8a40e7641e37d8ed06275cef535b5349b0d007bb84bfafcd562248206845263c | Triage

Submit
Reports

Overview

overview

8

Static

static

6

78eee2da61...18.apk

android-9-x86

8

78eee2da61...18.apk

android-10-x64

8

78eee2da61...18.apk

android-11-x64

8

Sharing

General

Target

78eee2da614018ea49d13f2519929dc9_JaffaCakes118
Size

213KB
Sample

240527-m42mvaab36
MD5

78eee2da614018ea49d13f2519929dc9
SHA1

6462dd870228757be803e7071c875f33fd7da3be
SHA256

8a40e7641e37d8ed06275cef535b5349b0d007bb84bfafcd562248206845263c
SHA512

7e23151d58007d7dc0e67d2383a2fad8750ad402b40adbd8301a6a11f62f6203261cd2909363e114bea8b41410210b4dcba5f0b2442dbd9d2e698d093e7f861a
SSDEEP

6144:fIb/0szi6yig4a8dHtVIFXhYoBKSTrfI/+NE3MS:wz0K99xa8dHb0XioBlTrf0F3MS

Score

8^/10

android discovery evasion impact persistence stealth trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

78eee2da614018ea49d13f2519929dc9_JaffaCakes118.apk

Resource

android-x86-arm-20240514-en

discovery evasion impact persistence stealth trojan

android-9-x86

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

78eee2da614018ea49d13f2519929dc9_JaffaCakes118.apk

Resource

android-x64-20240514-en

discovery evasion impact persistence stealth trojan

android-10-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

78eee2da614018ea49d13f2519929dc9_JaffaCakes118.apk

Resource

android-x64-arm64-20240514-en

discovery evasion impact persistence stealth trojan

android-11-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  78eee2da614018ea49d13f2519929dc9_JaffaCakes118
- Size
  
  213KB
- MD5
  
  78eee2da614018ea49d13f2519929dc9
- SHA1
  
  6462dd870228757be803e7071c875f33fd7da3be
- SHA256
  
  8a40e7641e37d8ed06275cef535b5349b0d007bb84bfafcd562248206845263c
- SHA512
  
  7e23151d58007d7dc0e67d2383a2fad8750ad402b40adbd8301a6a11f62f6203261cd2909363e114bea8b41410210b4dcba5f0b2442dbd9d2e698d093e7f861a
- SSDEEP
  
  6144:fIb/0szi6yig4a8dHtVIFXhYoBKSTrfI/+NE3MS:wz0K99xa8dHb0XioBlTrf0F3MS
Score

8^/10

discovery evasion impact persistence stealth trojan
- Removes its main activity from the application launcher
  stealth trojan evasion
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
- Checks if the internet connection is available
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

discoveryevasionimpactpersistencestealthtrojan

behavioral2

discoveryevasionimpactpersistencestealthtrojan

behavioral3

discoveryevasionimpactpersistencestealthtrojan

© 2018-2024

Terms | Privacy