6dd930a2e79c95cdb5a0a33c68dc00423d8a8c6de88decbd6047ead9656304fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

819ff8bccb67e8ae28b8eea4a458bfff_JaffaCakes118
Size

18.9MB
Sample

240529-x19t6aeg5y
MD5

819ff8bccb67e8ae28b8eea4a458bfff
SHA1

2b4d59d1baf1d0c9b54f731b78ff35cdb34322e9
SHA256

6dd930a2e79c95cdb5a0a33c68dc00423d8a8c6de88decbd6047ead9656304fc
SHA512

3a5e93fcaa230c100745425c386319454c17ec6f8c01ac3953e3673d93bb86204785052f77ddd57dcda559e141cdfda945e400d54a7aba2898e59267979e5760
SSDEEP

393216:XF5IcMY2G+33UkHgppA1tu0uJgsJTwYK552m:XF8YEFHwpG4J3wYK552m

Score

7^/10

android discovery evasion impact

Malware Config

Targets

- Target
  
  819ff8bccb67e8ae28b8eea4a458bfff_JaffaCakes118
- Size
  
  18.9MB
- MD5
  
  819ff8bccb67e8ae28b8eea4a458bfff
- SHA1
  
  2b4d59d1baf1d0c9b54f731b78ff35cdb34322e9
- SHA256
  
  6dd930a2e79c95cdb5a0a33c68dc00423d8a8c6de88decbd6047ead9656304fc
- SHA512
  
  3a5e93fcaa230c100745425c386319454c17ec6f8c01ac3953e3673d93bb86204785052f77ddd57dcda559e141cdfda945e400d54a7aba2898e59267979e5760
- SSDEEP
  
  393216:XF5IcMY2G+33UkHgppA1tu0uJgsJTwYK552m:XF8YEFHwpG4J3wYK552m
Score

7^/10

discovery evasion impact
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks if the internet connection is available
  discovery
- Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpact

behavioral2

discoveryevasionimpact