c82b3043a20a6b41f5f3035daa510df67de28ae1e0dacd9b2e602ac3ea3ce54b

Analysis

max time kernel
6s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
29/05/2024, 11:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

809ef97964dbbbd24923eb37a1a28130_JaffaCakes118.apk
Size

28.0MB
MD5

809ef97964dbbbd24923eb37a1a28130
SHA1

ae3caaced2eed39b28a7ebaf57a9aa203067bf84
SHA256

c82b3043a20a6b41f5f3035daa510df67de28ae1e0dacd9b2e602ac3ea3ce54b
SHA512

73c3b299099e66c4fd0834b742be4a95ff88f2350ba116be4b53c1af16d3665603223d23117633e6ff8f8f2245145a1c74fec899f7e9fa4ed0042c38ae21d65a
SSDEEP

786432:YU9MSCp9RF4Fg3IwWB/olcCpW0YqfazhnbtoLClz:uSCp9RFIwwCpWsenRoLClz

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.AlexNaronov.DaG

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.AlexNaronov.DaG

com.AlexNaronov.DaG
1⤵
- Checks CPU information
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4280

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.AlexNaronov.DaG/cache/.chartboost/session/cb_previous_session_info

Filesize
189B

MD5
1d664251692c0c4c062a5d9f93a2dc83

SHA1
2aa03c510e01c37b1e386f83e6b4c766020645af

SHA256
f1b9bc184818cd9fd5a623be45a926f42aadab227b68a3830151d4fcbcfe60a7

SHA512
b7324f7346b6a995a4bdc7a75f7e72a1d3b0b2553601b6793c91e74bc573b22150d32f296fa71e7697e5572ab7e0bfcb3cc3a99a834ef0ae1067049c463fbd25

Download Submit
/data/data/com.AlexNaronov.DaG/cache/com.android.opengl.shaders_cache

Filesize
15KB

MD5
a9122959259969df60ee35d1016b2a90

SHA1
29487c2b7430c5bacfd2450b185f0e36d8108256

SHA256
42d077c7c27ccdfa96c1050bd54df772f9ad00c8e54cd3cf42b8d2925a0245a7

SHA512
5978df06b1e582e79f79170934c4887e1e56d1414b08f28a399bbbbfa3799bb37d93f5d1b931099950c8fdf5209eca253637c254346f3198580083848abf809c

Download Submit
/storage/emulated/0/Android/data/com.AlexNaronov.DaG/files/Unity/local.667a1ecf85ba79a45893159be676d417/Analytics/ArchivedEvents/171698311400000.9b68751b/e

Filesize
42B

MD5
31e7c0380391afdc90198b54a4122eec

SHA1
cb81edf423c231537a44d6e98af7c8201142ddf3

SHA256
adc989f1787e0c546d48acd4b4a23a7a172f6e25bd83b2c8222103412d2d56d7

SHA512
1a3e5ca2373472bf5c1a7da31c2c50c01bfbddec508059e1815813895cf8ba528472a3b5871cf382bf103e09ac506f43ce00bfa04512997bf095008c9e1064eb

Download Submit
/storage/emulated/0/Android/data/com.AlexNaronov.DaG/files/Unity/local.667a1ecf85ba79a45893159be676d417/Analytics/ArchivedEvents/171698311400000.9b68751b/s

Filesize
336B

MD5
a1741bca7df312d4999a26a4e7df78cf

SHA1
644957e09b6a91329258745462565ce77be6da19

SHA256
047f7829bdf4bf67002acd3ea420082d41247993c0e055b45a5e81bf6bbad6f7

SHA512
858282b25e2380a98a7684b834af026971f9ca7c72277050d03de32dd93af2b1ef82860ce8f6a9ce2613c1036c400e4714a57c98e84865f06e1c014aad4360c2

Download Submit
/storage/emulated/0/Android/data/com.AlexNaronov.DaG/files/Unity/local.667a1ecf85ba79a45893159be676d417/Analytics/ArchivedEvents/171698311400001.9b68751b/e

Filesize
83B

MD5
a2206773947ac05c75aa599d3cf2d74c

SHA1
4cf12bb5acbea42a3d7dcf979632dab2f239878a

SHA256
0c49ef9fe62e25e5a429641c6212d9157d3d081c45233a4e6b85738552a8acab

SHA512
90f65943adbf31add8f63471ede65f7d2c97e0cd13661d63ebe09c4df59f41275fbe431fa7b9ee67322216117c280accb068c9a854488ac8ea3103416646b65a

Download Submit
/storage/emulated/0/Android/data/com.AlexNaronov.DaG/files/Unity/local.667a1ecf85ba79a45893159be676d417/Analytics/ArchivedEvents/171698311400002.9b68751b/e

Filesize
967B

MD5
44efbb16b60c0a305fbdd592f4998c41

SHA1
3745378d0b1dfacc908dc3f17ba2945f0e25cb1f

SHA256
9a2b72176d5c091289d35670d4c017b496084063e3c990d07a308f0be0727012

SHA512
9e6368740b9fcd5d9fadc77ec767e8f02919025a1dcf5bd85d32213e47fb8cf013efd56b1461f39cc3b721b61794269e2c6eb6a898c3d173bf4163ae441e8de3

Download Submit
/storage/emulated/0/Android/data/com.AlexNaronov.DaG/files/Unity/local.667a1ecf85ba79a45893159be676d417/Analytics/ArchivedEvents/171698311400002.9b68751b/e

Filesize
1KB

MD5
48121e1b22dfc642a9b29e6ffb527dd7

SHA1
1ca32f7d890a2bdc45dca9cf467a33b9b0c0ffe6

SHA256
d20c4f4b54c6acf261d184e9aff21ad791626dcf7dfd86d24ddeded293f92037

SHA512
586a68ae65b259f59678a452acb130885affe0553e5ba6ea62b7f0889035daa64a65f056534f0ebd55e18b1f72c98da30b0f4a865089e2d4bee7cb4338b75211

Download Submit
/storage/emulated/0/Android/data/com.AlexNaronov.DaG/files/Unity/local.667a1ecf85ba79a45893159be676d417/Analytics/config

Filesize
293B

MD5
8673a8ac0b06a9d056d08d62f857ba4b

SHA1
a351bea1932270bafbe468584058fef20dcfc31e

SHA256
83b3f90c4edf1f122c8faf9784ca0aee4dd017c65493ac181c1814211703db96

SHA512
edf28eb7fcef654f139285d308f817ee230d6f064a4c865109d6dfe6f73c11f8f35737c8159c8a302118237ab980899ba5773f547cc9da4028643a53b08e324f

Download Submit
/storage/emulated/0/Android/data/com.AlexNaronov.DaG/files/Unity/local.667a1ecf85ba79a45893159be676d417/Analytics/values

Filesize
151B

MD5
898a9ea608064b42add31021f99b9955

SHA1
fc5e437c8c4f6bca3dbc08da81c5e58d3c125783

SHA256
522fa2c7afc96f9ecac0bea6a05de862ee7657bdb2b812543630c83e0d8f289d

SHA512
cfa43f3e06de82da93fd490a99d7f48c581bddca0215e592bc568b36392434640f92126a6db2aacf27f92e1cadb148d6a135392d5bc60954da6ced25dba99f86

Download Submit