863352633ac896a6a3a2eae5c95ffa6e276c7f7e25a825d8a5197cd2b48d59a8

Analysis

max time kernel
104s
max time network
149s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
24-05-2024 14:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6ec513634575a9bdd5dd20fad7529ed5_JaffaCakes118.apk
Size

4.7MB
MD5

6ec513634575a9bdd5dd20fad7529ed5
SHA1

aae4142ffa051aa5b16a3004309dacfdb9e883eb
SHA256

863352633ac896a6a3a2eae5c95ffa6e276c7f7e25a825d8a5197cd2b48d59a8
SHA512

f1f2db7f9e40920b164c7ee88ccd663c3604acba5b1f51713ec990876650060119b969ef2a7e2bfafff52eebc5a0c27a96f1e8acab98bb66d881ab8e2570f801
SSDEEP

98304:HHafc4//i3tWaVgFaX36mkuKPVmP37yZUJKMtXVbCdo1ilc268fSJRX++5Be:HHI/iBKFaXSUGZUKMrnw626tvXfS

Score

8^/10

banker discovery impact persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

T1418.001
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
discovery

T1424

Processes:

com.sunshine.gamebox

description ioc process

Framework service call android.app.IActivityManager.getRunningAppProcesses com.sunshine.gamebox
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.sunshine.gamebox

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.sunshine.gamebox
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
discovery

T1421

Processes:

com.sunshine.gamebox

description ioc process

Framework service call android.net.wifi.IWifiManager.getScanResults com.sunshine.gamebox
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

T1624.001

Processes:

com.sunshine.gamebox

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.sunshine.gamebox
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.sunshine.gamebox

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.sunshine.gamebox
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

T1471

Processes:

com.sunshine.gamebox

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.sunshine.gamebox

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.sunshine.gamebox

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.sunshine.gamebox

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getScanResults	com.sunshine.gamebox

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.sunshine.gamebox

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.sunshine.gamebox

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.sunshine.gamebox

com.sunshine.gamebox
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Queries information about the current nearby Wi-Fi networks
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4257

getprop ro.miui.ui.version.name
2⤵
PID:4301

getprop ro.build.version.emui
2⤵
PID:4342

getprop ro.vivo.os.version
2⤵
PID:4360

getprop ro.smartisan.version
2⤵
PID:4378

getprop ro.build.display.id
2⤵
PID:4396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.sunshine.gamebox/cache/network/journal.tmp
Filesize
33B

MD5
b45ba83b06d0324bfdb64cb730ba10aa

SHA1
02c1d65823ce94bf1e9d0dc5fe756017571d558b

SHA256
92e87187fa61d8d625dded97035fdc062811dfe4cd61f33632b2fd3393b7b84d

SHA512
8b0ae65ba4d013024c294c831328e942a9880e013999eac95ef87b1c54fb3f5c48068521f06f86f1790cf7e90cc27b5d6ac009b3a09d36bbb2c9ad6ca3eb9880

Download Submit
/data/data/com.sunshine.gamebox/databases/okdownload-breakpoint.db
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.sunshine.gamebox/databases/okdownload-breakpoint.db-journal
Filesize
512B

MD5
cd2ec8b59a98e727e9cb6c4335d519c1

SHA1
43c4b96638e953ab93ed33c6c2a2e485d739606b

SHA256
365c08b6bb8e5f9fa2db59cc925f7f30956ba76a245ccff3dcb709182706b4ef

SHA512
6ccbdb54d6f25c2319ebf761836aba053ff1906634bca4b5ee1f3d1c84fce62ef181a61f84fb7b671d1d95a75c58bda219d5b07b6218c14fa5dc0470f314066e

Download Submit
/data/data/com.sunshine.gamebox/databases/okdownload-breakpoint.db-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.sunshine.gamebox/databases/okdownload-breakpoint.db-wal
Filesize
48KB

MD5
befb8789dc48f6b23a4876b5d13b7969

SHA1
f0c353bee2427d29603d2700c3e79829273cb0f2

SHA256
161e819f5b38e9ac0e39ded53ae05932d9ffdffcad7f570dcd55e8b7da7d2d23

SHA512
be170d421ec8b9ffc3c1dcb7d0fff0118f9b38a85382868fd30a2d999dc03ef859d15528a5236a8518c026af9560253c3c0ed62d067af379c5b2d3c509548798

Download Submit
/data/data/com.sunshine.gamebox/files/__local_last_session.json
Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/data/com.sunshine.gamebox/files/__local_stat_cache.json
Filesize
696B

MD5
07eb0ecee8831181c140e6217b83fcdf

SHA1
9b4e2b3f57c184cb19e808a190f58841c2f5e103

SHA256
07db767dabfe7e5354a1b9e296b2dca532193eac0c91a090feb7862bda169995

SHA512
b001e34bed4d069c3d5ae0fe2f09903324e399a007eadeba28867b09f07eb8e1f6f9ae52c145101af324760dd6c5ccbd38d8ecb3552c73729c35e3ffe67137e5

Download Submit
/data/data/com.sunshine.gamebox/files/__send_data_1716559543174
Filesize
949B

MD5
f67756d042d888a13504d6c048636c2f

SHA1
eefde34d256e59728c07c9f44639d140a87134d0

SHA256
a51ed7db99b0a6dd4e7aef192ac85fd1e214f0a3fe82cd549bf409c0fa7ae7f0

SHA512
31757802cae522f8bed8e84a13a41e0eed69aab59d177b1458a62785fde6db092b1409ebc763f63163cc2b360bdc66d6021fe8e6a3c0895f20b12b26ab614870

Download Submit
/data/data/com.sunshine.gamebox/files/libcuid.so
Filesize
129B

MD5
c5bd3dbfe32380646b6091d5f0ba2c09

SHA1
6c51dbd044acb7a228db5a2d444889781318d6b6

SHA256
68bc6980abc0cd9d50d2537f33c090e399541c1f33b6249a9e77f2146e67933f

SHA512
7a982d311bed0a1bf4ffdafed6ff42b1445a769bb4cfe7d0280818c0df64757a2903ee54868355de2b3522ad7ec41e84f38f6f85b9f92bce91eb140891341025

Download Submit
/data/data/com.sunshine.gamebox/files/trace_circle.data
Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
/storage/emulated/0/backups/system/.confd
Filesize
20KB

MD5
249e034c9703afc1fd6062371c7f3da8

SHA1
9ca489179488e0fe5a35f7c0d5887f163e4890cd

SHA256
18fc5cf216b05487a87be99a662e7474bd54120f214e034b3179f40ca989352a

SHA512
b819b152548431c7892678ecdf23abe44cbdcf80e8f22707ab32a2aedb5356346b27e3c3e750665ba893d602af1c7dcca97edbac3c820859a0fc20714c22c0bd

Download Submit
/storage/emulated/0/backups/system/.confd
Filesize
24KB

MD5
8c7f6e3b52e6e841b895bbd13644ed43

SHA1
ec8daf46a7eb99c75ea1ce8582ef77b2df8455d2

SHA256
6615188d5d8fa77b44fbae7a249d073b3623316e7489c5fec95fe53188ea467c

SHA512
cffafd628e62fa915872796ee02dd8119cfebd6811291155acd400986ee5d34b244ab3b5d0bd386566724205771f665571bcb04950d390c5c60072fdb90c5280

Download Submit
/storage/emulated/0/backups/system/.confd
Filesize
24KB

MD5
5e7c2d625c5ad0e143d6f2f16e8fb15c

SHA1
2dda20a57b2ae8bf2d63aac518ea500e99e41da5

SHA256
6ba9df534c9e6fb4981c82bd362a19040377fbbcdcad3aae4318cf7779974439

SHA512
b28d3c11d15b97d54ee4fd12921ba2a6deb418595aef92fba43044feeaeff0eb3b9987cfcf378ae96f3e07bde3c7536c84b754c4450ab782982a111bcdcf6d60

Download Submit
/storage/emulated/0/backups/system/.confd
Filesize
24KB

MD5
6185cd7211b144e0bb6f8c316068cb51

SHA1
8b28615affb69faa0f2d8010ce1d6b3271fe39b1

SHA256
46d37f0073872df24524f6b0bf5993219ba0a98aa7e72cdd9ef5c0473a5c1225

SHA512
293668f9a4bf20d4af6c236f1988de452e70ea5ba4cc9cd1135505ac569cd52780214edfec7dbb91ed5c47767d2de3ca0863186efd5350757a373387efaed1e8

Download Submit
/storage/emulated/0/backups/system/.confd
Filesize
32KB

MD5
c54c9670b15c9cc408c56e5a83217655

SHA1
53e61494aedf4fe50b9ba08ccc691eb988f52b1b

SHA256
027e7a026ab83e5bc9418bd77bd5208edad19ef6483048d96f4e9a3f36895bef

SHA512
c1d0c8e64eaf5a7bcef7bb8c598be8f8b8daf5d962df47ed2f23c58c3c3fea18f4f16273f790cbebb23d2ce0e68f3effb666b0d26428029ebefeff58c07fbca3

Download Submit
/storage/emulated/0/backups/system/.confd-journal
Filesize
512B

MD5
66deb61aff5b4b61b1d0e169f05b4765

SHA1
ab5f5b3c3605f94d8d55edd04ab794694b7667ff

SHA256
eaf2a28ab9db77062453a3c6bd6aece80ed151c311f9fa20ebf23b87d6626664

SHA512
35e3868495d7ceb09b45d78b0e3946d2a7e8b45586c5032ae9ad63e65d82905db2497fb46576fa04af379f8c81d671834ce788a568a21aeaba0b1d26f3c739e0

Download Submit
/storage/emulated/0/backups/system/.confd-wal
Filesize
36KB

MD5
1b3d108f9786ed2d495139e9ac8a708e

SHA1
6a2c5a8d65b5bf1de54c26467be97fabadf62f09

SHA256
6b2fbbd04a088e0c6f2fabdf6755f6e95bf6212e609c6839b119562b4c80b657

SHA512
2c09e2297c6bf2dd0e3b6279c282b823afeba327672509e5d103adf3218f5b72a9dce97fdd5b211ea858f2bbf57521cf338168fe741f89d7ed48f52b867a21e0

Download Submit
/storage/emulated/0/backups/system/.confd-wal
Filesize
12KB

MD5
9fa6cde827f94e638748c853dd4ab518

SHA1
37ae58fa1784fade190744353da31ce9003ca13c

SHA256
ba3f27c790806b60e5ebd1103eebab8cb4ceafd3a82ab3d3a8d00ed1b0856a99

SHA512
e013b188ab92f36f3397231d0dcecfb81109efb87969670af85f99a2d1c165edf764feb8dcb2a4e69e6346f0907a08f00f9254cf49df7efd15eb085ba26568ab

Download Submit
/storage/emulated/0/backups/system/.confd-wal
Filesize
8KB

MD5
539a2df21ff8e5a59663ce945a2984ea

SHA1
2c1bea5cf7be5980b9612b1404d300a19787ea2d

SHA256
429f07aa4623894f30831426c6b21f7a99b998a0f7eec0cedfeaa32887442631

SHA512
defa6c0a04268dd65306148a0795b0e5e1bc27a4911b2f26db67bdf3599e1a1394cf9df725fb43b4a7829e3519e0652a58669eaf1087efbd5f43d29ed30b8da9

Download Submit
/storage/emulated/0/backups/system/.confd-wal
Filesize
8KB

MD5
696a5e7fba63541f4a3adc1f079e7e06

SHA1
4961901153fc1d0e4e34f88bff4553700e1d40d9

SHA256
6191c26aed8d18192338f7ac03904a413e358c3db623a0b1d9868935cb3e7e3e

SHA512
00cdec40163aafbdafca72f085cc435b6d2f64cfa56ba7fbc74a22c3eb435f47999af544869eca853413485a41059e305a383fe35bee9fcadaadf70b4b7b1521

Download Submit
/storage/emulated/0/backups/system/.confd-wal
Filesize
12KB

MD5
6fc31a3e3375243b8c55e347c0cd16be

SHA1
73b26184624399bf6880b4f44386862db083ebac

SHA256
ccdcd786c5d68be5d8b97fbcd5f528466404bb63d7f2fd7131108721e268300e

SHA512
556084a2d966f7656c14bfafa305933e575f552bded50777138cf92bacfc36da1c0eac635cfc7834be67b73cfe96978330fd3d417cb2af2c3c53ab8c5a3ef675

