General

  • Target

    90e2b824d8ff33cb86dc62dfc6fb588e_JaffaCakes118

  • Size

    5.9MB

  • Sample

    240603-hmmp5sfd2t

  • MD5

    90e2b824d8ff33cb86dc62dfc6fb588e

  • SHA1

    dccc7d7b824919d7d3f6b2badbdc806e3eda4d2d

  • SHA256

    bb5c3296b8836a31a2ea86c094e10e109db984baced81d6d83c2a0704b0b9a16

  • SHA512

    31d54b88a93e12c53857b9d7987474da7c7915b726c824d977717b457592837fea4cc9ab4d56bc6e6986687c2fd0ebe4bfd53b4b4ff09c9bb10f2e909d8a55d9

  • SSDEEP

    98304:y87spm7w1OQdk5dO4WCab/UKEHlXwD0lZWbJoYgkDmjjb3uzyr1TjLPGm7v/j:Z714OQCPO4SOHNRjWbJo3sEayr1HRLj

Malware Config

Targets

    • Target

      90e2b824d8ff33cb86dc62dfc6fb588e_JaffaCakes118

    • Size

      5.9MB

    • MD5

      90e2b824d8ff33cb86dc62dfc6fb588e

    • SHA1

      dccc7d7b824919d7d3f6b2badbdc806e3eda4d2d

    • SHA256

      bb5c3296b8836a31a2ea86c094e10e109db984baced81d6d83c2a0704b0b9a16

    • SHA512

      31d54b88a93e12c53857b9d7987474da7c7915b726c824d977717b457592837fea4cc9ab4d56bc6e6986687c2fd0ebe4bfd53b4b4ff09c9bb10f2e909d8a55d9

    • SSDEEP

      98304:y87spm7w1OQdk5dO4WCab/UKEHlXwD0lZWbJoYgkDmjjb3uzyr1TjLPGm7v/j:Z714OQCPO4SOHNRjWbJo3sEayr1HRLj

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Registers a broadcast receiver at runtime (usually for listening for system events)

    • Checks if the internet connection is available

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks