79fb2b7fe038c594d10b1aee43eee0fb6c559d27bccf9ee292ab08ce40824c35

Analysis

max time kernel
64s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
30/05/2024, 15:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

84a55dafd00dd81d83a63e585d872768_JaffaCakes118.apk
Size

3.6MB
MD5

84a55dafd00dd81d83a63e585d872768
SHA1

3a8007c85b6ce75be07554eed51e1152637ef881
SHA256

79fb2b7fe038c594d10b1aee43eee0fb6c559d27bccf9ee292ab08ce40824c35
SHA512

9c1c89d3d71b4433c120330913826adb5704f641a25c3b619d64708cd80a858a5d69b69271954a8a7694cf72bc364166c1b2807d57de54817e409a80356541de
SSDEEP

49152:zBrVNsE+4UK1Z0ly8fyfpNRwR64W1TLWr46Yxdn28xA+B+nV2QauXgfQMgOS:zBrsE+4UnlQBr00Hj6g28W+CVOuXgfFA

Score

8^/10

banker discovery evasion persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	cn.ibuka.manga.ui

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	cn.ibuka.manga.ui

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	cn.ibuka.manga.ui

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	cn.ibuka.manga.ui

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	cn.ibuka.manga.ui

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs

flow	ioc
9	alog.umeng.com

cn.ibuka.manga.ui
1⤵
- Checks CPU information
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:4329

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/cn.ibuka.manga.ui/databases/downloadinfo.db

Filesize
20KB

MD5
c26932a11b8ca824ba9687fbd9f38a51

SHA1
24ebecfb578795903505a5b2d56173b6058b2556

SHA256
5bd97e5a5261fcafb28c7c680d0169c0eb13467dc25ffe64601312a701a9fcd1

SHA512
4fac8d25e98f669aa698d5df7800e10ced4e7d97e2579387782fd8f62f726fc60c15e6545d512992172a4bf8984f86bb7fec3823d9de4de37803ca96b8692335

Download Submit
/data/data/cn.ibuka.manga.ui/databases/downloadinfo.db-journal

Filesize
512B

MD5
24fcf1d8f528d236f8bace8516186384

SHA1
d120d42e9adc975a84e6e06f16112b0efd2e7ccd

SHA256
7d9f0b3e6aa508183669e024173f421f70e969f9ee29204bf98ae2a8d5e18b88

SHA512
4e4488ce25bab0c17c27b20c7a56ffa15d93900a57f9370d061d4f9f083d308d8e254a3de239889a9a4f16e6edd8bd1a2528c567d3986b528149d1fc70afcd42

Download Submit
/data/data/cn.ibuka.manga.ui/databases/downloadinfo.db-wal

Filesize
32KB

MD5
5e2046fdefbeb3d419d14cced23a27c0

SHA1
100868d3b88a00dd4ed2ee3133a5e3ac53dde006

SHA256
4d50205ffe117a35a199b9a5bb8146038e51d36b1e352438afb59113151f2121

SHA512
77761f44e880d79114e2b9c8da222b423347cac145684c3f21092c3b2a83b6985ffc4c8e4fd7a80dee9980be22edea0ba83a46cf322044fc2c82c07c4fb6059c

Download Submit
/data/data/cn.ibuka.manga.ui/databases/history.db

Filesize
16KB

MD5
198b379208fdd35be9b48b3a8585b8e0

SHA1
481a0e8892341b83afc6f6c70a23ab23e49ca02e

SHA256
e1769d5972ef0937ae56943f53577f8025e6aa3d5e7b525309dad4244f9b093e

SHA512
173c3c19c0417fae85d9a932c1783b9f599d7ab007208e73bff69ad02eff58fae329b7db894d2b431304b09feb295bf9bf9485746333f4955d83ff17a4138bea

Download Submit
/data/data/cn.ibuka.manga.ui/databases/history.db-journal

Filesize
512B

MD5
fc9ef3b0e01d0dd75c7fe0335a2b46d3

SHA1
4e99f3e5c59f1388d3f15ca2994925a2fbe9216e

SHA256
b062df89f5181cee6199a63f8c30288f2afed0277bba1f34490c7836b80b729c

SHA512
c53ecb209232eaf282076a11fa6655d390719727e03d5e523f0a966c1f33c75a454fdb204cd035d8d93988a34a79236166f7204c6e8a59f0b6318bc1a6108afd

Download Submit
/data/data/cn.ibuka.manga.ui/databases/history.db-wal

Filesize
28KB

MD5
57f77a302af7e76c70a2989535dc442c

SHA1
4f73771354cb4eb90bf79fe48fe9377b45ff47ef

SHA256
1f74b6ec33f8b777b6eea43dc3ccc18cb1881a369f1a9ac6685a4f0c8ffe0604

SHA512
902c06cd1096c653bcaf2b95757ab5369f835b2a82b2f9a950f1c6a82f26c9af72d11def937355b839f373864e1283246670a8e6320169e4857adf1f51f0246c

Download Submit
/data/data/cn.ibuka.manga.ui/databases/statcache.db

Filesize
20KB

MD5
60d99cd6a35b5a9e9bc1633ca8efc27f

SHA1
78ba90b13d915ad62bddf3c8b9f5e4a6414501e2

SHA256
f480e16073cdc9e28be7296c5afd38056862286a0beec36eba10b3ac244f6519

SHA512
f1e2effed2e7bdee079c42f1a6c1302aff2d54283a5a702f4ebd721ef1b1a3759917a53bc8c38aa9ec0cf39cc910a80a665a8e469d063da42a0ccad8052b362f

Download Submit
/data/data/cn.ibuka.manga.ui/databases/statcache.db

Filesize
20KB

MD5
ace6913950a9a3d3854c4a57e4477315

SHA1
b6566a0b713a72c1ab8fb8451db0a406084e9f4c

SHA256
faef72b828871e9b8de05d7e154a89c0c54d67e20853284801eb79d3c1405015

SHA512
1c0fbe5d8fa46153428f706e9a05db3415dca1d6f97becf09239fa7053ba6ed89a68f3e7d8f4d727afc4ebfd1c8bddadf508a953eb505675e2b23b6cfb7638e7

Download Submit
/data/data/cn.ibuka.manga.ui/databases/statcache.db-journal

Filesize
512B

MD5
86e9cc46149530430ad1bcf204963889

SHA1
41dc585e0bac2548278e30d6c9b621ee75c7ae2c

SHA256
a5f4443a28a544039c0a1e293a16449fb2f32f306b76b494ef9cc6b451789766

SHA512
68e3c95730f702dd394e97b9a12c10bb601194fb947c15483036b11335bb83e65a464bc8f76d033210193613dbb5f7b9beaf204da8224141bb920c8fd317f902

Download Submit
/data/data/cn.ibuka.manga.ui/databases/statcache.db-wal

Filesize
16KB

MD5
3a83886c437f42d0296963fbacdcc8cb

SHA1
3fb3dff62e7c1dfa53ce4cf4f71c0ae9cb5bfabc

SHA256
b55cd9801f7ec46c4a02b71aa354205de1e0f2091a5d0cb3150000ba241877cb

SHA512
01f4dc927db01619dbe57f52eef215f4e0bc34fdd76e3de06edcea188c33886d85c50d05496d715471b594fcd22b17b01d3f88de4d103e774bd7f4bab5bcb58d

Download Submit
/data/data/cn.ibuka.manga.ui/databases/statcache.db-wal

Filesize
32KB

MD5
89737ac148a70de886a895dd3a7f013c

SHA1
31b06656fbb157e7d6928a3d125f7ba20a8a28fb

SHA256
a2a9928c2c42f0176d9408525d7d6aba33687cc27a895bc7e0e2c0734199be41

SHA512
91de8c1b33a5322637da8f02659306d3d24d522c184d69075c287983c815ee4a04718e50dd6daaf1d3d3cca0dfdd1059b8855638ab870c765631e5fee541715f

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db

Filesize
20KB

MD5
5aef161e4704865a057b44047105ac79

SHA1
35acf9d9d1c5a0bf6ee627be58777787c9e4fd0f

SHA256
2d2470e50d337b082fa60f294a92e0893dbcd6270eabd771d53802959c1cca18

SHA512
ca582fc6380848daf121a808d5b2b900d937d57037e6d9ab75bf576b6143d47743a6ca2b838d7dbd9ba40ce701c52c51fea1c65ef264439d3be334ac78c08860

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db

Filesize
24KB

MD5
862f11573043285483add11555c58fec

SHA1
403fb52843b8bf545e5eee3ffb25037e6e72dbce

SHA256
8b4581dbaa1ca9e3ccc0fcd5542acd33f98f8a1de67cdfd05a7b2de03064e45b

SHA512
e769692cdd0dbd95b100a77ee7493a5b12b336612f5d80a5f97c5a3ec122f869cf17b2d347e738e477783f87521e0f103755494df29ce94e990b2880f84c283f

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db

Filesize
24KB

MD5
b21d0cb2f280c7961ab9b4ae2a7a83e8

SHA1
a8dc14fbb28b88a57a82fb431561b6dc5ff9716b

SHA256
a2f789bfb1000867f34ef5ef08d83d10a657f019f2fed5d2f5233d9faa429677

SHA512
70c3912a721a21cf3c3029645e4c39374d1450c79b5e84e5420249d7ba87d6bebf9ce7565dd12475a104f55419913a5e1e23cca185295c7c93fac3d0b1ccb17b

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db

Filesize
24KB

MD5
285c4619cff5102d407e5d85411ecf13

SHA1
6265c7bcdbc088f7e55ef72f9efcd71b604297c6

SHA256
5c1e5b664b32bc1628197fa64bb20b5a910f18dffea58379396e8e1346eda634

SHA512
82b1e98985bf1aa904aea37bb55941ea30059878eedca5a2c7b2df600ef2a898bf45d887ae0c0d6fce741b8a97903cf13107aa5f910ce1b83b8fcd83437384e7

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db

Filesize
32KB

MD5
0fcb31920c258bcb52a89d3acddf2d4a

SHA1
dd764d611e087ef4e43f0a5cd3f3be85e062eb17

SHA256
b455bb6d9ca4b802054f6f1e72d66184b37897ba60a1e5b5de456454ddd07828

SHA512
009f5d30aedf58e5c88835cee9a6b87a073660627beda8a09070eeb9139be05f78d11677ce31152f57a988ff132a469d9231140fea3f4c7cb078d39fa55509a3

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db-journal

Filesize
512B

MD5
07e3b7b621e20d0bf0548a32a8954a6e

SHA1
42fd78de4a129f53f8dffd27c0e40dfab0ef25d2

SHA256
6f9fa55b50b0b3998b3253525c25c33562c85d51170e3e82c7aa42ccc7a02abd

SHA512
251f7c316624c1f6167be0f78f94edd5d1b92ec6d2c3bd35f472f752725258d345d3d2635f45499a116ed2114617ef451945ecfb1b2ccae3937fbc403ef4ccc2

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db-wal

Filesize
8KB

MD5
2116c472b3a2e52ebf2682e1d190ddb9

SHA1
d8adfcdcbbc7ac16dc1dde16848ac0ff439f66c1

SHA256
c0c83a234882fda4cf95ea76d31a166075244b5e43765a3c245a763f8cfdd658

SHA512
5f4be0952efe6e7fb7fbad5d5b9553c727c6089e54441f1cfb0eff3f3d8455c1dc60c17121a0fac7842cdf1f387ff745b7a4425ec623929a356cb15b6f718221

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db-wal

Filesize
8KB

MD5
59fe866f22ed007dbb845bd3e97769ac

SHA1
b6f03551c76b74498e80d9fa100a93aded2e6082

SHA256
d08194f0687a90d80851cddd3192e12295529200cef122a470823448443d7738

SHA512
bfe385a696d736286f3dab33938ac1e98366b3f94092be0c421d8aae6e2291bad2de764f6d28b69c785001a07fe250c74ce295fe0258d7c6feba3d3181d9ed3f

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db-wal

Filesize
4KB

MD5
d672bda2b12bb3932ab43550c10fa55b

SHA1
76ab15e4f5e2cf7681be9703c0df3be28edc722d

SHA256
e9b897fd2dd12c419cfb6eed5d1e41b9bdc676988106ab4abbf3eae8274b6be3

SHA512
2a7d8adb715c93fd68febc2c2d03eddded1dd0e6561c286f1bd182d72b0efddd592315d9b037f41f31490c60ef6c30b78d09ee0beff5c850e492ebcb4891f77c

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db-wal

Filesize
8KB

MD5
ff11634ee9a09a1fcd6b594317bbb841

SHA1
71f5f228dac5b9342ec6f99f9f6097cf83588c16

SHA256
62a4cc3b5c6a2dec8c2a353674da43da9437ca340beba05033cf6e60a0a7e251

SHA512
cc64de315cb87bfe9174567f5fa9ef1ff1e5f75a9d9e95d1f0b8df681bd7e9a027f2a8ec2871f8ab2390c5db1779d1877d6a5f4984e4ed2b0e27c3c56427b714

Download Submit
/data/data/cn.ibuka.manga.ui/files/TDtcagent.db-wal

Filesize
72KB

MD5
40e1b6f56eca8f59f3a0c1aa7aef24df

SHA1
dd6e53db866b42171cc1fa4bea040ab1e86bb45c

SHA256
22336daaa996d9418cbbee965d67cb7d382fdb02601dc52375841dbe4447acdc

SHA512
b8057d108d512f26d728aaa8cfac79fc10d3f8aeee3c85de095d72cc460899252aa9d4f2450847d63583a41b089baf248db836d2c12f8cc8cb83f3a5b4be9e46

Download Submit
/data/data/cn.ibuka.manga.ui/files/mobclick_agent_sealed_cn.ibuka.manga.ui

Filesize
577B

MD5
f864f23d67e751f9917eabecba738309

SHA1
b3c7dc9b490ad54fb2c6587f56ead6391908ec8f

SHA256
6f3c77f75cd809f967ac45e2bedb199bac74f48b1a40c63600464d1c505a5379

SHA512
67ba5d6c8939609ac3e9a073e20e40ee0bd9dbb915651c56a1b5e9e870a424fadf1963661d5ff57eee41d7f6a00809161cef2a2c0f792f9c292af48a3012d458

Download Submit
/data/data/cn.ibuka.manga.ui/files/umeng_it.cache

Filesize
211B

MD5
28918885be0cb0042a348fec8e14e666

SHA1
92119d7d6529bb30686403d3f0e4715d6f0d4bcc

SHA256
b2f816b15a1bc2b1d102849cdcc2b171d3a1fb8926edeb931e41b6e00f1c1f8d

SHA512
90e4de4b3bf9dfbb2d116f8dab71ea8f5975f72be91b1cc6f0772dda14509172081e345f49eabb570bbf727eedcd7ace2c65a63ddab5ab04a919744b4cd08ed0

Download Submit
/storage/emulated/0/ibuka/.asset

Filesize
8B

MD5
cae9c4c783aefbe8bb8b26cb6a65643d

SHA1
cac3bbe8beea674bb31933deabeccf0edce57913

SHA256
2235b4534ffd4badac2e2f8cf585a5376aad9a19b150bac62110253ba1da4a4f

SHA512
e7dc9a784c196f878808216beed17057fac59400f88548f82bf678925854c8ca0c9139e7a562bfacfabef09b7f5e14c6e56461bc9ed6853b1b545a4722ca08c9

Download Submit
/storage/emulated/0/ibuka/my/演示漫画/第1话/local.jpg

Filesize
12KB

MD5
74be707952aeb095526cd294f46ff32e

SHA1
296057d3c2996965aaf61fb7ecdc38b4ae19671e

SHA256
13ae7fa95e84e85b06c90e5e0493f9449fc1bb66f65a92d2740dc2bba2b8ab8e

SHA512
ef2905cf2aa0df92a0aea0b9ff53539d1b31b9e62da7c49ece2737cb5533b1bd359ba267adab1091887d60fef926f10bae711309bfca173e173c21ead43a98eb

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads