General

  • Target

    99a450a327a577101fff52a9733954fa_JaffaCakes118

  • Size

    1.3MB

  • Sample

    240606-a2l36adh38

  • MD5

    99a450a327a577101fff52a9733954fa

  • SHA1

    128891109976240dece1d88aca044cb1fcf4face

  • SHA256

    27e83bdaa63b01249f0e64a4913374e2b279e4f559b1008c3ed9819cd4477ea5

  • SHA512

    a7d97fc176c1560fe4b8d16c2b5b591da1e1ffa78bcc7ada5fc86ccd707412af00e2ba25df314f93da943945ac69cc4f5e52f321b993595ade741ad420cf63c7

  • SSDEEP

    24576:1ioPUSuqCkA1uLt8yxDBJ3EbwMJ54IfA/oOc1/gdECGDFLtpl1Ml:4Z6XAILiyxkso4I4/oOY4dUFRpS

Malware Config

Targets

    • Target

      99a450a327a577101fff52a9733954fa_JaffaCakes118

    • Size

      1.3MB

    • MD5

      99a450a327a577101fff52a9733954fa

    • SHA1

      128891109976240dece1d88aca044cb1fcf4face

    • SHA256

      27e83bdaa63b01249f0e64a4913374e2b279e4f559b1008c3ed9819cd4477ea5

    • SHA512

      a7d97fc176c1560fe4b8d16c2b5b591da1e1ffa78bcc7ada5fc86ccd707412af00e2ba25df314f93da943945ac69cc4f5e52f321b993595ade741ad420cf63c7

    • SSDEEP

      24576:1ioPUSuqCkA1uLt8yxDBJ3EbwMJ54IfA/oOc1/gdECGDFLtpl1Ml:4Z6XAILiyxkso4I4/oOY4dUFRpS

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries the mobile country code (MCC)

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Reads information about phone network operator.

MITRE ATT&CK Matrix

Tasks