General
-
Target
6f3b42c3b3eefba228151c2726656609_JaffaCakes118
-
Size
27.5MB
-
Sample
240524-vpjsgsdd23
-
MD5
6f3b42c3b3eefba228151c2726656609
-
SHA1
ef7fa8f4b318fa3cdce84972a0e3c9bcd31b537e
-
SHA256
1f72cf0c757ac796bc910f0ebacf060936fbe66f3a593945678094180e1d7edf
-
SHA512
38668d28dddeca7c405fd1a9290b5e2c94afb6914a6f3c0baad143c770f5c6841905660aa52bc8d5e25e5877c7b6b0bbea8db89f9a7678c98ecc0f53a9cf0364
-
SSDEEP
786432:iwNjOhbAlOR2KTOhWcAtksERnU8RjrAvfe8Gtmu:iSOhc+2KTaWc5s0UWQHe8GtF
Malware Config
Targets
-
-
Target
6f3b42c3b3eefba228151c2726656609_JaffaCakes118
-
Size
27.5MB
-
MD5
6f3b42c3b3eefba228151c2726656609
-
SHA1
ef7fa8f4b318fa3cdce84972a0e3c9bcd31b537e
-
SHA256
1f72cf0c757ac796bc910f0ebacf060936fbe66f3a593945678094180e1d7edf
-
SHA512
38668d28dddeca7c405fd1a9290b5e2c94afb6914a6f3c0baad143c770f5c6841905660aa52bc8d5e25e5877c7b6b0bbea8db89f9a7678c98ecc0f53a9cf0364
-
SSDEEP
786432:iwNjOhbAlOR2KTOhWcAtksERnU8RjrAvfe8Gtmu:iSOhc+2KTaWc5s0UWQHe8GtF
Score8/10-
Checks if the Android device is rooted.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Checks Android system properties for emulator presence.
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries the mobile country code (MCC)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-