c6b196b466a06ab9386588c6daa33de078ba0b09d98920d31a4c75b0e5ebf9d5

Analysis

max time kernel
3s
max time network
156s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
01/06/2024, 15:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8af30c12cedc20522a4a5beed9d6954e_JaffaCakes118.apk
Size

13.2MB
MD5

8af30c12cedc20522a4a5beed9d6954e
SHA1

6749e74a6e8c1687c99e4ddb5b518e3e29092698
SHA256

c6b196b466a06ab9386588c6daa33de078ba0b09d98920d31a4c75b0e5ebf9d5
SHA512

e66a14420627cd298051bcba9bc70aa853b9484d160c3e7e760a75e36e68e3b681716aaa4e3056d888679ad9acf9b2b20d6e55afb8eae4f80a61f8d3f939920a
SSDEEP

393216:r3jNDtaXmiRRxbCFj9YCxl8n1LjFeLN16YG2oKjnOfwI:r3JDtaX5RsFJYEl811eXhG1KCn

Score

6^/10

discovery

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.glkj.behooverich

com.glkj.behooverich
1⤵
- Checks if the internet connection is available
PID:4294
- chmod 755 /data/user/0/com.glkj.behooverich/.jiagu/libjiagu.so
  2⤵
  PID:4344
- /system/bin/dex2oat --instruction-set=x86 --dex-file=/data/data/com.glkj.behooverich/.jiagu/classes.dex --dex-file=/data/data/com.glkj.behooverich/.jiagu/classes.dex!classes2.dex --oat-file=/data/data/com.glkj.behooverich/.jiagu/oat/x86/classes.odex --inline-max-code-units=0 --compiler-filter=speed
  2⤵
  PID:4368

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.glkj.behooverich/.jiagu/classes.dex

Filesize
5.4MB

MD5
36114be82e1217a0691683428ea32819

SHA1
49e212a103c210a3f259a864e315c6ae2be1960d

SHA256
dd46b1f40dc93d36f9da0ff427365a667e8684c058c1e39a2ab637ebaf0574ca

SHA512
ef3bf72327ddaf6d11f55ebe4f6e91325e6abc3c42b1507015ad31d90365549180e8baa365381f3fcc606294eb86e125acff7ba6479463cb6715a07ecb25d973

Download Submit
/data/data/com.glkj.behooverich/.jiagu/libjiagu.so

Filesize
344KB

MD5
f07c10fa1727a4d7395f07d20d77892d

SHA1
a7c2f367daea205bda6035a739bff81003554b4f

SHA256
b33b45d44e01f762b2678eb5fda5a804650b74cced4ea7362e3a19b37049e2b3

SHA512
83411cbcf78a99fed70dbebc46d626c85f61ba729ea0b3c93d2e109c63bbe6a739eae09d61af7fa0ff127502f3a13034d45a130f581e8ed3f66db892712736f1

Download Submit