Overview

overview

7

Static

static

6

7f0ac935f0...18.apk

android-9-x86

7

Analysis

  • max time kernel
    8s
  • max time network
    132s
  • platform
    android_x86
  • resource
    android-x86-arm-20240514-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
  • submitted
    29-05-2024 01:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7f0ac935f09bcc1039702d4903af59f5_JaffaCakes118.apk

  • Size

    6.1MB

  • MD5

    7f0ac935f09bcc1039702d4903af59f5

  • SHA1

    40bc8e4bb2bffc33f4e835759bcb30a20ca3d998

  • SHA256

    35449212e9cf8445b19852c1daf9c38e669d9103891bb96e37bb3130c3d0317d

  • SHA512

    447d0785efda673b574ea15def2439ab4648b93ec05023df26b61f90ce932ba6b41c7fa160cc5b3b01260d844af9539020a00edc5e9c801ba28ce4493ab5e433

  • SSDEEP

    196608:UqpxI4/ndkuOp0NJTY66qhiU2YLueqCXlSSrp:tIUnGudTY6Fh12YS/Olp

Score
7/10
discoveryimpactpersistence

Malware Config

Signatures

  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
    impact

Processes

  • cn.willtour.guide
    1⤵
    • Queries information about running processes on the device
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4295

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /storage/emulated/0/Android/data/cn.willtour.guide/pudao#tour/log/20240529/000.html
    Filesize

    172B

    MD5

    23e673a5883d525d240ef6d94897c8cf

    SHA1

    cad56f399ad79809dbdcbe2310b3156e5a01b15a

    SHA256

    8de2d17465a867b6b9a970eab6bae99a1428ca31e24d939574059480020f0fcf

    SHA512

    9928a3aa249e70dc1b43fe1ab28c57ea9e4b650b520a11077ec4cf69a12eb386a218ee4c2cff93c4da7edc0e249f1e17fea1ee204f83a8bb8009fde4d6ec33cf

    Download Submit

  • /storage/emulated/0/Android/data/cn.willtour.guide/pudao#tour/log/20240529/000.html
    Filesize

    85B

    MD5

    0bc6bd8cad1dd976afe3e981fe134869

    SHA1

    f93eeffe7fdf5288a1490a3b218fc94ed8f99d6b

    SHA256

    7260e33ed10cd97df18fcfae714e9644f8e3a043e7ccd5b29e7ba75f6fb15a79

    SHA512

    3b73d54d5ab9000f50b8418bc9ce2919de9508e0e2837cabfb84292206ac1e6c24cea03427bd0a4f7d7cdcf3ca51b548a7ec6d8cf80495756574f8a1ad5637b3

    Download Submit

  • /storage/emulated/0/Android/data/cn.willtour.guide/pudao#tour/log/20240529/000.html
    Filesize

    82B

    MD5

    9baed9ca414f4e13adf4cb34ed461051

    SHA1

    4d2f4be195b9765f9e244eb3cc47540e900dbb2c

    SHA256

    132aafb05430e98773c144e2cd2186c7ad1a6dc9bd899487f7d22b44e2669f62

    SHA512

    1890c973420547199a360a48067e781f122208877adfb052d836455fe02459678d2b40ccff8f5e173869d62415a48c6e8608fb2cd0e114236f1ae4ab3f65cd10

    Download Submit

  • /storage/emulated/0/Android/data/cn.willtour.guide/pudao#tour/log/20240529/000.html
    Filesize

    113B

    MD5

    f79140b01f1afcf6ab32ff185be68d79

    SHA1

    97a2e26e83f6543bf9594afdf5a97daef2b505c9

    SHA256

    be3efd5cebc14ff6fb861b1a655899ef7ea03f0c28f4e6f4752fbefce4ce6823

    SHA512

    31c9bf1e7df37b2df6a8b225b75a8cc19749ff889d7c2bdfeee31ad4466481a884c26dc95e9efe0d7d58207dffeb87d046060efd9d58b6e2a232b00934f77079

    Download Submit

  • /storage/emulated/0/Android/data/cn.willtour.guide/pudao#tour/log/20240529/000.html
    Filesize

    10KB

    MD5

    6e462ad5ca8d2961666e541a17e32055

    SHA1

    c84371025ec0de51702561e33c0e4e5406e105a4

    SHA256

    ae3904ad67ac3015e79e2f74e8e095a473325e5d1b12a9e721eaf122dddb9f6c

    SHA512

    0a7f8fc5684689283ab8bc2e943460fd8b0bb88df4f9edd2ece23e25bc5a9d3f9df4c1d83a94cab4cf9c0672c3b656135e10fdf4a7f333277d012671b7f7d988

    Download Submit