cb5ae5e445ea4de24529561aa43dc66ef44311bdb5a769df60076a9a0d2cf410 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85a65a2c91483f31231e8259948c16f1_JaffaCakes118
Size

28.4MB
Sample

240531-b94tlsah3y
MD5

85a65a2c91483f31231e8259948c16f1
SHA1

85cd46d361fc68f5560cf869da68c3dad9ab0a27
SHA256

cb5ae5e445ea4de24529561aa43dc66ef44311bdb5a769df60076a9a0d2cf410
SHA512

011b64a8081de726a6cee985bd78e8c040ede87f9e569f238085ec079b84b154f7b99d0609e37cf9308b533858422d6d888f0c7cc9befd96fcb05838c92e02de
SSDEEP

786432:eoYQLfEO5AeBeqHETmzf43LHAG9IVgsKcTefQAth8DCiQ:46AeBVEazf4bHSvKcyQwnR

Score

7^/10

android discovery persistence

Malware Config

Targets

- Target
  
  85a65a2c91483f31231e8259948c16f1_JaffaCakes118
- Size
  
  28.4MB
- MD5
  
  85a65a2c91483f31231e8259948c16f1
- SHA1
  
  85cd46d361fc68f5560cf869da68c3dad9ab0a27
- SHA256
  
  cb5ae5e445ea4de24529561aa43dc66ef44311bdb5a769df60076a9a0d2cf410
- SHA512
  
  011b64a8081de726a6cee985bd78e8c040ede87f9e569f238085ec079b84b154f7b99d0609e37cf9308b533858422d6d888f0c7cc9befd96fcb05838c92e02de
- SSDEEP
  
  786432:eoYQLfEO5AeBeqHETmzf43LHAG9IVgsKcTefQAth8DCiQ:46AeBVEazf4bHSvKcyQwnR
Score

7^/10

discovery persistence
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2