09da8bd04ce6f2d73b1c31a0d7f86d0c9ac8ea89d3ea5cd07b67323cf1e232cf

Analysis

max time kernel
166s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
28/05/2024, 09:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7c8b32cae36aa2b86b834aa3b74ae6fa_JaffaCakes118.apk
Size

27.3MB
MD5

7c8b32cae36aa2b86b834aa3b74ae6fa
SHA1

f931610ae5f3c6e5bbe47c1ee4fd739fec9433c5
SHA256

09da8bd04ce6f2d73b1c31a0d7f86d0c9ac8ea89d3ea5cd07b67323cf1e232cf
SHA512

061a8b2bae9a46da12787c8a395fa0033289c6735403587695b74aa8210daa8f3483653ea81ab851cce6edc0fd25cd274d5719b24359efa35ecb0e26aabc3ebe
SSDEEP

393216:FpExDVCTNad7mTKoh5fsAwyBwJoVmcacHOK2n9p6xvCG8VmrqwF7L8Y/RDMOOH+E:gxDONUaTKqtBpmc217gJB88DMH

Score

8^/10

discovery evasion impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.spotify.music
/system/xbin/su	com.spotify.music

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.spotify.music

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.spotify.music

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.spotify.music

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.spotify.music

Checks the presence of a debugger
evasion

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.spotify.music

com.spotify.music
1⤵
- Checks if the Android device is rooted.
- Checks memory information
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4631

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.spotify.music/cacert.pem

Filesize
252KB

MD5
3e0e6f302bd4f5b94040b8bcee0ffe15

SHA1
ecf8b8f6b31edf0e376b7e3b3a95f2d4e7b41c2d

SHA256
6d45a0555cc3006bb5340f7d9da02e7ae22f910b4824b281042805966e703cfe

SHA512
a6f271f79e238bc494465ebc7c556b9e6aadbfe481470ad48f24ac386fb2ca4eba218ea4e5802a1f903a329ba76d0570379a8c233b9aa7d0b093f9dbb3df17fc

Download Submit
/data/user/0/com.spotify.music/databases/cached_logs.db

Filesize
16KB

MD5
d3c3be7b6421c307861408f31f1605e7

SHA1
84ce1afcc21c6906570b7430aefb43970a01600c

SHA256
278e2e87086024875f976984f7a1125825832795ce6367e8d5aa07f0f8ea7d23

SHA512
fed6b3a1ddb36e075beb59729e73a482b811c36e21003c3b6f0850c4724367980144f431d624632d2542c3287242d45f82b80f9a0b1ff8757eeb849bc7460a9b

Download Submit
/data/user/0/com.spotify.music/databases/cached_logs.db-journal

Filesize
512B

MD5
2779877a77351745466e129add0ab792

SHA1
52acfe4451d8f57f8af038857d226da973e0be30

SHA256
511d078f9da39652fe57af8ce93b9ab94aa1972782c9d9c7894b0c33b181c95f

SHA512
8a9dacf2824e174b7dcc3bed625f63fc1b5058f86c13056dacd6f0e398f062087e0dcc6a013d526f6a7344aa08e722d3e00aa4280d010049939858693585b248

Download Submit
/data/user/0/com.spotify.music/databases/cached_logs.db-journal

Filesize
8KB

MD5
358704e736aec3ce7e0348250fa239e7

SHA1
356f3fb4402874f65b9124cc0dfb15ac7b3d18cf

SHA256
7bcb5a7b5282af6c04e83c02659df98a3b3f339402db220d94e9984031136ec8

SHA512
7841242794c1449b68fde099772a78fb0787aa16e4cf3a1b3596631b4c2d92c270dbde09c859de644c5b12980a02e587c72c615305b9a8a38f15d106f820041e

Download Submit
/data/user/0/com.spotify.music/databases/cached_logs.db-journal

Filesize
8KB

MD5
74ea22ee55fc8d3968925807827d89b1

SHA1
fb2a63619c79cad255b976775093f69fecb2003b

SHA256
53520190d270c17a252cee103986de7553bcc36614dfb982f4a03f69fcb9910d

SHA512
3463d0998aa9339a30d33a27a1bce71f68e514bb0cf81b86cb874c4d1a525706442a09f568587496647b272ee156567cf5bcd56f6d244cb7a06ce97fc0ed2c97

Download Submit
/data/user/0/com.spotify.music/databases/google_analytics_v4.db

Filesize
28KB

MD5
090e8efa8e5da56de25888e9ffbdae4e

SHA1
ddbee2f0e2427562bb18402925cecf02ead0e585

SHA256
97485fa08401ddcd9f06ef9f954ab33ef3d1d88710c74484adc658a1365df9f2

SHA512
01a1ba27cf93bf268b623aad92ab91a8fcb3c662990164ac0bec6e0579a659ba40be9306d07a4ccd182893a36369d510d8c40bb3e1a3e6b85fbe9866d5609f18

Download Submit
/data/user/0/com.spotify.music/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
12d0e2b71d0d00d1ddc5962d71c2e46b

SHA1
687d0dea33866a7249be16aa53c040b4fc3ecce0

SHA256
18d2a408c9d3671c1a52cb9c78470ea423cde0a581a5f59fe2fb8e5057e9af2a

SHA512
2aa98480d866809da24eaedd9c48430ee866a8b19301d17e89898fbb8e751678c3aceb558dae2a1fd8b913dab10270f9b2193a7933ea70a1c03f20da14001e6a

Download Submit
/data/user/0/com.spotify.music/databases/google_analytics_v4.db-journal

Filesize
4KB

MD5
7f4ccfc2e68b9ae21d11a0a57726717e

SHA1
21fce699c3cac88d5ef7ef6a5e2054d60baa54d9

SHA256
ae14e982195a5a6de7be297dbfa734e478824b7e4a92a56e60dec54a12507689

SHA512
5eb9d418d6f2acb0e4c985d2c3350b988db53cd6c9adc847b6ba04c323ec19b28487f88cbf975906c074c018fb86f294e5fae95c3732f2d8c2692806ef5ffc0d

Download Submit
/data/user/0/com.spotify.music/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
fe715a332e12ae012e37fa51dca782b7

SHA1
d1725fb739c5e9a15aad0b92e931e52c56a7d07b

SHA256
dedd8fd71b1290a8bd812eface8dfd90574216c2be1b54fb021d69f77fe52339

SHA512
fc012cbc483d0cffe3d3567b87c777a283de0f1712bc2d37890360300c075664084068762075e049a8db0be71c4c9af524e71bdd86b2063e8202b49e3aabb42e

Download Submit
/data/user/0/com.spotify.music/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
a09f544169c3195b2271e829c21413d6

SHA1
420f21a9426c9f82c6c6820c9ae8261ac11e3997

SHA256
c3b8035e73cb92c581b7492dd75cf65dcedacf148ff69d24639c7dbeb34d0c67

SHA512
2a4ecee1482af3c76368b3a7048115245ea30eb5c4ede87b25b0b06b86935d6e77f4ae8e557b061c6f5d12438df1d1e3f8e1d9bd559356e14f6f26ba62e9bdcb

Download Submit
/data/user/0/com.spotify.music/databases/google_analytics_v4.db-journal

Filesize
12KB

MD5
a6d3d14876e74528b4bc7fe136205315

SHA1
f627835906e5cddb18c297ba9b090ed88c0436e0

SHA256
ab3e3a7a9a78b2aeeb0e56dee4b7a20c5195844eff8be1f6896ab7be6ea05219

SHA512
eacfe0280da99ef96f3ba0f470a1df036670ec032ef70d309b16043e5834b58e0e7c4d5b873c28762994f253173df984f0b3032fcde8c6730ef57a3571989aa6

Download Submit
/data/user/0/com.spotify.music/databases/google_analytics_v4.db-journal

Filesize
512B

MD5
014cd9b76ad081a14bcf52926808e703

SHA1
730658e00507b0f413b716aeeffda80e8b1faa6e

SHA256
5003c7491d4c0e05cce5977a1cd6dc7cccf64dd29854f76b636a3020db131ba2

SHA512
a161baf3380aeb168361425e1504ba321c559129ce75f5e4097a7f7747b2da7725184d7754e8f15cbf0ed0964bec258ba217b69c9532534d7eb8aab49bb1bc78

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6655AA37010E-0001-1217-DE095808E988BeginSession.cls_temp

Filesize
77B

MD5
338e423096b72a656a4d29eb8efb757a

SHA1
47f42e4cb82e2fe1473267785b62aa9e40962244

SHA256
7ea14ed40677dfd6ae9316e5690274e57ce64e0c5007fe35a9d82aedb8a0f312

SHA512
f1b6e4e7f29bb89f4d7ef4ab615c10e6cdcfdd2fba365c3073fc98934617cf3b5ce7d1b31c826acc2697fb0b9a022d59a2fbaf728b9dde0514b9dbf1ecbe7eb5

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6655AA37010E-0001-1217-DE095808E988SessionApp.cls_temp

Filesize
122B

MD5
1c1f716715aaf18f6f10cbb219cbcb14

SHA1
572f0dae081b8e78f92f815dd0a582c284a84447

SHA256
205e5247e4a08915c0d1e54f1b88ff3c1cd794b20e249f805873b0fa4d3f178b

SHA512
0a93cb9da7af7424351b892043be2b3a853e9fba2d6877f8e6582ef9c9e6b8e2b4bebbc87fb3f53e6f14255e7c9993809661e62a8344a2eff74a719c6561b5b1

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6655AA37010E-0001-1217-DE095808E988SessionDevice.cls_temp

Filesize
88B

MD5
1bdb5a68fedaafcdbb8437b40daa5831

SHA1
23748966f44fe6c90cfa715702d319de738a9464

SHA256
bf9c88fc608fd98bafb71b9ad4cb153890bb92f09271d7d1b5a00a559ae8209a

SHA512
7fd08ffb805ece9ed283398c107da3bdca8f2d3692b32d7a7b0dd9c3273d37447a1653435ec0a7993bf6211a7f331969ec0e12da21d2a760ba559c962c8bb70d

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6655AA37010E-0001-1217-DE095808E988SessionOS.cls_temp

Filesize
15B

MD5
b3d9541cc92a9153d14e5160f8d8c008

SHA1
2e1ac80eb381dd82a03795b682f92020348c0113

SHA256
1ead5b213c87f182ffce484c34f7d9f140ad3425c0f303f460492efe8a26c56d

SHA512
78074409135a210ba4e1407ad9b3f784f5683e83aac4ce3482d4e8135425cf2b30db1ff5dd0041901c490a551a477237c6d255671c7b1fad74090980dcf3334f

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/log-files/crashlytics-userlog-6655AA37010E-0001-1217-DE095808E988.temp

Filesize
5KB

MD5
777921daa1a74732dffd27febd5fbe52

SHA1
e1d42c25ddb266e7f91f1264ace092186ccae9d9

SHA256
9c301f4d350b767cbb105f5f09ce9e08ac7effebb6a4b9d53e40226a05076ff4

SHA512
d15acaf405941d4f66f8304b88d3530b26a19e4f92cb94b3d72a724a050f2d76f21bfc96036d78229e526fab9d0d2d3434a99c7444b3e4b92eda30e26e9359d3

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
2KB

MD5
07b4e2e75a1d3f4cf009ac13ed306479

SHA1
ebf7c5c9ebc219deeb4d83c8b43ed06c1de4f6b1

SHA256
5f8e091220eae6fd4eaf910e4db8a3dec0c2558fdb3407f6b0fdc7df23858048

SHA512
d31cc18b8f38a8442ebe3d3512361fa022dd680d285d7217b2d0e5dcf96431c40504c280d43c579cc7ef3e8bed731992b706682eecc1b7fa648b9f94cf8f8f54

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
398B

MD5
751502980928609d3e617bd4f51b925e

SHA1
d8f075fdb0f47f88a421a7791c884c71f4e43cdf

SHA256
5926ccd7d1f48e17a125c5d44a502945b3515d08d0f6ef08a11d7f82d3f76ae7

SHA512
16829667a2cf1c8fcbba335005bc68e237425ff99be1900ec07fc62bfe65a540ae7f17566da4cc059c372cfc516dadf7340f520b92eccaf2251d30f1bb72bfb1

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/user/0/com.spotify.music/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_55ba2971-33b8-49f6-bcd9-d819a4763d85_1716890167778.tap

Filesize
321B

MD5
a81ea1df9f55914caeb55c98e610836e

SHA1
17c4b84ffb9d59b357954545ffc5bedb432051eb

SHA256
3500d5be07a441af942b44a1e932e4f6a1c4adf8d0edb21aa1d226b505ad6d76

SHA512
2d9707a1f2f54953627ace2b126e6e1f875b96508a21dde10ec85a2de9060c607f79756363ed242eb527457020e663c3dae672a6d548462654f3d8e75989a275

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoActivityState

Filesize
297B

MD5
a3603932fab56bb4a2fbcc554820b166

SHA1
b1fe02e86ed06f206666ee4c02827cd1cb2b2729

SHA256
f921e5b9cd2f3a16e11b8b09ab41bf33983dd3c2c8132e6ffe7b551b43f602a8

SHA512
86477d9ef6cea70be900cf4f7a33a44687aa508aa3673fc508869fa92dcfab05c9cb5ea661fee980cb65e099ff5e84512aead435d6059230220c7ceae53d324b

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoActivityState

Filesize
297B

MD5
bb715e5d6f380bfd8fb12694deb95c75

SHA1
52619b24828628488173387a02591c6827e6be06

SHA256
eec59533694ff2e8cfaa48ec457d1d11453fe2227e823a60323c93c5c82e6242

SHA512
722139a55554d964c0e0815d9ff82c532bdbf98fd37fac757904df68ef87dcaa513a4f52b4a9ed26dc3e66470b8e8fde7677fab8c458462520ef8c2e4481b961

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoActivityState

Filesize
297B

MD5
78d56c30f1f3ba43a50ae929b3b46ebd

SHA1
95c4fa9e63842bdd74446fdd9fba2118ce5e8e9c

SHA256
6be287b7b6d02b5946530326c1b987fa5553e8792f4bbb55ea718dd6b526e9b9

SHA512
614606e1f2beeef5efd812f43463128d4b29d63e1f2543756714685aa762b6003235aa5ff6f39bd23db3955648ce618e2a033e8eae6ef2aa0c65881d0aef15b4

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoActivityState

Filesize
297B

MD5
e40b04ef786373556f9db9bc6257f559

SHA1
30e9c6d44512de10c6d0a1a53c80a5ba15fcb953

SHA256
da18da12ebe6312de7f2d10507708674d74effc69fde1b84c55cde55bda3b8a8

SHA512
19921251327850036422a897319c9fd2260d845957292e9658d8c5c131cf79413866f521b73733c80e89bbdbe05163b8fc514b97283b243b44bb5427a07eff7d

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoActivityState

Filesize
297B

MD5
a6412ad84848970a0e3ccc761ff8d546

SHA1
a1821b498243b6efb2571bedacd8ef1dce890a4f

SHA256
b76f668d0663f5786e40288a5184d788739bd20e97edd5a6644e29f8fd28438a

SHA512
3b711316f5adde95b913952bebeb27b223e316868aa4434f5ed366ed8a020875f23f2b0cb0dcee9f1b2428358e10899ddfe2c3f1c3c6e81ab2bb4ee4a0591b73

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoPackageQueue

Filesize
1KB

MD5
281ae5c7039962a6807a81a1c759967c

SHA1
32ad668b1dbe87a9332b5c562bfdee6c5f89107b

SHA256
e441a4cc0e182680ab98db0c64d9eabc1c87e34ac04b600c00f7db5ba09e0025

SHA512
14896c484f65d0cab7a2e270c85d0a38113ea3b891bbba9754e7e5c3fb4e8adc08b4b7ec03bb329c94261166b71d30651b5a25fc446629374c5eeed1a45bcaeb

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoPackageQueue

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoPackageQueue

Filesize
1KB

MD5
93682cdbe89e55d75d9306b596299ae4

SHA1
82d6a7b6d28826bffb99b51f6bd69116d904bfbd

SHA256
b778bf0e68063eb2300d14d0cfd94a7a04d580b7c9a416b7b8c51fa92f768fe3

SHA512
d95abf689c6ad1dc9667669fa563b5d1e31cc2b9e7655ef0884b49aa6b752960801dd27d0235280a685ee9ccb1d810c141b94d2e1b47bd95638537f88ecc6591

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoPackageQueue

Filesize
1KB

MD5
c6a04331cb10a86c7d708210356cc56f

SHA1
50c16df3953984a0dfa76f488465df406a01600d

SHA256
fee419af87170edf0672f61dee86b919eea9737ada70a20c78c4136b0a5eff09

SHA512
28619231b44f7849994448834abaccac7ecf5ddb0b19d2da73895ba603489d74a6d4becf9568f7731b3a3018ced38cf15da41b7bee33f8461aac49f94edf4f02

Download Submit
/data/user/0/com.spotify.music/files/AdjustIoPackageQueue

Filesize
1KB

MD5
917f248c0405b68f5f358353bfd2945d

SHA1
4e4367156a88c02c1d5a5ba7000861c6dfa8e351

SHA256
6be4326d4de8b9c5105dd33c18f3d93be730b252667121a29d6ba84f2930511c

SHA512
de7bf6e8a4700eef7b09da4b1a9a7f38310f884b8093d182e823447ccdb5ad10dfa5be258d516de23d16b7fbc04b72369d7cb6a40382a85e7831b2d56c1c7ab2

Download Submit
/data/user/0/com.spotify.music/files/gaClientId

Filesize
36B

MD5
052a533d45608773773eb744e9c574a7

SHA1
d336fb73911e67c4307a827a57582f4aeeaaabd4

SHA256
e6de6ece3f0e4d65e9f9845318e3fb919953f610272ff6173f02b43041b56378

SHA512
207c5f7bdbe42a37acb2c00b004289d98bc15b6ca57ff377fab8570fcf34cdfe6b1531e9e98dbf05f7513baaee979a87ecd7fa5c2a6da32e98a6c45cf8390c54

Download Submit
/storage/emulated/0/Android/data/com.spotify.music/files/spotifycache/Storage/index.dat (deleted)

Filesize
512B

MD5
9137de4fda1901ab8df95536fdbfdce4

SHA1
2600b69360547ac6c4d7abd05e7e18ac46a8765d

SHA256
610a67c461b72c7511bc4c205580494583588b3e2e5989af804abbabb25ce5fd

SHA512
47b85bf7a8233598e581b5bc7b3db7c4f1e8548d501ae022982b78f09f8b1dffe4de1b9079db76868d96cb720dcf249fb9344547263b400e837a0a902250d72c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads