Analysis
-
max time kernel
48s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240514-en -
resource tags
-
submitted
30-05-2024 00:31
General
-
Target
8282dee6c477a90d43b6d52dcbf23fc6_JaffaCakes118.apk
-
Size
302KB
-
MD5
8282dee6c477a90d43b6d52dcbf23fc6
-
SHA1
301d36f92b4227b20cbae749ed15c7d1ebf37636
-
SHA256
53d4166c250b9b6d91179d6059835059a988704afdc8e3d9abe5b7e51848bdbb
-
SHA512
4e477e99928b86af8396b6e945ce9478c4224174409f02dcafee0136f2c4a841e7b3c912d9ce9beea6c24e812045f24bd6e3eca5df7e4ae63465c587bfce7db0
-
SSDEEP
6144:IbYoeGof5OydPaFVbYrsaix7U6fFlwPU8U6qQvTrvRKofMnfY3:IbZAfIydSPYrtQf6qQvTrZNUfY3
Score
8/10
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Checks if the internet connection is available 1 TTPs 1 IoCs
Processes
-
com.colorme.game.CleverFrog1⤵
- Checks CPU information
- Checks memory information
- Obtains sensitive information copied to the device clipboard
- Checks if the internet connection is available