3041f70b2e0edcb666bd5b949ef1e29b4e3e1c18cb723f82c76f71fa22fd4fb0

Analysis

max time kernel
7s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
27/05/2024, 07:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7858cf75b9ea19e3d1c1207f5aa508e8_JaffaCakes118.apk
Size

12.3MB
MD5

7858cf75b9ea19e3d1c1207f5aa508e8
SHA1

30a4460c2f77c796e5a2134899e4dcc982d38693
SHA256

3041f70b2e0edcb666bd5b949ef1e29b4e3e1c18cb723f82c76f71fa22fd4fb0
SHA512

cd1928822d2e8cc06b655f425fad2fc901a1bfe6c08dc1a1c3ca79098631d52bf7bdbad160e7681c3b3fda6d6d8e6f9a1831a8443e7cd488e9b55319a6e7ff4d
SSDEEP

393216:jCeGvsiqnbs4rhC4QBpMdT0slTKUT8uCLf:ZGvPqnbs4rhC3BmJ0GTKRD

Score

7^/10

discovery

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.sogou.androidtool

com.sogou.androidtool
1⤵
- Queries information about running processes on the device
PID:4563

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.sogou.androidtool/databases/MessageStore.db

Filesize
36KB

MD5
f1abc67cc72bf5fe66779fa5dd1dfeac

SHA1
660f6d1cffa2bf57ec29105e40d08ab103cf18ad

SHA256
a953ef381606a6d98d98f3278e94fc1d5b58a0778f8ea3e305111586b759c14a

SHA512
dfbe97f3c1f3a3ebd63fc5bcee1b1dd1b91dfe01ac95af8fe897f44079e852421fa0c4cf038da6e43264d50f3e612ddc2be9aa17bf47ef604ca428fafe0858de

Download Submit
/data/user/0/com.sogou.androidtool/databases/MessageStore.db-journal

Filesize
512B

MD5
9397b831414c290607a5adad232c60a8

SHA1
5c244cf2068c078821a5e62e3d890522553c5bdf

SHA256
c9adb6fefb11c99b03cbe5df416daaab033858ddbb6f6e39f3bc2a1834928e13

SHA512
d173a07766c9de16da838be11c17b5fc609302aa2c6e7eed6a2bd093bd03cd55b2ae0fac4f2a843d083d1116f677fad3ff8663c07a77c909fd0e393fb1df35a2

Download Submit
/data/user/0/com.sogou.androidtool/databases/MessageStore.db-journal

Filesize
8KB

MD5
45453450ee711353d5a80ac32f6a28e1

SHA1
ef889734180c4d12c3891ffd5bd7789f0990b243

SHA256
f566d3aef2389c50f0d78db73182f1a6d7c32db13752f6b2dd6390f4bcbe31cd

SHA512
9ddf924450a9b607d78b2180d14810b10f37e88f9340e8e784128a90c42bcb55ce0f63f6eb3f9c915ea770ef11c4418e5a8f3b68c3c18a206bd65a479ba84a05

Download Submit
/data/user/0/com.sogou.androidtool/databases/MessageStore.db-journal

Filesize
8KB

MD5
7a93446320118d5093a65d607719dde9

SHA1
011948f04004aafd990cea926c9e59d3cae376ee

SHA256
eb29e21822eb57db77152c750626930b789e7be88e96ab7b79a883aa1507881b

SHA512
df548bde8d708c72766703908779551e2d2882cf66b63d79747c53df9fe76501ba2c29667b6f7913f87f126855b676d91651a561ac8453fcb992be2c55b85c57

Download Submit
/data/user/0/com.sogou.androidtool/databases/MsgLogStore.db

Filesize
56KB

MD5
a860ba3e3a648f73fc11269ff9ea9c16

SHA1
7167faf1666bdb05633e945dddc3d6af6c35fd0b

SHA256
4087524ad761d0669a39007849311b2b0a32c1a62d0a7ff04d4a77d702bfe27e

SHA512
279991548672e18e99522e1402ab96a3b1887a6ccbfa350cab5c5f5096807beb647b9cef0a5668755798f8032e243aab9ea5f1cfcd934671153d54fce48ef8c0

Download Submit
/data/user/0/com.sogou.androidtool/databases/MsgLogStore.db-journal

Filesize
512B

MD5
65376f7731976deb509005bd0d4eb9ea

SHA1
137554eccd1afad5a9b0aab99831bd8ecdc53256

SHA256
e7e54903e6d4fd1b67fe88c6a2a1db0a54d30ff2166889f807b849e863c89408

SHA512
1169f2424c06ca397aefe9efa27bb0427f7d5ce227c93af453b3f17318d9846ea4387a3691002e8b89aa4aa7000704367f383abcc49ee5337c8f1877ca9fc45f

Download Submit
/data/user/0/com.sogou.androidtool/databases/MsgLogStore.db-journal

Filesize
8KB

MD5
2ba38f8d74f24c6ccc94c0e38da15ea9

SHA1
7e41f2b6141053695d9505ab383a0f3e522dbb51

SHA256
9f87f1a153b37859732f4e0bbc0247147df5b05f649d5ee428f2ec8e47f3bd5d

SHA512
993fc5174cceeda24f37cd8671bccef8237b3f9f00064f08ca2cc34a7f3e5fdc3fd5317daf36a2eebe8440c51c9fe14ea69e4249888c6c47db4dbd286c053035

Download Submit
/data/user/0/com.sogou.androidtool/databases/MsgLogStore.db-journal

Filesize
8KB

MD5
24122ee6c5344e1dba41ab4f3e5fdc7d

SHA1
8790dc26af9a42520c7a47bc680a4b475e4c3d41

SHA256
ebb8c7f9b8807f42e217d1d8a940bab0d70f29a7f22face76ee68ee84b8e91c0

SHA512
f8690d2f171a7af9261cf156690a9dcbe0f4af782b5bc078e3e6e5057e2589dc5cf9fa4cbcefc9781a5562373c8c9ceea0c103ce07daded24a4044c00477d17c

Download Submit
/data/user/0/com.sogou.androidtool/databases/downloads_classic.db

Filesize
28KB

MD5
2d572328c4c5566f8c867c3ef352d28e

SHA1
d3a7250afa0cae72ddf52bf6204632a59910abbc

SHA256
da2f435b4c4f110c3974ce7676538bb251adbe5f3110e300e4a9203155632015

SHA512
e6190f1c21afcaaeb3c19d6f7bfbbae977ffdbee558848ebc6d0fa1f300277be945898d23f9d75a42cb55e61728a35fc13ae7ecf01452cb6af816f7907c32ecb

Download Submit
/data/user/0/com.sogou.androidtool/databases/downloads_classic.db-journal

Filesize
512B

MD5
3c54ce8726eece0b3d920b996d987b4f

SHA1
c731a9baa80284745a767b6f27d48edd7ae73705

SHA256
b3a514466f2a539faf7a34824941d87c79ed3d9599633bba95f236ca408f35f9

SHA512
f41fa2b0f4321433d6e8584f16bfa8759489e51572ba509e5cb6d4cf590719415afcb0726640285ce8366cf27d89360428534e29c081601b6fca81e0d2a844da

Download Submit
/data/user/0/com.sogou.androidtool/databases/downloads_classic.db-journal

Filesize
8KB

MD5
60c5c9ad408567e01111115880300c64

SHA1
5ccd78de102a92b7e18215c0132f38f3fb05c3f0

SHA256
a777d84a7477bfa70eec66f70087de8ebe192c04957dd583d85464b718ae94b4

SHA512
6b09a5a9f81d7ee2b83601f169386f7c7529b1216240d452c65a8ac0b85e9cba06ae3fd50dfe14c7a84d4b50d0dee6dcb4bbacc4649b08e75f2a159e869d00ff

Download Submit
/data/user/0/com.sogou.androidtool/databases/downloads_classic.db-journal

Filesize
8KB

MD5
f8bab879629794efc528cf50a8d295f4

SHA1
eeb70562757d2f205fa2a8cf69719ae90b1d5c56

SHA256
96bfc5eb569a91342975f404f7e48f4ddad563d353c5699b61ab691e0a21bfd0

SHA512
1d6667d484366fca31de5fbf90147df9bbb8d0580ac96d9930bdea700592e05aa7d0550c021407570df285fcde9929b6a9228310e3a94d92ce7c4a05f63a855a

Download Submit