6f3cd80ddef5d821940ec2c3a0453f45c6f8f7151f98eb8ed806e926e1fc5af5

Analysis

max time kernel
179s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240514-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240514-enlocale:en-usos:android-13-x64system
submitted
28/05/2024, 17:28

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7dc9d126082d37fbca75f878c6e3f8ad_JaffaCakes118.apk
Size

31.5MB
MD5

7dc9d126082d37fbca75f878c6e3f8ad
SHA1

8b25b02e4a772acb706416e3b9074af6f0ff039b
SHA256

6f3cd80ddef5d821940ec2c3a0453f45c6f8f7151f98eb8ed806e926e1fc5af5
SHA512

5b214e256c87cfe8d10b35647e3598609b470dbe111123c60207cc969581471320e8c0d9aabb34de4f5896222ecae102d4c7b1baef0bf8f4a324210fcf265126
SSDEEP

786432:B1U/c+actUN9b90tk1p947B7383eAsUo7EwNgoe:B1U/PaGntkip3833hogwGoe

Score

8^/10

discovery evasion

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.chummy.banmi

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.chummy.banmi

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/data/com.chummy.banmi/mix.dex	4361	com.chummy.banmi
/data/data/com.chummy.banmi/mix.dex	4361	com.chummy.banmi

com.chummy.banmi
1⤵
- Checks if the Android device is rooted.
- Checks memory information
- Loads dropped Dex/Jar
PID:4361

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.chummy.banmi/mix.dex

Filesize
292B

MD5
63f77f99bd2c2b772a479923bde11974

SHA1
c7632e7d301e4463fafce85f84e9c3d7da3fdbbe

SHA256
4c76a3af64cdd2f8713ffe2733dea50dbe714d0ca41c17d1847ee5b62a7ca615

SHA512
3aae4a89d1ed51fdd911cb367eb10afe3c2264e4222085891b18a60d5412f85d10bf5c8f3c6642db70abb9aa42732bac5c42c42ee32d587100f53c21b5beb16c

Download Submit
/data/user/0/com.chummy.banmi/app_bugly/rqd_record.eup

Filesize
343B

MD5
d33a71eef8ade0b8ec6177a5dd291b90

SHA1
803ad777007db0303ffdf321006b86b46d4737bb

SHA256
bf732df2e1eeafaac5ca7e4a1ac55d012b894ef4a76fd999650d6497a9578cb1

SHA512
9f4b047c16d7c10e4df2bcca75a73856b412d2667c95118eca441085745abad0cece25515b099f07f5b16183f5bdd066da88bf164016f3a113fb4b85b8ce22d0

Download Submit
/data/user/0/com.chummy.banmi/app_bugly/rqd_record.eup

Filesize
2KB

MD5
d34d508834c0da89d04e4cc16ff86c24

SHA1
5b7ab8ed4589fd10156d8f11ae142c64164a1f60

SHA256
a4856c7acdb4f94ba36dc54493d15d949999a88d68936e90752cf1b90431abd5

SHA512
e1d54d7381019b77e833a2505bc2ca4c33fc3f2e300257d85c82061ad3de03de84de1b42c96e5e68b5227e0b06b5f66bbb8689ee0c3da66446f4a07aa51c5803

Download Submit
/data/user/0/com.chummy.banmi/app_bugly/tomb_1716917360565.txt

Filesize
56B

MD5
bd0f8f8f3ad93fa07623422ec6e72003

SHA1
c3589295e7a4ddcf35bcd7a2c13bfd381783821a

SHA256
7fe875398dea7537a57a77c5275cbc8647aaf63ab6fd9148443b65df2e1d0647

SHA512
2ec3e073321262b667afbf98fe4e9f51e4c0c58baaad506b120239031f10699d699b94470bef13007bd6199df3d3b03f1eaf147c0cba5178aee7e267072b1c0b

