Overview

overview

8

Static

static

6

763df9b329...18.apk

android-9-x86

8

763df9b329...18.apk

android-10-x64

8

plugin-deploy.apk

android-9-x86

plugin-deploy.apk

android-10-x64

plugin-deploy.apk

android-11-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    763df9b3295a069871970145cea7e88b_JaffaCakes118

  • Size

    13.3MB

  • Sample

    240526-v14l2aea4z

  • MD5

    763df9b3295a069871970145cea7e88b

  • SHA1

    bef1696d190bb252512b16c6dbe3eb14a681d6a0

  • SHA256

    0899426954fd20fde989059939cbe3bcd4107684add0d2a59a4aebb2c76b6285

  • SHA512

    201b943468615875160e6af89220370c596a8e544cc2d84d41396b77c9c8d17bf8554b1c7a7750fbd2419f9df1938c45cda289ebb5073bda12648edd3742938f

  • SSDEEP

    393216:CFWLs8q+84oS8AklNChbtubg/RUbZEo4NoAi:Q9soS8Akl4yb8R1oN

Score
8/10
androidcollectiondiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      763df9b3295a069871970145cea7e88b_JaffaCakes118

    • Size

      13.3MB

    • MD5

      763df9b3295a069871970145cea7e88b

    • SHA1

      bef1696d190bb252512b16c6dbe3eb14a681d6a0

    • SHA256

      0899426954fd20fde989059939cbe3bcd4107684add0d2a59a4aebb2c76b6285

    • SHA512

      201b943468615875160e6af89220370c596a8e544cc2d84d41396b77c9c8d17bf8554b1c7a7750fbd2419f9df1938c45cda289ebb5073bda12648edd3742938f

    • SSDEEP

      393216:CFWLs8q+84oS8AklNChbtubg/RUbZEo4NoAi:Q9soS8Akl4yb8R1oN

    Score
    8/10
    collectiondiscoveryevasionimpactpersistence

    • Requests cell location

      Uses Android APIs to to get current cell location.

      collectiondiscoveryevasion

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

      discovery

    • Queries the phone number (MSISDN for GSM devices)

      discovery

    • Registers a broadcast receiver at runtime (usually for listening for system events)

      persistence

    • Checks if the internet connection is available

      discovery

    • Queries the unique device ID (IMEI, MEID, IMSI)

      discovery

    • Reads information about phone network operator.

      discovery
    behavioral1behavioral2

    • Target

      plugin-deploy.jar

    • Size

      180KB

    • MD5

      73221f224e5d32e4f130dbe57ad395c0

    • SHA1

      1a8f63b73dede50dd56f469d0ee9bffa84eb9d63

    • SHA256

      8911616ac34f9c9508d25ad55183ab06dd05f1f80793d70fdf225cd56bf4ad55

    • SHA512

      58a1203866c0c376cfedfb493c21b8733f4796f6743414b810a63aa144b1af0acd9797d132684b8f255b9ebd76ba5405d0b5518c0c353c4a9b8839939a9c5c8a

    • SSDEEP

      3072:0axy6J5ZYUPRhL1ovWC/N7id4ZjkiKScsrqvqvdutOBkSZkujrFxqnAvGGNh:lg6+Q/L1ovrbjkZScsZvdHBhZjZExqh

    Score
    1/10
    behavioral3behavioral4behavioral5

MITRE ATT&CK Mobile v15

Tasks