34f7164154c79f42970ba4c671e9301c6bb6995a9ef608d48f4ba15d67599d82 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b7330b601ab0925b6385b37ed81d670_JaffaCakes118
Size

12.6MB
Sample

240528-dfswcsdd57
MD5

7b7330b601ab0925b6385b37ed81d670
SHA1

a2547e70dc6d489877eb70b92fe75a786bf2aabc
SHA256

34f7164154c79f42970ba4c671e9301c6bb6995a9ef608d48f4ba15d67599d82
SHA512

4b2ddd9849d2f15b3ba9d833a03ae80c72b43cf7e29eb662b46ac02c169dacb056f47c62856ae41b7dd95b375829595991e3354422a4cd7df332f64610600205
SSDEEP

393216:n1Sp5gXeOJY8FI1970I3RzYHHx0aKN+w4db:1SpWXeAI3RzKHx0aR

Score

7^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  7b7330b601ab0925b6385b37ed81d670_JaffaCakes118
- Size
  
  12.6MB
- MD5
  
  7b7330b601ab0925b6385b37ed81d670
- SHA1
  
  a2547e70dc6d489877eb70b92fe75a786bf2aabc
- SHA256
  
  34f7164154c79f42970ba4c671e9301c6bb6995a9ef608d48f4ba15d67599d82
- SHA512
  
  4b2ddd9849d2f15b3ba9d833a03ae80c72b43cf7e29eb662b46ac02c169dacb056f47c62856ae41b7dd95b375829595991e3354422a4cd7df332f64610600205
- SSDEEP
  
  393216:n1Sp5gXeOJY8FI1970I3RzYHHx0aKN+w4db:1SpWXeAI3RzKHx0aR
Score

7^/10

discovery evasion persistence
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Acquires the wake lock
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence