7137a9ab38b9b3df3b8ea320329209b268063095c9a2803e557b5e75ac2f8f01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9934dc376fc449bd85ac11dbcc36a8dc_JaffaCakes118
Size

4.6MB
Sample

240605-zkcwlaha71
MD5

9934dc376fc449bd85ac11dbcc36a8dc
SHA1

00c1a58358be130921281f81bb7721c2e95a07f1
SHA256

7137a9ab38b9b3df3b8ea320329209b268063095c9a2803e557b5e75ac2f8f01
SHA512

e4909ef413fa2db8a5f359a6aeb637438a2aa9d8a5ec9564b8151a23ccd940ea3cc6c81226757434cb6498a3df90f1e04dbc0ee51efba2cf713e6261326ba936
SSDEEP

98304:V49HDGSDuTgd0Z79rcX1RJlahhddDi1WNC6USzOLQdDs3o7xi:V4dKG0Z79r2rehri1ue8syi

Score

7^/10

android banker discovery evasion

Malware Config

Targets

- Target
  
  9934dc376fc449bd85ac11dbcc36a8dc_JaffaCakes118
- Size
  
  4.6MB
- MD5
  
  9934dc376fc449bd85ac11dbcc36a8dc
- SHA1
  
  00c1a58358be130921281f81bb7721c2e95a07f1
- SHA256
  
  7137a9ab38b9b3df3b8ea320329209b268063095c9a2803e557b5e75ac2f8f01
- SHA512
  
  e4909ef413fa2db8a5f359a6aeb637438a2aa9d8a5ec9564b8151a23ccd940ea3cc6c81226757434cb6498a3df90f1e04dbc0ee51efba2cf713e6261326ba936
- SSDEEP
  
  98304:V49HDGSDuTgd0Z79rcX1RJlahhddDi1WNC6USzOLQdDs3o7xi:V4dKG0Z79r2rehri1ue8syi
Score

7^/10

banker discovery evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscoveryevasion