b68bcc1fcbefeb6746fd481d5067aa357f7c0e02a665931f077f68ec39a69ade | Triage

Sharing

General

Target

78c26ba123ccaf8898c4ef349b1e737f_JaffaCakes118
Size

17.5MB
Sample

240527-lymq3afg4v
MD5

78c26ba123ccaf8898c4ef349b1e737f
SHA1

dfa21439cf368e59e7ab59e7c6b05b43fe467de4
SHA256

b68bcc1fcbefeb6746fd481d5067aa357f7c0e02a665931f077f68ec39a69ade
SHA512

63562039abde9b279524f53f47dfdac83e3eef2bc0b5a98459b8191b1705fc1a67f7e02a9775337a6fc22198f41d34259c386bfddd9007ef13421bd470073723
SSDEEP

393216:sM7oSzkJoxymwHozR0F+PHaydkJXaFrgzd1n5YSJb9:sC/ISxdwIOU/ayHgzrntJZ

Score

8^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  78c26ba123ccaf8898c4ef349b1e737f_JaffaCakes118
- Size
  
  17.5MB
- MD5
  
  78c26ba123ccaf8898c4ef349b1e737f
- SHA1
  
  dfa21439cf368e59e7ab59e7c6b05b43fe467de4
- SHA256
  
  b68bcc1fcbefeb6746fd481d5067aa357f7c0e02a665931f077f68ec39a69ade
- SHA512
  
  63562039abde9b279524f53f47dfdac83e3eef2bc0b5a98459b8191b1705fc1a67f7e02a9775337a6fc22198f41d34259c386bfddd9007ef13421bd470073723
- SSDEEP
  
  393216:sM7oSzkJoxymwHozR0F+PHaydkJXaFrgzd1n5YSJb9:sC/ISxdwIOU/ayHgzrntJZ
Score

8^/10

discovery evasion persistence
- Checks if the Android device is rooted.
  evasion
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence