6f147d7da4a1a4595dd35774464741a00eddb3b5022c3cb794a059e1ab186f53

Analysis

max time kernel
6s
max time network
135s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
28-05-2024 14:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7d53b2d5255a0fab1c685e7f988cac3e_JaffaCakes118.apk
Size

12.3MB
MD5

7d53b2d5255a0fab1c685e7f988cac3e
SHA1

d2da0e0b92190383406649ba04a7a4947f2586fc
SHA256

6f147d7da4a1a4595dd35774464741a00eddb3b5022c3cb794a059e1ab186f53
SHA512

8a3f7421ff32f210eb6824012ff0ee987670c731c5d5b8fcba75ba9e9abc4218614fd6581c9209607a5ec202493506f60717d4beddbdf3c322a280c5a3cc1fe4
SSDEEP

196608:Y5D26pDmV6zUKX2q5pqN+lqN2e9z7owedO/C4Mf4coMBpkhgaN+6L/706ddll9qb:2Hsq50WqlRlC4QBpMdT0slTKUTNuOi

Score

7^/10

discovery

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.sogou.androidtool

com.sogou.androidtool
1⤵
- Queries information about running processes on the device
PID:4514

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.sogou.androidtool/databases/MessageStore.db

Filesize
36KB

MD5
f1abc67cc72bf5fe66779fa5dd1dfeac

SHA1
660f6d1cffa2bf57ec29105e40d08ab103cf18ad

SHA256
a953ef381606a6d98d98f3278e94fc1d5b58a0778f8ea3e305111586b759c14a

SHA512
dfbe97f3c1f3a3ebd63fc5bcee1b1dd1b91dfe01ac95af8fe897f44079e852421fa0c4cf038da6e43264d50f3e612ddc2be9aa17bf47ef604ca428fafe0858de

Download Submit
/data/user/0/com.sogou.androidtool/databases/MessageStore.db-journal

Filesize
512B

MD5
237f354e8c0ccb5de263b5a820328867

SHA1
326b30784729b2c3f1a0e1cc344f4600225463fc

SHA256
63b85fdfbb77a86920fd1be1f276d8be199fd82e432152d8b645a638d0623e40

SHA512
27a49a3743f0f9723a19ef391f3115812e1dfdb1fe10a51b092f1520df482989f5862af09fc3ebc3c8b3b52a861e2903d1f8abfee23ae76527b95abde18f327d

Download Submit
/data/user/0/com.sogou.androidtool/databases/MessageStore.db-journal

Filesize
8KB

MD5
32a1a4dc2859067ae03163822a0b497a

SHA1
ede9e7bb4434df7b28b05dbe7d1734b98ed43975

SHA256
852cdb612a84e1e3df4f99c3a94b7f8e9ef1e124066b9aca48f7784e0ed50e01

SHA512
f38fd396fd97b719e3f7c9e5ccdb152f6bc94afc94453828022f1d510519dad48fee9613d0b529a368e6314b94fc4814724272b95269fa9ea207469020142314

Download Submit
/data/user/0/com.sogou.androidtool/databases/MessageStore.db-journal

Filesize
8KB

MD5
94bda5d685db9b5433f03402d93b47e4

SHA1
e35be0c78b286f9cc68018bfd7a6d1db41790214

SHA256
24670e45bd51981510d8c811686ce160c65dce59bea05a1675c89a5f801018af

SHA512
d4a4c249c392b02edb39384027f4e1243334d0529eb63a241b25bb3863b68f472204c6c45811a156440ca6f8621cf0e5488254fca2923073d5d8f8bb1f782a70

Download Submit
/data/user/0/com.sogou.androidtool/databases/MsgLogStore.db

Filesize
56KB

MD5
a860ba3e3a648f73fc11269ff9ea9c16

SHA1
7167faf1666bdb05633e945dddc3d6af6c35fd0b

SHA256
4087524ad761d0669a39007849311b2b0a32c1a62d0a7ff04d4a77d702bfe27e

SHA512
279991548672e18e99522e1402ab96a3b1887a6ccbfa350cab5c5f5096807beb647b9cef0a5668755798f8032e243aab9ea5f1cfcd934671153d54fce48ef8c0

Download Submit
/data/user/0/com.sogou.androidtool/databases/MsgLogStore.db-journal

Filesize
512B

MD5
c20b8bf22d833246789e91fcab1f1c04

SHA1
a526212c59297a055aed4801c779cfaaf050d06b

SHA256
22ab5001506967319eac275183cebb5b260a6d33f871a7bcecca3cf0527c86f9

SHA512
849b513ae0f922a9b505073247eae2e16e4b7411c05b72139bd13fdb806cb5812226a18f85deece8f2c221a09f87230c53aa3073dc499830ee158e7d219efcde

Download Submit
/data/user/0/com.sogou.androidtool/databases/MsgLogStore.db-journal

Filesize
8KB

MD5
66fa45e4a732aae2831a19cc947cef8b

SHA1
19c17147411cc1df01a372109714bcd3468c36c3

SHA256
fe218ab931a0ae8ddeebb265a956fb17429133bc2e4af572705273a45f16435d

SHA512
5e6bb1857c48660231759217aabe6c9cabc4b6e43d9a291cec2e027c5382dea224c87aae6544a9ae1020c9ce46b3cc3e9cd9acd5aca2a4ed7ad8f373a906daa0

Download Submit
/data/user/0/com.sogou.androidtool/databases/MsgLogStore.db-journal

Filesize
8KB

MD5
4b105f274ea50a09a4019bf44107be1f

SHA1
8517a9819361eb4b05bca30d2e44d31a9ac6301d

SHA256
38e78ac4b262ffeba7775965a53f6c9087646758aa05317489ab389b204943a2

SHA512
9583ee1455d0aa031721f2b25444e54d7747efc142c8624691b67fecbf5921865be09e66271493a1b4648b31d1e89ea54efac4736e04ef3de75a0e23107689a0

Download Submit
/data/user/0/com.sogou.androidtool/databases/downloads_classic.db

Filesize
28KB

MD5
2d572328c4c5566f8c867c3ef352d28e

SHA1
d3a7250afa0cae72ddf52bf6204632a59910abbc

SHA256
da2f435b4c4f110c3974ce7676538bb251adbe5f3110e300e4a9203155632015

SHA512
e6190f1c21afcaaeb3c19d6f7bfbbae977ffdbee558848ebc6d0fa1f300277be945898d23f9d75a42cb55e61728a35fc13ae7ecf01452cb6af816f7907c32ecb

Download Submit
/data/user/0/com.sogou.androidtool/databases/downloads_classic.db-journal

Filesize
512B

MD5
1ef8fe8852cacc4cbc5e88a0e2552547

SHA1
99ac9111dec224b6e1cc0edc42b8a041abd529cd

SHA256
b5f325b6de8293e8c27ab41a263df2d8ff5e56a080847cfd57c62d425f821ede

SHA512
cfb33d6dff3483b71d6e0b295a192d4ff5a069db0bd8ad6f9cd492d5373906cef648600911515f6f2e853f441a3e1ed91e850330a46d1f4ecba3730b3ea1fbab

Download Submit
/data/user/0/com.sogou.androidtool/databases/downloads_classic.db-journal

Filesize
8KB

MD5
3111ac04d134b13b788deb088d745b10

SHA1
d372d1cab835edb75006988552282a4a9c611ddd

SHA256
4a54b697c8c3c286034a1a946e12b3030076e61b2341cb33ea590569651fae37

SHA512
71503571dfb32f39bf7981bd4bb37788674504c50fc8d477d8c1822fd46f3e5e8a94f44f4babe5745413e3bbcc2999faf969f6b5fd6a8104f867aaac82a931ba

Download Submit
/data/user/0/com.sogou.androidtool/databases/downloads_classic.db-journal

Filesize
8KB

MD5
4d6e46a0c9ae66537bf8b090c3545ced

SHA1
42084f97119f2b747160fc94ad6a5ffd6c2f11e6

SHA256
31a3507fd7d9ddde701bd4b2524bda7e48c1de951940ca9b6b72a0329e745595

SHA512
aa04d329115d1ad89b866bf0054c4fc945f29adb4afe50aa585da3ff6322eadba7dc03d316069c062f23d66b03ab126ac54b722409f9959d4820b06ce1c77c80

Download Submit