea722a81c1b15cc784e5042fb6696
SHA512

e41b86cfa6dd2d4b2032cb05a4f39a25e2d8cf478d45d21f597ea72e9e3ece93618d0b871457324245f0f4bf806fa444b2c35cc66f5783231a972877d923c5d9
SSDEEP

196608:qlTTb1VF4n6s2iwQEZY7BkZatBOfd8ocnJoLrQA0AxoPG3nZTbXkAG:wTTbju6piwQBNkM2X3QQxoExLkv

Score

8^/10

android banker discovery evasion persistence

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

6eb9f3ad05408d99680f326d07d17a43_JaffaCakes118.apk

Resource

android-x86-arm-20240514-en

banker discovery evasion persistence

android-9-x86

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

6eb9f3ad05408d99680f326d07d17a43_JaffaCakes118.apk

Resource

android-33-x64-arm64-20240514-en

android-13-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  6eb9f3ad05408d99680f326d07d17a43_JaffaCakes118
- Size
  
  7.5MB
- MD5
  
  6eb9f3ad05408d99680f326d07d17a43
- SHA1
  
  f65aece0b21d29601291c8585dc361d7dbdcd55b
- SHA256
  
  10384255c298d073bb93dea288b6d88fa83ea722a81c1b15cc784e5042fb6696
- SHA512
  
  e41b86cfa6dd2d4b2032cb05a4f39a25e2d8cf478d45d21f597ea72e9e3ece93618d0b871457324245f0f4bf806fa444b2c35cc66f5783231a972877d923c5d9
- SSDEEP
  
  196608:qlTTb1VF4n6s2iwQEZY7BkZatBOfd8ocnJoLrQA0AxoPG3nZTbXkAG:wTTbju6piwQBNkM2X3QQxoExLkv
Score

8^/10

banker discovery evasion persistence
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
- Reads information about phone network operator.
  discovery
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bankerdiscoveryevasionpersistence

behavioral2

© 2018-2024

Terms | Privacy