3441938ef791c9881ffd01f535333c18460a49dba15d9e234c28c112a7ac766d | Triage

Sharing

General

Target

96f1bf8b954af271ee2f83952a310d0b_JaffaCakes118
Size

30.7MB
Sample

240605-cdh3psah5s
MD5

96f1bf8b954af271ee2f83952a310d0b
SHA1

07fdd45c61c9707947599ba47d025d8d2a64e292
SHA256

3441938ef791c9881ffd01f535333c18460a49dba15d9e234c28c112a7ac766d
SHA512

aca22128a764f423289a19a06c69825da185e7cd15666dce067522d73832d34e79cd39078a559ec3a517971c6be875a4cf6b22e97482114ca3730d0d3c493982
SSDEEP

786432:GJ1QwSc+079fmNNf73Ns7VB707Lhks94hym:GkwDbeT7W7X70C9ym

Score

7^/10

android banker discovery persistence

Malware Config

Targets

- Target
  
  96f1bf8b954af271ee2f83952a310d0b_JaffaCakes118
- Size
  
  30.7MB
- MD5
  
  96f1bf8b954af271ee2f83952a310d0b
- SHA1
  
  07fdd45c61c9707947599ba47d025d8d2a64e292
- SHA256
  
  3441938ef791c9881ffd01f535333c18460a49dba15d9e234c28c112a7ac766d
- SHA512
  
  aca22128a764f423289a19a06c69825da185e7cd15666dce067522d73832d34e79cd39078a559ec3a517971c6be875a4cf6b22e97482114ca3730d0d3c493982
- SSDEEP
  
  786432:GJ1QwSc+079fmNNf73Ns7VB707Lhks94hym:GkwDbeT7W7X70C9ym
Score

7^/10

banker discovery persistence
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscoverypersistence

behavioral2

discoverypersistence