Download Submit
/storage/emulated/0/backups/system/.confd-wal
Filesize
8KB

MD5
7c4b1ce94f52ed2a2ab0a5661b032824

SHA1
6a640a35be3f85fdd80a1e49400a2da9c8f5b77b

SHA256
6236f505d48e8f300208ebca0486911127adddab536bc4ae5fd85d754edae3fb

SHA512
211942a074cac8fda7bf2c4cb23b6bc6de48a2422b861623a3631c86710fe9701f874831652bf6b6459f024d205f6dd90f5ef69a58e59e3d46482e09a2d8a507

Download Submit
/storage/emulated/0/backups/system/.confd-wal
Filesize
12KB

MD5
89b20ea736fc8203bd59191a31d7bb17

SHA1
8ed5e8c9606d21d2d9947f3b5bc923b99184a872

SHA256
67ecde7cc070e4c96271c0b4f3fb035094d1fe0909bf6a137fe77b93a47a2c8f

SHA512
7ab4031aad61361e2df331b2d4cddd0d6e899129cd69c1d711ceb322fed5159ec0a4bde43326ac4885806e71e785f7234c6528a73b5b813d2216e0bf32cd637a

Download Submit
/storage/emulated/0/backups/system/.confd-wal
Filesize
8KB

MD5
cf065d61bee2d7adc7550e9e1670f859

SHA1
97095120920054fa7b4ea8d64f3efa9c466f61fd

SHA256
ff39846d9f962ffb09f38b9d2148235b0e3c6da7dd51e8aae4f376b6d0b859ab

SHA512
4b20507302d959bef8f292943d83a4a277a89c9712e0b3e589ae61e7f399ce79c857022d7595cd086e5936bb745642aa6165114e9e0586058152335b8b4140a3

Download Submit
/storage/emulated/0/backups/system/.timestamp
Filesize
25B

MD5
0d3c43a5afffd3f8a19ae5a380f50a22

SHA1
9c80021334887f9b865d52274155b2186991fbd0

SHA256
1bacee44923b9b1676d1e034e458d823962302656abf3144d1a9daf79424fa62

SHA512
92ff6b5d8555a4df496c274894fd8965ee816a06c17324a209627c6b84c109afdf3b9df8358348e4e074a0503f94c3015a5528d10d61a0f37e2688d59ede97dc

Download Submit
/storage/emulated/0/backups/system/.timestamp
Filesize
55B

MD5
5e543d765d639a394ad7d770683821b7

SHA1
57b9863f1c05affd839afd80d648d1a9696226c3

SHA256
deade8a20be0af3411c511f26016f0b6c6777bd9717e8a90dd109a173143841e

SHA512
f3b3c602f91df0eb9ee9ba540d4581299afa9614528b6105d8dd42e25d49296aab1f029109af3bf686a5c477e4fb8d844650ea9ce43224c79d6b4687ecb4fe6c

Download Submit
/storage/emulated/0/backups/system/.timestamp
Filesize
84B

MD5
e3a61675ca9d72ff5bbcc5f7bd7b0de0

SHA1
7a30c4d5d70a9abbdb7011d4b2047489748a03e7

SHA256
ecec4081442d3d3db72f6c136394887a062f231bc61734bb8942cc9c48873593

SHA512
f8a79398865baa3cf907424992de9de277feb3098cd0c6f5fb57b1e244757590aabcab2857846206cc42f75a8789860a827a8446fd9087a3580ae5167086039c

Download Submit
/storage/emulated/0/backups/system/.timestamp
Filesize
114B

MD5
45794f6f7ff59d2024d5350578b18332

SHA1
003c8bf8d7a11605e0a10c9843b71adf646b7177

SHA256
c7ae7054f2e139d3243bed456ff7eda69592f20cae4f11da530426279be43e2d

SHA512
7a0b34e84843519f524efee95997c8ff13f883d1670d35a63d49a15cb62208832c9f70cad6eabcb97c1b2df06f3ae8d3f3987fecec218c945c0f9cc4e055f44b

Download Submit
/storage/emulated/0/backups/system/.timestamp
Filesize
138B

MD5
4e4572bbc8231ff80ce0cc0a2ba239c0

SHA1
a1830789501a6b37dc110e890e9107f40a94a787

SHA256
3a437c8f47e0159c084376fc5c07fd6205cc07caac897bb2cd1186d82d5f18f1

SHA512
aa275e469e8eeb8a0f4ceb4feb6f1f36fa6cbb0d5f14822bd40b32c403ee49cab25252370b2a14699e52a8290331d671d64c8f6cea5726a58b0ac44453d03aab

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads