Overview

overview

8

Static

static

6

6f0db2c829...18.apk

android-9-x86

8

6f0db2c829...18.apk

android-10-x64

8

6f0db2c829...18.apk

android-11-x64

8

Analysis

  • max time kernel
    8s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240514-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
  • submitted
    24-05-2024 15:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6f0db2c829b9c8d7486b76d531a976ae_JaffaCakes118.apk

  • Size

    935KB

  • MD5

    6f0db2c829b9c8d7486b76d531a976ae

  • SHA1

    3ceca3a5e78d6395024e78a72a61c2c27567f08e

  • SHA256

    e0ad741fa8cc41963db96a0f58b9c83f00caa26e97d37ee1a91a50f6855b19c9

  • SHA512

    748a5d45450489e91691d99a33f672e3952675823a5f4bf488dd9949a4f871dc1dea4e4b5f0befb18dfb1d4cc257d6d83d1033895ea96413ec854119fa3b969c

  • SSDEEP

    12288:TTJFa2O78vsK/Tf1uL0q+xqh71/DQOQtAevGj1nRDzE3iUUnmiFwSow8g1W7APZr:878v+t+crzGtvyjEeqSoM1E+ZO6x

Score
8/10
bankerdiscoverypersistence

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery

Processes

  • com.nv.jita
    1⤵
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks if the internet connection is available
    PID:4241

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /storage/emulated/0/Android/data/cache/AppPackage.dat
    Filesize

    9B

    MD5

    0c319a3a19847c4ad38966feb2ca51b1

    SHA1

    398aa493c613768354bc52e9f8e4ccb29e445cd6

    SHA256

    980ddd8ec733746a5a043027b9f181c5c1ef69ce69d6765b12acc055ddc61d4d

    SHA512

    51b992e4a663b0e4c84d9672b2ecfd6eddb6b8bda2256e337ffcdd00d74337c6b449d076c306b6b7a20139754e306a06097fc0a24c210b150b694f61c700f72c

    Download Submit

  • /storage/emulated/0/Android/data/cache/CacheTime.dat
    Filesize

    13B

    MD5

    4dfebb4d6ef95c39c05a27838ae80388

    SHA1

    d2bbde5d73f78b4fb38e98d2915656ebf39e0609

    SHA256

    eb2ccf51bac74f77be15b02e6fcbbee05ad8ad795c1227650e1d9f69b5fea2c8

    SHA512

    9cb51e9b105eccd82f23ad9ab55202d8d1862f42cdae9bed5f2ad1126f1b01bdf03d747a23d0e3f1065e39af342627c68f10fcab29826ad0f055188bc8f5118c

    Download Submit

  • /storage/emulated/0/Android/data/cache/UnPackage.dat
    Filesize

    12B

    MD5

    77d644459f412ff1f54fde39faf959a1

    SHA1

    cdeb6de72b5ffe689e43a1fcb94339b19bfc4ba4

    SHA256

    37bbde100a2e5c7ab76280e27aa7e81fcf7c3ccef8a65341c32ba7c5e9d9af21

    SHA512

    d3e002752683ace82799924f076eb18db5fb9aaba9d28daab846df44843f91bcb1d6766115cc82ec82d809129771f17385394749c4b95338fee9395f400686ba

    Download Submit