Download Submit
/data/user/0/com.chummy.banmi/databases/bugly_db_legu

Filesize
60KB

MD5
7b142c6c1642f303e1956b501f3a7af5

SHA1
0b53cd2790baa1783c269aa42cce43833cd5954f

SHA256
24ac8ebda96074698c97073b2be78c3161032c2f5be48a43964c0a7c05f6526d

SHA512
03615a309e5b9173531e87f306b240a1476e15b85f6678162e6569af5c5e2bf1291e3b43256070a26c94e3f334ae36e7a30a5946f16d70e762c1ade67081ef68

Download Submit
/data/user/0/com.chummy.banmi/databases/bugly_db_legu-journal

Filesize
12KB

MD5
ab9c6516966d98d109056922c2adb065

SHA1
49e5039aac793dd74342812f79494051501df16f

SHA256
4f877006aeb6dcb51ef28696da9731be5c1f6271bbaae147eb25aea8eda89740

SHA512
c4c78772b9d57c9eb13067630dbbd37e7a2d97a4f921435c88cf31590b229a2299371f9e544aadce9bae3e336b792736605fdb1aca24c251ae1f6714b30c635b

Download Submit
/data/user/0/com.chummy.banmi/databases/bugly_db_legu-journal

Filesize
512B

MD5
407c597fe076088cf90a32347881dc79

SHA1
58cbaae2578841ceec2d3952611ccb049e3a683a

SHA256
b8eb4a328d2bef914fe25954406aeb75f258939064baa6a9e492909dc3ed4a40

SHA512
83bcfd0f5cd53f4d03ae50367737afe7d5cf215dfc9acd8cb4c327d8b7a08d5705ce4c9d813d4872b3472a41c8cbf86417f7fa16aecb93e6f0a5d57c026dc1ec

Download Submit
/data/user/0/com.chummy.banmi/databases/bugly_db_legu-journal

Filesize
8KB

MD5
0044d1615b9b75d23654368cabc222d7

SHA1
26fe18b123c00bebb84ec9774c82c2cda01e925e

SHA256
f7466c05f1e2544c08140069d1345e7d0eba4deb0fafaa31f1b3e9602ba0f8ad

SHA512
f7d63dab170f50012fbd25d538c5846a85c8db37d9cc2b0e47acc49d79f6f92c354e013fb295f156339dc80d0406db7297d01a06935bff7f36feb4aafd0ae190

Download Submit
/data/user/0/com.chummy.banmi/databases/bugly_db_legu-journal

Filesize
8KB

MD5
ffdfdb02b7003cf74bfb72297d6d9bbd

SHA1
4285dc7e337da32c20c92f08efa0bc2881fc1fa1

SHA256
23acf14063919924be6ce5262df12a787df0297d0ae4935b3cbda8e5925b8304

SHA512
0eba0499bd761da0d2bf0ee8d94f8ff74f1d8e7a1b86ee201eaa2d95d06c31111719084d0796b7365e7cf8d7ab9a59bf7b89e91c1a5c615a94e1c43c5ce12952

Download Submit
/data/user/0/com.chummy.banmi/databases/bugly_db_legu-journal

Filesize
8KB

MD5
eafc41e9e110c8cd0cde3fdc056e6087

SHA1
aa0fa6c05b8fd908335f066711927c287eeb842e

SHA256
c8573e3fba42befc48e3c8b8fb31619c4e815331b14da9520d4776aba05f5a47

SHA512
0414747cf9ad15198b9c778823cf47ee299f386fff279d819f37554ee24c74d3c361cb7949b860fdff44af3d70bb929dd96e90ddca1a9e271c24ec1e2d26c39c

Download Submit
/data/user/0/com.chummy.banmi/databases/bugly_db_legu-journal

Filesize
12KB

MD5
e95e0e6e999aaa273e55209a0befaeb1

SHA1
a4e46a7f9f7d60031c5221b9fa4bbe490361ad34

SHA256
cfe209ba337095003c9ef2f9b4b307c25002f4def47a5d6cf1bd948f5f040355

SHA512
5a7ccbc5da6be10a539a47e7461869f333552cee91bd725086b1fa517514436accf58a095263061325dfda8c3c5d2cc740eac39ea82a8c6b731f397aeadf6bd6

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads