b2b73732f1737d6e104e834abb23cfef194036580046a474b8a844e4a5a05fc8

Analysis

max time kernel
179s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
02/06/2024, 08:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8d73415e8d06e5fc2f8909834df85fae_JaffaCakes118.apk
Size

18.1MB
MD5

8d73415e8d06e5fc2f8909834df85fae
SHA1

d981d16bc4cf9052f3e32e60e65332e7771685c2
SHA256

b2b73732f1737d6e104e834abb23cfef194036580046a474b8a844e4a5a05fc8
SHA512

55d792398826e919b9c7cdee1c2618fcc82d261f7f7d65c78070384d5a5da4c0c0ac608119468bf8c038846e5b789a21f613034adbc53b80c9afb2f8b186b193
SSDEEP

393216:aMPj/xoiOKyoGMdodf/MErk/IKYKbK7KDK0KohTtKEV/VxO40w3OZTE:aMPj/xoiOKyo3dWHBjDAIkzzJVxfGE

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.rickclephas.fingersecurity

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.rickclephas.fingersecurity

com.rickclephas.fingersecurity
1⤵
- Makes use of the framework's foreground persistence service
- Queries information about running processes on the device
PID:4664

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

Process Discovery

T1424

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.rickclephas.fingersecurity/databases/FingerSecurity.SQLite

Filesize
32KB

MD5
b244d960259b94b8c5d8703aeb42f032

SHA1
6a6f5635bc887d11bd00c5102d65842cfc082997

SHA256
5d1636d9a2098567fccf0894e100aadddf10441b9182cd1ea7c6126f79c290cb

SHA512
0bdcd11099cddda8209cae67fb35622962a22904de6d556aef720bf36c1e72c0ceaa22980c1f4745beb863dc54afab4d64f59894403ccd093a77100b1a43cc5d

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/FingerSecurity.SQLite-journal

Filesize
512B

MD5
c5a6072233bd74c839cc363db00426fc

SHA1
e561bba5bff35f3e54b23b2679e9d637ee9ce236

SHA256
1fb3e9ce50b1952b0bf7887d33f2460740cdd8d13268d506b3d3507efefa2903

SHA512
27fb924670ec8b3c3af2781ef9fe34b3322df1eef09c82f89554d39713dd423023239f1271ce9819f2374fc224819575437022d0e458fdd6e6af8dc7ccdc0bce

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/FingerSecurity.SQLite-journal

Filesize
8KB

MD5
b5e3d4c6cd09da302ad3c4fe10dcb5d8

SHA1
09791457692bb60fb5b52bc5dc81dedf1543a4e3

SHA256
4514b4cf586719a9f99832c2c83fe282eb51b03e13d9021d4f9b0b609b618217

SHA512
cbc8661ceb3b1c92241c4d577ded20b3e0e232b76d61f9a65958f516bf6cb760ab2bffd8fdc7f2d5fb26e51abdb0a95772c87634594366f371830417b490f6ac

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/FingerSecurity.SQLite-journal

Filesize
8KB

MD5
631d2ba34da4437e7947710e6bfe3a66

SHA1
232e5425736ffb59eb17e33fc4d1cc83028fa351

SHA256
2b417926d2be36ad879496605dafb8b3db83106ac878b93a22c4510a976c414a

SHA512
4a80eae28b0ec8ecc6de3c349264b3534f70cceb8d153665969230d946ffdcbb98d7e01679be758a192a75fe23767051728a3ef5119bb1282074e88a5b6c9458

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/google_analytics_v4.db

Filesize
28KB

MD5
60ae3555b60853ad5a921e6f0e489e7f

SHA1
707ea120f60037bddac28635b5f3c0d74a69dfc1

SHA256
68be1e675b68f8a894c80caa952c1205e292c427657bb79a58b9b366934d1d8a

SHA512
550cfd40a3a3bc7be604a81c9c9c879078033d12282cf32ca6464851479823febd12ed2162ca6241b01a03ad52cd80cf3fe3c0252591e68cb11a8ceb682f2f39

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
8d1ae1523540bb361c1ca8c135f1e7e3

SHA1
395b43bfe03194d2e69468bf1e2246a8aaa9dca9

SHA256
b40ae7bb8f4f639cd3358a1e655ae85f244a2bc646f2d74c15e73672fa677b3f

SHA512
74f05fa3f3b0656d8ca777382f76cec52c869130df2fe1bd11faf01487b9a38c2ce051d0b0e5ea2bbadcbaee3cbee969059363d5aef23eaaa04b6be7f91356f4

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/google_analytics_v4.db-journal

Filesize
512B

MD5
f2e36e20b232d99588dc51ca2a6d9943

SHA1
2059b7b73062cf0e5fad81497c8feec406a55a88

SHA256
e7d73aac15530b2f5fe53c24e253deaabe42e905294e5e17a08e42f7d4c33030

SHA512
6ddf1029c5d241af7963e9c1de6ad5775f43bcfe3886ffaba8456205a528fa7388f6666e4ae00636e19aaace15a711c742c3b00d5feb1ae401bcd6f03533be1d

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
c945f816d5e73914c3837ba88bcbdfd7

SHA1
503151bbe2fd6953ba9eaa12f28e309e5ab6ee86

SHA256
b44ffc0b423ac530f78a8959e15cb6c47d42a99d4c6604938bcc211332a3a349

SHA512
3c98838b95642e9b6fd1b29b55b0463c99e6239d27534778328a26775a62fd1c2376f8897cd31919bf16c7680741255905dc553b4178bad2f0ea9b39562f0921

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/google_analytics_v4.db-journal

Filesize
4KB

MD5
e3dfebcad7fa7cd598719cacbecf1db1

SHA1
96782448ea9ab8ff4aee02c5214acf6e81761084

SHA256
b6d63104275e580a66719fe589a4f48f134a9f020b5a9d675256e4c8d5ce5728

SHA512
e99fd593023b3fb1529655c7725d28da9fc616f7cfb68641b7c59866994b93e8d5ab4d416d8ed931bb0344345a6f31189ef47f778fb87c2be668b03539acefeb

Download Submit
/data/user/0/com.rickclephas.fingersecurity/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
10214bfc450feeb94050552e92dae195

SHA1
1aa23610e092e87ab85578c0cbae2d86194b429c

SHA256
4e29d1a89c37e1752b63c8119859004b94c4eed105b7961e502b11e310e50bf0

SHA512
1ec6e5858d0a043a65b68cd9a1fbce011e75fb32acee8972021fd032168d4281ad07a21577b1d38b7910ccc077490ca9329b9e227724bb302f52cc367fd7c463

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads