General

  • Target

    913dab5e7c0f2eae7b0c9189a46b4230_JaffaCakes118

  • Size

    3.3MB

  • Sample

    240603-k59zhaba96

  • MD5

    913dab5e7c0f2eae7b0c9189a46b4230

  • SHA1

    932012f305e84b378f3872443bf757e486ad1bfd

  • SHA256

    7efc1d1d9415c6f4381932660e1f91a7bb591c02368754ad52cc34b4d3adbc3e

  • SHA512

    43da80d1c20c572bef8c435c4dc119e17a892bc58f3165628108d3a3c60dd8a4108e97e9838afb2abc0d3c50c3947b216f4be5fa12f834fb19c94749a77b289b

  • SSDEEP

    98304:fPrL/jD6ZNvBoknQqBDCirqDMaepvb3LHOtywXj3kYK1pG2:fDDSZNKkBQe5f

Malware Config

Targets

    • Target

      913dab5e7c0f2eae7b0c9189a46b4230_JaffaCakes118

    • Size

      3.3MB

    • MD5

      913dab5e7c0f2eae7b0c9189a46b4230

    • SHA1

      932012f305e84b378f3872443bf757e486ad1bfd

    • SHA256

      7efc1d1d9415c6f4381932660e1f91a7bb591c02368754ad52cc34b4d3adbc3e

    • SHA512

      43da80d1c20c572bef8c435c4dc119e17a892bc58f3165628108d3a3c60dd8a4108e97e9838afb2abc0d3c50c3947b216f4be5fa12f834fb19c94749a77b289b

    • SSDEEP

      98304:fPrL/jD6ZNvBoknQqBDCirqDMaepvb3LHOtywXj3kYK1pG2:fDDSZNKkBQe5f

    • Checks if the Android device is rooted.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Registers a broadcast receiver at runtime (usually for listening for system events)

    • Checks if the internet connection is available

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Reads information about phone network operator.

    • Schedules tasks to execute at a specified time

      Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

MITRE ATT&CK Mobile v15

Tasks