General
-
Target
6ec07ad1a63be0d95c90b1a648dd9e67_JaffaCakes118
-
Size
701KB
-
Sample
240524-rad2xagc8w
-
MD5
6ec07ad1a63be0d95c90b1a648dd9e67
-
SHA1
55bbf47dc755ba89f0cd758ee4d463241e40281f
-
SHA256
599bc97449ea7173b31fd612b79103f3a6b90dce58b3a84383e04303ad3903eb
-
SHA512
db3881ed4e1f3d22b5230629ca477d3541dab8ced10b7602daad9055a15de2e6e07b9d1ea2b5b5a061dd176d9dbd718fa9cb0ca5a2a975c749b74f63021a6c3d
-
SSDEEP
12288:ydB5ySWqSHPudfcCR0gttIF/F6aaChnNVHR7lyJKGAG6+qqmdSTsF/sac9qi:uyH+5tSFFaCJZ70gpOCSTsF/sZ
Static task
static1
Behavioral task
behavioral1
Sample
6ec07ad1a63be0d95c90b1a648dd9e67_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
6ec07ad1a63be0d95c90b1a648dd9e67_JaffaCakes118.apk
Resource
android-x64-20240514-en
Behavioral task
behavioral3
Sample
6ec07ad1a63be0d95c90b1a648dd9e67_JaffaCakes118.apk
Resource
android-x64-arm64-20240514-en
Malware Config
Targets
-
-
Target
6ec07ad1a63be0d95c90b1a648dd9e67_JaffaCakes118
-
Size
701KB
-
MD5
6ec07ad1a63be0d95c90b1a648dd9e67
-
SHA1
55bbf47dc755ba89f0cd758ee4d463241e40281f
-
SHA256
599bc97449ea7173b31fd612b79103f3a6b90dce58b3a84383e04303ad3903eb
-
SHA512
db3881ed4e1f3d22b5230629ca477d3541dab8ced10b7602daad9055a15de2e6e07b9d1ea2b5b5a061dd176d9dbd718fa9cb0ca5a2a975c749b74f63021a6c3d
-
SSDEEP
12288:ydB5ySWqSHPudfcCR0gttIF/F6aaChnNVHR7lyJKGAG6+qqmdSTsF/sac9qi:uyH+5tSFFaCJZ70gpOCSTsF/sZ
Score8/10-
Checks if the Android device is rooted.
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
MITRE ATT&CK Mobile v15
Persistence
Event Triggered Execution
1Broadcast Receivers
1Foreground Persistence
1Defense Evasion
Download New Code at Runtime
1Foreground Persistence
1Virtualization/Sandbox Evasion
1System Checks
1