Analysis
-
max time kernel
68s -
max time network
170s -
platform
android_x64 -
resource
android-33-x64-arm64-20240603-en -
resource tags
androidarch:arm64arch:x64image:android-33-x64-arm64-20240603-enlocale:en-usos:android-13-x64system -
submitted
05-06-2024 16:58
Static task
static1
Behavioral task
behavioral1
Sample
98b09f1db7095fbebebba9a9ac7bea1a_JaffaCakes118.apk
Resource
android-x86-arm-20240603-en
General
-
Target
98b09f1db7095fbebebba9a9ac7bea1a_JaffaCakes118.apk
-
Size
5.9MB
-
MD5
98b09f1db7095fbebebba9a9ac7bea1a
-
SHA1
3631a9c2bc108b6291a5a9e4c460576000a2e112
-
SHA256
1fb042dba160e40ddc3e3afeb9f13c11a35cc147f9385cdf461c5ff652384fa0
-
SHA512
e361c3a4564c67104ebaed666e8860f3b17fa06b6d3172a7592ba2e6b3e00af13fa1055c6653ccfcbe630fa58fded4d585ba5a341adddd85356e03df7cd9e3cb
-
SSDEEP
98304:iu49cpmPs18QnopLyclCab/UKEHlXwD0lZWbJoYgkDmjjb3uzyr1TjLPGm7vb2:M9lY8Qopyc9OHNRjWbJo3sEayr1HR32
Malware Config
Signatures
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs
flow ioc 19 alog.umeng.com -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.gamebox_idtkown -
Reads information about phone network operator. 1 TTPs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal com.gamebox_idtkown -
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo com.gamebox_idtkown
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
36KB
MD51b77217d803a7c04af9466680b92d104
SHA10cb959f4773c6730e8aed5746706c0f3ecb35c1f
SHA25666c83ae35e997c33eaffe9c0557d98ee31931c18b99585a64eb6cc8f63d303e3
SHA51239ea189895ca93855bb71b4a5447815e9373ffd39b50611ac172ae321ee7716fd4af5f86c1fd0d17e12b771f4016a86184620a7c5d07f57b88f017c4ce8312ec
-
Filesize
36KB
MD5b986a138e325f9ed31653e246087baa6
SHA11cda06c101efbf7c89305f44b552e38282225064
SHA2566945d75275af161fa082eab8b348f4cdccbab03854963f5e861fde210447e058
SHA5125894180006885af44962dcd92c6f33a640d6080060a51a38ee4e348ee2dafe9abdcf2a931cfad4c395ebe20e08b96f810ca54b5b1f584fa232cdabc76be0740d
-
Filesize
8KB
MD50fc5c25470b26c6db5c0f89ffaf2da6c
SHA1a479ba3c55b3ab004803f0d5654526f783f853a5
SHA2567c407b0d662784d63586dd63c89564b1257b7a27d95529d019eae5845033838b
SHA512afd8ab6abca6f9d2557b80678862530be0f4d6f7c58e5c175039b08128ae5c2c6bb7be98ca05229dbebbd3dc0f4022f2f7afe114633cf9ad494c6d97b58d8680
-
Filesize
8KB
MD502d26212bcfe9abfe79ec284a2f2c069
SHA139d45b4e766ea427db0e23621fd676a0279600ac
SHA2566ba829211930cb708160c2b1d821aeea4a0cc65d68d5e3af9b1e7b0d00d9b40f
SHA51234f304af9ec0868c027ba9de7ac594e28cc4ad8200e8748473300cde0d84cd474f602bf1a45deda5f7f75f77baa2aa2e9d9b37cdaf64ca53ee3d8d8434fe0acb
-
Filesize
12KB
MD509828e139e285f4aae837875598e2748
SHA10607aba068a7d8384895391a4cf25e321015eb65
SHA256c101281752353576ef61bcd858abf781e1032227250e83ea24c72919b6e779b6
SHA51254d63bf6dd5a1dfcfe3d5cca0dc45c05d1ef4baef5c9c70b77899df5e6931a9f1de661754d6416db98f6f0f3a62c9a14d399751236a45e6e2a015d2748b4caca
-
Filesize
512B
MD57f561fc6c9a4c6b2f6c2aca713db916e
SHA15b18930cf9ea3fafda98ecb9acf7c2d787606406
SHA256675fe5a943ab3a1fb02a9ca8d2ec7c6ff997de67bdffbf2511d4e236752bfa75
SHA512773dd0f0d9874bcedb973463bfe3c7f82573d8fe05653f6fe8ae7b907fbf3fc71acf31fa2d7e51740332c58e805ec22f52822288957459a737e3937ab78ddcef
-
Filesize
8KB
MD594ea075802404a92b4633b5a5d7759bf
SHA198548f9cd724d1e3207da2b28eb1d9e56a8774d7
SHA2560a73ffec2091d9a0da1e07c515ae449cc72f406dae21225100b075a9c33bfc99
SHA5128f973fc42b24314aed05540bcf105137229790c6a8efad88ec4afc24dbe864346f3c057dbaafec679cdf56e04eb3b020976f20acc4fb400728373438e54fcd63
-
Filesize
8KB
MD560438e4d6df814c0696a57976b67c470
SHA198d60c2a1530462df89d14837a21c8751064588b
SHA25662af3e28ccae2d6cb01ae9405c12ac0237a4243d5bc7762f8694882b13e3dbc3
SHA512bdc8f94358d2b5f7aae79f5d28212f1f3c51beed969eef033ed5053420fab060cddacf1938b8d65b5d0763a17a81a5580cc4b70a6ef5040e50f58938776ddd86
-
Filesize
72KB
MD53aa471fb2cd200b8c01af96853e3ad7b
SHA1726cbb4789c0ab4ac783fc2f95defdf2c178432b
SHA256708c9d6d08210a383c8ddbde8f778da488e7922839145d65183894f3538cdddd
SHA5125156849acdc5c991c650ba54fe542947e285c8c1eb7cbf2009fdbb6a67d86740ce94b75ad5f8ef110e288dba76825397c26b35ce836fb056eba5f1da853fd9e3
-
Filesize
512B
MD5a184f74563becd93ba3e7b8ed117a664
SHA1ca3d428fcf5bec7b236d4d9ed42da60a86b466f7
SHA25696f35ee8c65114984c64c39e1d3025501b8640d53a353bc1ce1bdd75f1e3c49d
SHA5122ab76fc61c772ab661e9a7f581192a9dcd7f4d86a340c4f4cdb8c346554dd81a6ff1ab5ac643d20703fc9d2533438be1380848bca6fccb03d22e5f2ed53178a4
-
Filesize
8KB
MD5e51b654cad0e7c7e36315a44fe131575
SHA1a61de02195d87f56eca455cc419a3d367e92750a
SHA2562a3bf2b50e23be9cddf831562f95296ff7e928d17cd1c8d970f741e7b20679de
SHA5123fad9379497754f9c2fc5184a299c309ddcb187f3cb8d88d948998e81d8b9b62587ced326c6cf6e43ad2d25b1aa661e754e2b986adb2af2d0c59f072d27e1f5e
-
Filesize
8KB
MD5cdac29ced2d74132530908de9bc9230d
SHA164353ff3676bf1778006e4767260f60c306b6752
SHA2561bcf0de810c22aa5c1e99ee81373b59c9bd9b43189b99cad5d8139d81ba12af3
SHA512abf5acc5c95a876de021d8ef1c0331a9765f301e133d67b329b9e6168b0691841c2c54fe1219ececd60a79c889bec1198e200f8ee6e9eef30d6207a53f24bf35
-
Filesize
1KB
MD593648ebe202946cf5371f9678535f3ab
SHA1cf7dfc48b7eef670f15f6d3985308d28d5af602a
SHA2563a2a229d63b7e112c57645778d2fcb9cd7a0d7eba864df836ed5d3fabc6d9099
SHA512ab95a3b53b202dafe59f538f709a6f8b161e62ba5e3d1e633ed2211b68b9c4caffaf787959af5478460efc8837041c6a1e45007ca2ebbf2c229324fc31c2ab7d
-
Filesize
162B
MD5a9494d2b4cf593ca1d2e562ad52d5295
SHA1b588d3db5b24cd648544402235881535160c484b
SHA256acb5e15de1779019fcc5c29d6882990f70ee9d3d99e8ccef1cb9e8eb27ba9720
SHA512dd77d5606d5cea3a8bf2907e45cba3892392cfff4821bb50b22a53f9838504b1d2ba3317b391263f8903b49b51ad0c8b6700dde4793b04feb2cafc302529dc45
-
Filesize
138B
MD5040a1a91f87342ca85b69c59cb38d1fd
SHA1706e41bb0199d7636247d3f49e358660781dd984
SHA25684f9259a15e81a3c632c4181f0f09cfaea51bb2ef33fe8d0e9187965ab1d258b
SHA5127fc85b0cb6a9cf3b96d143b964f97775bc9c0e7a923df58f42649176a2bd5fc7a32300b40ee55f4ed6c4c420328cb9a199cad351741f7a2a1b9fb41935a05f27
-
Filesize
2KB
MD572649cfeccaa8821f606e2152fa57969
SHA19a2f3e7ee7c6de483ffdc358cbb7de387d2ad243
SHA256997755223cfd4428ce879cc37fd21cecd0a32c6e52c27bc0bd2644ba224dc603
SHA512bfe7aade959044899a46a1cfb7cd1ecd362b252dea041e51699461f39f9b3b2a788becd3b5115649eec14cc20ecfd4e2fd459c22a0bf3d280b3dc4e0b739f074
-
Filesize
435B
MD56b53724206903abe5c8e28d293705b5e
SHA17dd8d3a9ad73842a2ab977b49f432b90e08fa5b0
SHA2561a6ab84420129b45639cea995704756e2f85f54c6e3bf1131fe4b3ea929ec33d
SHA5125788a5eb0b614f60f8e2416efb0df8e0ae55ca5153829bc865e6df14deb62685b9227354fa1479081fd6404e832e3af774cc780058d1a5b8f5ab7317ed730c01
-
Filesize
111B
MD52c5538e45e28a5eb5c5a42c38156af08
SHA1c9370da26a469c71790f6ec2db3d317686c3f94c
SHA256c57309d7539e27de5673ebb24d6df1f9494fc358c802a20605ec06e95bb62341
SHA51259be1260c736cbd8cbd55415d914fb410649a43727238c1056f9a3d45555a070569b69723b79a9eb6c39b75ca8fd8199591f74ef4465d291dbf4e6c57e4f91bb
-
Filesize
111B
MD5646d2141153ff7ddbfe002f70fdc71ef
SHA19a13f37fc69c4418ce26c5ec1521e3ae5cd3d37f
SHA25633e2b0f1e0b6edf6c698d4c8a8410f63881fa9af711c4648ba2ccaf535f1c4af
SHA5129cba53fc1f248af048328f375ad2838784ab14ef8657662b16485086c0357b1a15257da2ed7c6c3164752c143a8ef52fa43cece230833da7c4fe5a24e7b49ca4
-
Filesize
222B
MD5b41844e64a48d707a57653edbf252e56
SHA17146f1d512dc5cac3ca6fb71f0731794b6d4e2a1
SHA2566c9864e979375921ff3a33d0db58fc5ab6ec176b2adda1bb55ad918ef2d10c87
SHA51296685ba115b296f01250be386f1306725acff37d6febf41bfce4c9dcc846c4755dc1cb9631e67b3912e54626fa4d957c793d7294d66a79cf7921f1f2be1ed5c7
-
Filesize
65B
MD59781ca003f10f8d0c9c1945b63fdca7f
SHA14156cf5dc8d71dbab734d25e5e1598b37a5456f4
SHA2563325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793
SHA51225a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03