02da0e961e712705966380bc4a8dc44aaa8f03b97733b1454f6782c0478604b2

Analysis

max time kernel
7s
max time network
154s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
03/06/2024, 08:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

912d02fde191b45b22997b74fdeeca49_JaffaCakes118.apk
Size

8.0MB
MD5

912d02fde191b45b22997b74fdeeca49
SHA1

df725c52b5af6216057d60903b77bb0b75d3be30
SHA256

02da0e961e712705966380bc4a8dc44aaa8f03b97733b1454f6782c0478604b2
SHA512

3bed050a4397967d4bdaa80ce848787022144842ebc104524bebb628655902662d3ec963eef00305a94a3d5ef42f73293bdb3596fb18ba8d51b446740a46b963
SSDEEP

196608:9GLpoUOYS6F1KTXaI7oWKWF9G9EzDU/eSlDLJaLWMNC:9G95OYSP7J5D16ZLELWQC

Score

7^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	nextapp.fx

nextapp.fx
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4301

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/nextapp.fx/databases/Bookmarks.db

Filesize
20KB

MD5
43cee2d8aba3fab1d59ab08a916b680f

SHA1
cd812da7f849b94e655e9dd1b93135b7d0c6eab7

SHA256
1beace321cf1f0cfa33f4867666af7134ef0dd8dfeade09f588be87ec8e5ee3d

SHA512
7cf8f1ee1b6305a1df14e7ccfcc2852ada8913a59614734fae638c99e73991e0b2436d2ad82a7147597ef17a062ff9f550c5e365b02ff1de6d35cc765987b407

Download Submit
/data/data/nextapp.fx/databases/Bookmarks.db

Filesize
20KB

MD5
33011ddb74e5689af8209b7c17f0dc0e

SHA1
66ff9851aa689655fdbf9cdd549ae89f87bbbc02

SHA256
d885fb216777cef4d2c8cdfd0d786930fde0152cc725c84cbad08edfe2dc24d6

SHA512
aaf65e1857586b6a52d3ed21f30c7cc0e0fb3e48289ded83f1d2f3db49bf4a1a99e26c7129c5eaef3a22c63e69ab9568d75db3cec58fb8b6e6eb2a9d475a8ea4

Download Submit
/data/data/nextapp.fx/databases/Bookmarks.db

Filesize
20KB

MD5
600bf090a86d9de7f0110c7e688df97a

SHA1
b97abf6b516ce6632d5e595f111cf46e9862ca34

SHA256
e24e9412fd61e362b1a1b5826cd6e1b2b06ce7b75d4e545809d725e3aeef01f3

SHA512
fe081e492c042ee47f296d92910ff1d1d1f589265ba2fcb6e102859b6342b226248e333bb9ae657f875b44460e8291f1d20f5d373f9e9c36224ee0dc8738607b

Download Submit
/data/data/nextapp.fx/databases/Bookmarks.db-journal

Filesize
512B

MD5
e61b5ce5a0f8b8c6c680215eb343a3b8

SHA1
00d26a301d3046a60fc775ff3eebf6902c4489bc

SHA256
c9b7ae3a567829db92118c596c698e5017af939161f02aa72e8fb26d249cc732

SHA512
887af4b4bc6948af2bd6918a24c5fbaf897081c701d0b7f2a2f4cc16132fdad99dd8348f08a53e39300a073a5f790684441c31b7c07a6be2c220d0d02a660a86

Download Submit
/data/data/nextapp.fx/databases/Bookmarks.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/nextapp.fx/databases/Bookmarks.db-wal

Filesize
32KB

MD5
a32fb06ce88b84d06747142a3b35b315

SHA1
16fc4014e97dd6a9947e9664a532aedc125a29da

SHA256
9786152c9f07b4e8de899d23f6bbb384f7414f5d296581322ab88164811d67d3

SHA512
7478d866f7f028193ac0b50dbb93c83449876b32c9e50bca7287d0fdcecbe1ce92d3a29207004748622bbe2c3cdbef44da1e420edbccc210de9f343f073a47d8

Download Submit
/data/data/nextapp.fx/databases/Bookmarks.db-wal

Filesize
8KB

MD5
766fc0f50381d02f00c8df71652a6b90

SHA1
511ccfb666dc7171ea0309c851bda11fcbb8b7bb

SHA256
ac9165dac08435a71be5928dd3f339fcf6570f1ca19f4e2f9b920a4776890a04

SHA512
86ac4d638bec4f1383de74023eb918434c0726ca3bed83b56359818ea4c71d8361fcc0189803df83295a3c32d740312f8ef85f1a6c9712bb130f86f8c4ef24e4

Download Submit
/data/data/nextapp.fx/databases/Bookmarks.db-wal

Filesize
8KB

MD5
730db2a3531e97545460b1a8054df2fe

SHA1
0f40a4267f14602d78d01c23d1ffff1892839be0

SHA256
4531ae7a28dc9663978a9a6d1f3f6b1b393dc2a0eb75212054c50cd8d81cea15

SHA512
6283af215f113fc466ea9b2811131d9319e945a8b3b106e5443fd8c603e8a660fa3e28e0406c4ea0a9208a6b2ed43b8a636814b6de8c004808453877cbfc027d

Download Submit