General

  • Target

    95718d426837b962c7aaa7ec5aa068ed_JaffaCakes118

  • Size

    15.3MB

  • Sample

    240604-tf782scg89

  • MD5

    95718d426837b962c7aaa7ec5aa068ed

  • SHA1

    93c5ec9f159c401a666d9b702bd7fc575f447d4a

  • SHA256

    13a71f7ce02c6b74f785319adf8e3bea6709d6625e0d538e7b54aaaf9c621b24

  • SHA512

    2a53c60f6c71322137ca29cf2564465ed179766277d01a61411c8792a3711de920f20b6ebd4257e5bb80385779a6b500e6480eebbce609374d0c375f5b4bde44

  • SSDEEP

    393216:W+/qaa0+hOBDj6LY8bWFOAawI/d8JS+9WFOAawI/d8FA8M:WOJ+hOB/OAawI/d8JSYAawI/d8FA8M

Malware Config

Targets

    • Target

      95718d426837b962c7aaa7ec5aa068ed_JaffaCakes118

    • Size

      15.3MB

    • MD5

      95718d426837b962c7aaa7ec5aa068ed

    • SHA1

      93c5ec9f159c401a666d9b702bd7fc575f447d4a

    • SHA256

      13a71f7ce02c6b74f785319adf8e3bea6709d6625e0d538e7b54aaaf9c621b24

    • SHA512

      2a53c60f6c71322137ca29cf2564465ed179766277d01a61411c8792a3711de920f20b6ebd4257e5bb80385779a6b500e6480eebbce609374d0c375f5b4bde44

    • SSDEEP

      393216:W+/qaa0+hOBDj6LY8bWFOAawI/d8JS+9WFOAawI/d8FA8M:WOJ+hOB/OAawI/d8JSYAawI/d8FA8M

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks