8d17cb16718c4121f7e6f7805d101d1c51c79a46d56dcd8f70b72a99ff5b7265 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

855724bb704ba2b861ec809c114c8dd0_JaffaCakes118
Size

7.8MB
Sample

240530-3w8n7afa3z
MD5

855724bb704ba2b861ec809c114c8dd0
SHA1

1e81390874df9ab05a387d8dc78f7f1c5583ef55
SHA256

8d17cb16718c4121f7e6f7805d101d1c51c79a46d56dcd8f70b72a99ff5b7265
SHA512

599e4eccd3229f3d8b2e6effb6f08881715ab6f895a1bcc9106d40e421bf0fe5c73c16334d57d6dbf97d7984b61b2fe7db3f37c4f500e2ed828528fa60d3ff9b
SSDEEP

196608:pLqJgR/i0yziQ4grjchfsGvvTZKGS11A2ait8Iz4SOHQmn8QEcJIbaHO4SOjrYf:pmWw09PhEsL8S2acEr/59rvo

Score

8^/10

android discovery evasion impact persistence

Malware Config

Targets

- Target
  
  855724bb704ba2b861ec809c114c8dd0_JaffaCakes118
- Size
  
  7.8MB
- MD5
  
  855724bb704ba2b861ec809c114c8dd0
- SHA1
  
  1e81390874df9ab05a387d8dc78f7f1c5583ef55
- SHA256
  
  8d17cb16718c4121f7e6f7805d101d1c51c79a46d56dcd8f70b72a99ff5b7265
- SHA512
  
  599e4eccd3229f3d8b2e6effb6f08881715ab6f895a1bcc9106d40e421bf0fe5c73c16334d57d6dbf97d7984b61b2fe7db3f37c4f500e2ed828528fa60d3ff9b
- SSDEEP
  
  196608:pLqJgR/i0yziQ4grjchfsGvvTZKGS11A2ait8Iz4SOHQmn8QEcJIbaHO4SOjrYf:pmWw09PhEsL8S2acEr/59rvo
Score

8^/10

discovery evasion impact persistence
- Checks if the Android device is rooted.
  evasion
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Checks if the internet connection is available
  discovery
behavioral1
- Target
  
  res.bin
- Size
  
  205KB
- MD5
  
  dafb7d4b90ea8d376128c625183dd9ad
- SHA1
  
  883c9b0586e740e9fb976d27a437e84fc26e92fd
- SHA256
  
  07be7e035e50b372d700b7cc148515a26b0775b2b485e50895988753fe24b12b
- SHA512
  
  56deefb30f358f2d404c93725f331374f0878b8121d95412ab1b1299364b2eea2b7fe179e21bbe96f4076300556a09f55825118ff67b401504c2f3b82af6b13b
- SSDEEP
  
  3072:jFsFh83XDWxVFkPRLccq5sOwglfnhdQkWVsXQp6D9PhTbnEaxEiQWu6vSP:jFrzWlkKcqiglfnrXDRFnEaxxaP
Score

1^/10
behavioral2 behavioral3 behavioral4

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence

behavioral2

behavioral3

behavioral4