Analysis
-
max time kernel
179s -
max time network
153s -
platform
android_x64 -
resource
android-x64-20240603-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240603-enlocale:en-usos:android-10-x64system -
submitted
05-06-2024 17:06
Static task
static1
Behavioral task
behavioral1
Sample
98b6ebbf3c5a77ac4ec01134f7f28d57_JaffaCakes118.apk
Resource
android-x86-arm-20240603-en
Behavioral task
behavioral2
Sample
98b6ebbf3c5a77ac4ec01134f7f28d57_JaffaCakes118.apk
Resource
android-x64-20240603-en
General
-
Target
98b6ebbf3c5a77ac4ec01134f7f28d57_JaffaCakes118.apk
-
Size
209KB
-
MD5
98b6ebbf3c5a77ac4ec01134f7f28d57
-
SHA1
ba4f2c1ebdc64ae238f04f6ceac67bdf2f5e6dd2
-
SHA256
b152a6b442b4551b85a132eefe204c323d9e0d1a55808b4cf3f1bd757948e744
-
SHA512
a63b8f68859d4e7dd8b9847afe5757f6e676d72f9cc63ef109e754453619ce2d1850b2cdfe85872009bfa15dcac9347ca477f828e9a948fbfad1e6b61a9a5c64
-
SSDEEP
6144:8F7tuHt51hKzjc/vBu6BLxLgufI/6NEJMz2Cdt:guZhKOukLBguf0ZJMjt
Malware Config
Signatures
-
Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs
Application may abuse the framework's foreground service to continue running in the foreground.
Processes:
com.beacon.drilldescription ioc process Framework service call android.app.IActivityManager.setServiceForeground com.beacon.drill -
Queries information about active data network 1 TTPs 1 IoCs
Processes:
com.beacon.drilldescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.beacon.drill -
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
Processes:
com.beacon.drilldescription ioc process Framework API call javax.crypto.Cipher.doFinal com.beacon.drill
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.beacon.drill/files/aa8fd1cf-a6b2-4c5d-9885-da4f1f19e7cb.datFilesize
404B
MD564a5dc0aeea9044c84f8650ab51d1a5c
SHA11b9eea5daf46c15cb5b9d4123d0ade4a43d7cca7
SHA256876924452bfd65c8c78fe6136b2516631ceacaaf74422cd0b17abf58be34d27a
SHA51264f4a012a7fed1e0ecd62f5f087d3227132136560ca5e77a1aee43f70326393613c70a80f4c51f018fa4a58fb327b2fd4088cafb9f1d7269d79e34a4c6f89c19