b23740891b764ddf43f753b1a0a67612576f35a7db2a821fc2c0798b209fb64f | Triage

Sharing

General

Target

943123c983dcbfae35ebf11ffd83a06a_JaffaCakes118
Size

9.3MB
Sample

240604-kkfvxsba6w
MD5

943123c983dcbfae35ebf11ffd83a06a
SHA1

76a51b3a8d86fbc948a4ae060f420d2b9df356c6
SHA256

b23740891b764ddf43f753b1a0a67612576f35a7db2a821fc2c0798b209fb64f
SHA512

dd49dfcb409939b9366255f40e979b68d7a5e81cd95e20e6bcd03fef086e4cb693950f00b60999b44073a62b7d53873e7b0b9b8dd106d95677ff1bc11f14078e
SSDEEP

196608:f6nHYiLbkSUTzVfG+R2YO61AI0LOi8ChjjoiIDm5ghBhfjac/WZghEC:G4+kSB+kdQAIi1oiIDm3cOI

Score

7^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  943123c983dcbfae35ebf11ffd83a06a_JaffaCakes118
- Size
  
  9.3MB
- MD5
  
  943123c983dcbfae35ebf11ffd83a06a
- SHA1
  
  76a51b3a8d86fbc948a4ae060f420d2b9df356c6
- SHA256
  
  b23740891b764ddf43f753b1a0a67612576f35a7db2a821fc2c0798b209fb64f
- SHA512
  
  dd49dfcb409939b9366255f40e979b68d7a5e81cd95e20e6bcd03fef086e4cb693950f00b60999b44073a62b7d53873e7b0b9b8dd106d95677ff1bc11f14078e
- SSDEEP
  
  196608:f6nHYiLbkSUTzVfG+R2YO61AI0LOi8ChjjoiIDm5ghBhfjac/WZghEC:G4+kSB+kdQAIi1oiIDm3cOI
Score

7^/10

discovery evasion persistence
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2