b5ee5dd9f0cb2828251c387bf1c1f333da706b66b53972ca9b140259bd4219e9

Analysis

max time kernel
9s
max time network
137s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
27-05-2024 15:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

79a76edb82bc0d6f4d66e34f56e4022b_JaffaCakes118.apk
Size

4.4MB
MD5

79a76edb82bc0d6f4d66e34f56e4022b
SHA1

87e29564f1b08b451c8f5b0ca6e51f3c3caae402
SHA256

b5ee5dd9f0cb2828251c387bf1c1f333da706b66b53972ca9b140259bd4219e9
SHA512

0f020a323f4da67652423257a28437a4ee18024d0169d77ff0673822aec86af8680de3fba345452650d6dbfe05d8342915c93f74bb1d25c966aad741af299ebe
SSDEEP

98304:VL3poecuT4tkt/Ps+2dyacf5m2/wYomLN7q2pYs:VL3poecu0tkt/Pd25cf42/wYomJm2pYs

Score

8^/10

evasion persistence stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs
stealth trojan evasion

Suppress Application Icon
T1628.001

Processes:

greenway_myanmar.org

pid process

5119 greenway_myanmar.org
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

greenway_myanmar.org

description ioc process

Framework service call android.app.IActivityManager.registerReceiver greenway_myanmar.org

pid	process
5119	greenway_myanmar.org

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	greenway_myanmar.org

greenway_myanmar.org
1⤵
- Removes its main activity from the application launcher
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5119

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/greenway_myanmar.org/databases/rg.stocks.positions.db

Filesize
28KB

MD5
0264beddffaa7477b7bc80c41977ddd1

SHA1
065238021ddf1afe32083f81bc6990fba46cb667

SHA256
ff81e1c664ea6ef6c93f8bc4bbe4ea953209e596edea64e367df10c7321bfafc

SHA512
16f890fedc115582852f0204b7f8dc3b49872125eb92c0c6419749209b76c5a905acb6fa0ed194a75e271279e3828ee777b199f6ee4ea9f1065a1882ea5b700c

Download Submit
/data/data/greenway_myanmar.org/databases/rg.stocks.positions.db-journal

Filesize
512B

MD5
1976a028b11f5036b23c3bd9d406292a

SHA1
6ead1327d84437356e216efbc81329a97a574dbd

SHA256
9d115eedacf5dea35a6b8ec8b25c4a8b8d98e8b8a00eb0afb3dca313e2c07734

SHA512
39e27407f58013e1159b13ec73e1451648613bd4da44b3ffe61544e4e9f9c0fe09a1d5edbad80de6a7aaa555418d9613eb15295de12e364985445bf19c44f22e

Download Submit
/data/data/greenway_myanmar.org/databases/rg.stocks.positions.db-journal

Filesize
8KB

MD5
df173d333faf2091d0ab39e25a661f49

SHA1
19acac2597f5402a8bc9cc7556195e8c17912371

SHA256
bfc75e64415f39f9ca2bca2fad19b42316682aab87796dbc2dff6b29fd2f6c23

SHA512
eddbb3e9d8d2788a5b763ee51187345b0b539f818740a351141b7625641ecb70e83106e74df3c7a6dbb2bb568dba3ef7b0df7d4234ef636d8f5f3fc0d6121a4c

Download Submit
/data/data/greenway_myanmar.org/databases/rg.stocks.positions.db-journal

Filesize
8KB

MD5
8ee339c8cf0c4d33e25468008fc9d9b3

SHA1
658dd4263c21cf23b4c36f80abf656b443a2647d

SHA256
31e5af93738e1a6a350c10cd72171927ee65401b4b4dd6ac00aeccb9d979ea00

SHA512
e24b7ee5846889abf1e26677d6796843609316b71eaac6cf095b4559bfa900b8ce674b94bafafa8b08ab483c0ba54c23b98f215999e9251947ed24b697eba2e6

Download Submit
/data/data/greenway_myanmar.org/files/gaClientId

Filesize
36B

MD5
b865f0fe0fcba9594dce4679b38aed1f

SHA1
5ec78571bcfd3e04ebbcf3f50d527ff76fcf39bd

SHA256
46971890618d2231ef4624925e8c02e6ddce773954380fe6a770ffe451712177

SHA512
0b33f70515090ea9e29d555bfa43c779144e1d8166ff3be091bdcb6e591621034d146fe90808839abf536d2ac82799bcc5a99c0e09e17db0907e5aed45c09f2d

Download Submit
/data/data/greenway_myanmar.org/files/uKVoCGKFu

Filesize
354KB

MD5
8ee1e715b6b2757be250911db3721c1f

SHA1
69c8458dd02820be4ee04e0647e82728ae458ef2

SHA256
413c7e4847a159701fb1c03e4718cc7633e606041d6d901046bb08e76199b1c2

SHA512
6bd940da64b0d34563ac456bd374d1fbaee059b91217de28dc4185116a505888d5cc132a71e8b4c42f4a7266ef099555937c6442cbd9a58308caf25c2c30a79f

Download Submit
/data/data/greenway_myanmar.org/files/uKVoCGKFu

Filesize
631KB

MD5
3e2c71529b63308b1bb39d36d3ead38c

SHA1
335ab4d6504e54a49f839aa9696cb82933b152e2

SHA256
803bd0b3847baf5cebdc00a8a49a6bca22c72469c3aefdcf3c25315ef88a9f78

SHA512
a9b7de9b7fe5c23e14bf273f2d322e448c494b4a73e430ee3f667c744b40f1ba1a6b604898f107b91290fd56d07781530f36a34e49231459fa213e4de890019f

Download Submit