2f07e915c1f9e7589346d19854a70eb1b343800a7d141e1c6d7373da8a650088

Analysis

max time kernel
14s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
28-05-2024 06:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7c1244c864160d05f260cdf5b47365db_JaffaCakes118.apk
Size

433KB
MD5

7c1244c864160d05f260cdf5b47365db
SHA1

94ae03af340e00208d5f934a71416b026d298f34
SHA256

2f07e915c1f9e7589346d19854a70eb1b343800a7d141e1c6d7373da8a650088
SHA512

3ef375f3c79d907d7a756b5e35b2e836b3402f44a9392d22d389e336b31950764ebebb889014f9212b96dea01ecf7b95b41cfa9584ec865831e01febbd06e15c
SSDEEP

12288:79y+cjUQ7KCvaXEJwUOEDryP0aqwQ5L3J3stcUV42g:4+qGDEtOEDr4JcxA1U

Score

8^/10

discovery evasion impact privilege_escalation stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs
stealth trojan evasion

T1628.001

Processes:

app.six

pid process

4454 app.six
Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

T1422
Tries to add a device administrator. 2 TTPs 1 IoCs
privilege_escalation impact

T1626.001

T1640

Processes:

app.six

description ioc process

Intent action android.app.action.ADD_DEVICE_ADMIN app.six

pid	process
4454	app.six

description	ioc	process
Intent action	android.app.action.ADD_DEVICE_ADMIN	app.six

app.six
1⤵
- Removes its main activity from the application launcher
- Tries to add a device administrator.
PID:4454

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/app.six/databases/a
Filesize
24KB

MD5
35e0fd029f763446d5048baa90575c00

SHA1
c70072be391880711cc3e8d6a59e349c9cf5efca

SHA256
646eabd5ffe9f4e7a50d6d667306f21a1ab4e0058167a0326b010f39b8dd4b84

SHA512
e350c32750686e42fa31472f1c064d88459670c14ee952d4ffac0186c4f863ee8154b1ee249f7fc784d5c69a69357d1ce91786b0e384ded23316907c9d93c955

Download Submit
/data/user/0/app.six/databases/a-journal
Filesize
512B

MD5
9e7182038ddac1b84969ea6aa4afe37d

SHA1
154709217b92dfe1ec602af4d8d3eb2cf4b516de

SHA256
319d2912b39b54929b69317088ba1f806d54f8a299449b4f9aa2dc01cc156b69

SHA512
7d9c6d8f576720e23b9e5e6e1b98f5da2d61c128d7af70ddebcbe7473ed5a6e341f936e25d527ca28ba54bb2fac92396cb755837cde3fea6fbbd3e135f5fc60f

Download Submit
/data/user/0/app.six/databases/a-journal
Filesize
8KB

MD5
48279a953020e1a2aab2cf622e1b55e0

SHA1
60d46416910146b4003cc3fff4f04570d354c614

SHA256
d879ea8ff518b3812f4ad5fa0a273de172e0e00f323f15b82ba775623e29bef9

SHA512
f04a0bfd7fe1214678ab6783769446cef5a2155c93910394f37389553c3a9dc80da6caa9a89f91a39bfaac0f23eb3dfbe8dbb6de6fcba992c0c06dae399969ee

Download Submit
/data/user/0/app.six/databases/a-journal
Filesize
8KB

MD5
af6c1c6cafee6c9b083d75a7ef897782

SHA1
7d163a510edaad712d5da7f79b59fd3bf9df1e8c

SHA256
636be82a4caf8b59b34eae6bcf516c875c94a629eeccf6e28ac4a3ae09f458be

SHA512
881b48c6c3239371a8b948bfe27362226a305ddd9779102832359d9241bf662b0c9bb5d3b5fb5d96ed9394a54d0969ed30eec5ec4912528f5e2db424d3c4c5a7

Download Submit
/data/user/0/app.six/databases/sdffsfdsfdsfsd
Filesize
16KB

MD5
c61754a40628ab302a393c015cbf7ca2

SHA1
3b19f7d900958ddb21de4b6d05a3b265d89a78a5

SHA256
57ab6a608cdf3c57f32e8e02746388170405af6f20b95cfcd99c481e6098076c

SHA512
2067029fc39b96336503405f8d01af74e03a689159a999b32d2f650ab3497fa5613db284a6c56690cf0938abddd5019eba5d4ea2b11d0aff0d6397b8ff0c6aa5

Download Submit
/data/user/0/app.six/databases/sdffsfdsfdsfsd
Filesize
16KB

MD5
e050d8718c1e29fbef094ba4084164ec

SHA1
fab5e9b817616fc16e22afc34f9cb26443b7f9e0

SHA256
9797c3c152ea4257f414eea497498917df58e3175d6e5cee14291cd3af52d998

SHA512
a9fecb65b08531bdf9a819642a8400a38c86c86c4377dd9e970d8c1dc1655e8eb0d3ba6e883b0aaf9fdd615a9f7ae895101fc94c36f183377b3f8e98280ead51

Download Submit
/data/user/0/app.six/databases/sdffsfdsfdsfsd-journal
Filesize
512B

MD5
a87f66362ee047a134df798401cddf4a

SHA1
246208a6a9e9c961fbd083924f5ca556ab74a13b

SHA256
cb7afbb2880191b188ff1c5bf14723698f0bfac5d023a7c75047114c0399053f

SHA512
ba8485995c910660d8fa80a6b44bc915c47bf70b0a3f33a2610f8fc67eeac091f03065060885383c25189a39e695edc188e3b3a652167e9e15adcadfac24e661

Download Submit
/data/user/0/app.six/databases/sdffsfdsfdsfsd-journal
Filesize
8KB

MD5
197aa0bb8c1b2ee6b65a8969b519b1d1

SHA1
e3b3b9add2e1e94008f9c6f921ae84846a425411

SHA256
4568a00c8881ae64407950a769be27fa4094d249cf1519dfb1a9e03b540e576b

SHA512
35f66b1735181c99b1c3baaefa53701c9657a7fa572ff7c5104b625c789727110f5c62ee2286e46c87035ffcab7b1916d9487ad84bc10266135e0d4f834c9e31

Download Submit
/data/user/0/app.six/databases/sdffsfdsfdsfsd-journal
Filesize
8KB

MD5
b408021ed671d0ee649299cb38effab3

SHA1
0e2c7cd8a1c05f0a98f07fe3171056bd97fc7b2b

SHA256
c5e7793e855404dc549c547531159e8b7c23e904cc01c21e729f4e6c5bc859eb

SHA512
fe171a5938a34e570734371776e1613bb2c67b239e3cf892682552a0bf25a22750649aef10073db2e0271b6ea5f2e09f9b41e09207dcbc7d1dbb84b0a4897c14

Download Submit
/data/user/0/app.six/databases/sdffsfdsfdsfsd-journal
Filesize
8KB

MD5
fa60793e6e6d2e47fc39622af5dd8357

SHA1
78066dfa4d688d961daa53c6e9fc0129fb16b601

SHA256
6be9fed28795b6284001fbaa43097e3290035de6af8d9632e8b3c1fd7abab42c

SHA512
20e79e2807f1e01242e782f5a1cf93b08aa372241d0928d54e4c1eb88453d1c72a13576d899ae1190b3f52936dd0ef24ee091661978806100531aee8912d9162

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads