6e18d4ba1573d71019af5bad6ac5908a92d7363e257e58bb4a1e1dd5b468bac5

Analysis

max time kernel
3s
max time network
187s
platform
android_x64
resource
android-x64-20240603-en
resource tags

androidarch:x64arch:x86image:android-x64-20240603-enlocale:en-usos:android-10-x64system
submitted
10/06/2024, 23:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

9c40ce8fbc3cd345cdda36d6c953a9c2_JaffaCakes118.apk
Size

31.1MB
MD5

9c40ce8fbc3cd345cdda36d6c953a9c2
SHA1

e81a7a9f475fcd974f44059e83fe5b016c7ca20d
SHA256

6e18d4ba1573d71019af5bad6ac5908a92d7363e257e58bb4a1e1dd5b468bac5
SHA512

c988397ae70d59cba5f92a223e14341c5662f490c59b282bb479b3994af8e38eb0518187004c42b514320c1673c265d048804bc6a107418b32b2ad3d1a867ed8
SSDEEP

786432:DwQ+x2oGYkvdsPbe/+sfQHlK3TqT5J1xTo+ARF0yY8Bks:UQ+oojkvdObe/v6lKjqvTZ+es

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.juxin.rvetc

com.juxin.rvetc
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4978

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.juxin.rvetc/databases/bugly_db_legu

Filesize
60KB

MD5
803d4b2e9c78b2eb9719ce2084fd4fd1

SHA1
603d16997bb3271181e9573250f6eb928b7fd875

SHA256
f086533277efa43481a055065819d3a08f7348d22f038dfa4543fce13292b639

SHA512
cdc0d979b5c5c27636bab20ce236408602d164a4132e18161e0855e4b7b418b0178e34229d7e3946c15fb5e94939bc249943b1e350dc893d4bd9b1350638b734

Download Submit
/data/data/com.juxin.rvetc/databases/bugly_db_legu-journal

Filesize
12KB

MD5
b3de11ff14e827b80693b01e0cd4a323

SHA1
1a75534ef8347d237cbb461f29c96e4fa752acf1

SHA256
6ad35c99384d974eca0730e1c99447ceb54e51c30e073e020787ee6f77ea7354

SHA512
eed6c4b923c1e967e81db9813153ae12ddd55a5889da099a185fd0fe10c2561f71a4484af43158aabb7eeaee1d84c8448ab6e091a37ced925d54a3d392ce5744

Download Submit
/data/data/com.juxin.rvetc/databases/bugly_db_legu-journal

Filesize
512B

MD5
897dde32c35ef1c142c0cc95ff79155e

SHA1
b4ebc911b266b8c6ae14304465118a82c3fc5a53

SHA256
e75b7af0fa9cdf40e3c2aca24cc8b653b88bd0958c3dbe143f9fd5eefe40bc42

SHA512
d7244b9c99568f6e736b07dc2e156248b7085abb9cd69cff0813ce4c2ee8ec2f0eb1ac814cccc6b8715f0e32c584d8ac5143415fe444192b5d9377e7ff17e78c

Download Submit
/data/data/com.juxin.rvetc/databases/bugly_db_legu-journal

Filesize
8KB

MD5
b8750b67e6837cedf56d91a1a2758cc8

SHA1
d665d7d8b282b4ba2179006565f0eea3c59cc2e6

SHA256
fe1df96f5fe311fa3de3ae2cef80e61ae3ea999924ec07be40bffb69cc0b5d35

SHA512
7831c0be7a41f41c2fe3c193cf5d83a8efe4867b95cc067587c45db58d009ff8bdb8ebf104f7c5fb95f18fc27fec76af43891795a4b99e61caa8810e3003cfc7

Download Submit
/data/data/com.juxin.rvetc/databases/bugly_db_legu-journal

Filesize
8KB

MD5
54c2c8f810e9969e9226de94f6d0ba1d

SHA1
ed1d4bd0c88c92f80eef5fb9e95199c1a5b6919e

SHA256
41b2ce068f39b176ccac76bd370a66e7916a374a49deaa036450fb9f8e0c660e

SHA512
e05386fcebb30c97b408ce5fe032a9f5711cdf28e0b46070321f6f7f69601c280e1e99e8bd6ce75bb8d1b51ad35cd93565ba03b4133c11554d403dfe1e3c2494

Download Submit
/data/data/com.juxin.rvetc/databases/bugly_db_legu-journal

Filesize
8KB

MD5
cfd3b91b5b67a70155ecac08ead8d5be

SHA1
d7e6c130590cce032f43f4405e93a4a15fee7f18

SHA256
a07a9d3d4e318bde0bb6fb3fa1d7146ed46776eb3190bcd73a5a37bf8e3689c5

SHA512
f02848fbe00fb89ba3419053be890b8cac8d2e03ce5f276c8e51e0d530f32b2b7b5e14f8f0a1a3d95f43af7f602fa2168d93ee8b7f19b5130ff0d6ac0618230a

Download Submit
/data/data/com.juxin.rvetc/databases/bugly_db_legu-journal

Filesize
12KB

MD5
bbcb9d925d20385e7dac864a20cca2ec

SHA1
d79a5860568c7576b51098c861ab4bfe88a79ac1

SHA256
7a477186f38cc7bee53afb10da2c84f4cbc91e8b2e904db9b4d6cabf5a0dce18

SHA512
021d047e542779298d90687e78e3a9d1ec258b5248ef52d3a3d3191668dbd17e82c71c95cba2c3ae7a8223925f0a8ab0e1abe895b298c582a520021c576107b6

Download Submit