f64cfeb0fc942a179f7a9ba0aed293e58d56f5c2f783721170c5d627d2ca9415

Analysis

max time kernel
55s
max time network
130s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
24-05-2024 13:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6eb588b708b81556387977dc88f2d3f4_JaffaCakes118.apk
Size

1.1MB
MD5

6eb588b708b81556387977dc88f2d3f4
SHA1

c1efd8ac135b074891e04be0cb0da519fdfc84fe
SHA256

f64cfeb0fc942a179f7a9ba0aed293e58d56f5c2f783721170c5d627d2ca9415
SHA512

8dcf1c181e5afcf621170f55366e9adb89fa8a3a74568126445f2980e15feb2f968ed028f955e40a1c34d5e205696e0f855a026ab0fb7f84a4953a8f76b116b2
SSDEEP

24576:ZLQox8CBf4QUGnZcSYeUD2/ER3fLEJIuZINrLztqKoHv1WfpNs:ZLQRClA+JNUDV0ZYgKotWzs

Score

7^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.appmk.book.AOVNXCPNJHCQJRLN

description ioc process

File opened for read /proc/cpuinfo com.appmk.book.AOVNXCPNJHCQJRLN
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.appmk.book.AOVNXCPNJHCQJRLN

description ioc process

File opened for read /proc/meminfo com.appmk.book.AOVNXCPNJHCQJRLN
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

T1414

T1641.001

Processes:

com.appmk.book.AOVNXCPNJHCQJRLN

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.appmk.book.AOVNXCPNJHCQJRLN
Acquires the wake lock 1 IoCs

Processes:

com.appmk.book.AOVNXCPNJHCQJRLN

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.appmk.book.AOVNXCPNJHCQJRLN
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.appmk.book.AOVNXCPNJHCQJRLN

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.appmk.book.AOVNXCPNJHCQJRLN

description	ioc	process
File opened for read	/proc/cpuinfo	com.appmk.book.AOVNXCPNJHCQJRLN

description	ioc	process
File opened for read	/proc/meminfo	com.appmk.book.AOVNXCPNJHCQJRLN

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.appmk.book.AOVNXCPNJHCQJRLN

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.appmk.book.AOVNXCPNJHCQJRLN

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.appmk.book.AOVNXCPNJHCQJRLN

com.appmk.book.AOVNXCPNJHCQJRLN
1⤵
- Checks CPU information
- Checks memory information
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Checks if the internet connection is available
PID:4628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookConfig.db
Filesize
20KB

MD5
a69655cf9fcef961faff315a8668d907

SHA1
552edbf9e0005ee0f69e844f3028da0f0732fa17

SHA256
6b798bca36abbd495332fc16b7ec091983761323122bdf8753cd0890f78c3450

SHA512
ef89d1ab3def68a07521d7a55bc2226308083db0d7e7d260408d12e220b41fc7f00ec7ce071d52cc6d7507d3e9a024e1f1af8b5d104fd0481a207b58ef4f7caa

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookConfig.db
Filesize
16KB

MD5
eb5ee4405b3d046e2221cf749fc9ea28

SHA1
997c476739c0beee031381a62ccf140f1c56100a

SHA256
28cd02db65ed861ef1a7c990f46f03f2c3c4090c90d3f8727c7fa706abc30338

SHA512
c5352ef5929d8b9c8a279936ae8f2978be7b78037ca3c40c9cfd959ae8c80c612c0b8f9783fed0f3c8d70ace529ff0aa105ff9d7e92e786f0a1933c195fd4161

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookConfig.db
Filesize
20KB

MD5
1aae0b8768f1d93a4236abe786322d9d

SHA1
8e36233d0ee0da55706fbffaf553a0e9b2d8880c

SHA256
db0075e51c7ec8c9f56772ad19417f019c2d56266a100640954f2bbd5a2761ed

SHA512
5ade5f80c0af3d86d827c50dbe0c001b9a400642f791a5879a5573e3cb49f3dbee47bff26f13dac9b7677ebe34e2dd786b19e4c6bd4f8767d73a19fdac03445b

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookConfig.db-journal
Filesize
8KB

MD5
57f90027c0a93d9f3a9045a8e9af14c6

SHA1
09f6a0a476d4ed293b050ee87bdc148febd782c8

SHA256
2801e8e321ec5045cbcd7d1e78ba5e94187f361ab00dc760d8e4f337dcae215d

SHA512
485d3b885bcdb731e28ef9f562fa98a0cc0fc6bb45bb1212ad90675378221f53f263f5bb1ee420825dcf55749b19fd933452796c38b58aa87a19ba51239643c4

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookConfig.db-journal
Filesize
512B

MD5
27026c57b13de3e3112e69421c3104b1

SHA1
b66f01568838d34cbd490d1ae6de04369e77aa24

SHA256
5c6b39b2e0098bfaae0e1045dea4e0774981db4259c9a91eba708a40cb6231c9

SHA512
6a5d2a1602baa97e9685413a5cabb1ddbfece0f2b886c279f9bcd09296b73b1be0eb3adeb053ad30df61d9dc7833a2b692d8a4528b204d3b9acfb3b3f30d3dcb

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookConfig.db-journal
Filesize
8KB

MD5
d71c7eb797e4725a483fd98915954703

SHA1
7e8bb6f1ab54e764bab89ea48cdfb2582786d8e6

SHA256
e87792bddb411715000435aeb84bfef94809c9f3de387975f9a6ff79e41a4efd

SHA512
b1994acadb0ddd04946c6205e39247d020a202a47125fab759cd2ce4d9f02d7acee469f771c00a793be1da8cdbdee7b2599667e5eb485932e031358857351db3

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookConfig.db-journal
Filesize
8KB

MD5
040b0b3e0fe5623369b0f4ece8f3787c

SHA1
38ecd4eba8497e951bd131620e788898ad98b9fa

SHA256
14c64f62a57a5f5c60ac224745d24bc3474619d797f103b4948771c48be97a5a

SHA512
2dc878bb331fe55371c08d45567a53b95c516e955c88435257c398ab231ae5a424e9e358e3f4a59e9eda329a1b1a9404ddf64988e60593b363ee7085bb217b61

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookConfig.db-journal
Filesize
12KB

MD5
e8c5e468c581b0ad0ea72bf02a9690e2

SHA1
630d2580a95b2481170a55cbb082b0f1c31d408f

SHA256
dea75e67485323c160dc505fc0201f07865050199139c01156981f26e1add421

SHA512
05527f1fa850bf17bd0053d431a7ba86bdf3e758d605f92374d160c8386cb7ab6d85b0f1ac846078b3b19bf7b698705e39c4fed7221fa25964a8335f5ba22cfa

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookMark.db
Filesize
20KB

MD5
527bd17cbf090fd8bbdb392cf1599e5e

SHA1
5f8b2d27f8e011bc387fbce540badfd5a5c07fcf

SHA256
eaf1143a4f3ee6c1e13982700ee46d028057c43b8ed2a08cf2c43aad5a16ed66

SHA512
113b9431f2b44464e516a205890724511514d7efea90c5bc1ca0834ad7890a972fd147ac1b164586ef474732a842ac1024500c36babc12891313d36852bcd3b9

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookMark.db-journal
Filesize
512B

MD5
f331dd4b780e24266bb14b2b232c419c

SHA1
2c0eb9b013ed68d90ea868a3357f0f9cc3332e41

SHA256
9fd7af7e8cc5cf904cea4e5442e77a6e1e0772a06ee50a2e54176cf53b96a1f0

SHA512
f914881595679c818da84f9dc79ac0353f3e17d618316e87e63a2149b763d122b2406073c4f7daf2e5142db2456677391bd6ec3a05edffb2c8a28f36fe4aaf2a

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookMark.db-journal
Filesize
8KB

MD5
597d5c4795ec48bea2a7bc64524a56b0

SHA1
b89117aa11cb4e8258d8e7128b1dea13b9b57e1e

SHA256
3be02f65931fa54c9585030ddec073102aa6456b0166e5aa4c3ed29873b51a3d

SHA512
a97545ad4cf5553ef1ac240eb99b48e5785e35c087819dee4b1e51b64325834150423ca6840416bd903d5a63e105aea9e24f3e433b6b6830e0fe46d1f72937dd

Download Submit
/data/user/0/com.appmk.book.AOVNXCPNJHCQJRLN/databases/BookMark.db-journal
Filesize
8KB

MD5
d63d68aa67d487dbf9781c819588dd01

SHA1
195665d6558bbdf1c59a2b7f378e5bde5d08650f

SHA256
93c63bbb3e3c7dd6bc07bad437ae562600c07182dfb7b676a77150a0aec5970c

SHA512
13cf2fc5303d6dce0bde0d6473d0fa19e395728b41a5ea48f145f95f2f4043005a46b1b76357ec5ee25a0578ffb7865acf3c010df9a07c8e279707deaba13432

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads