General

  • Target

    9b31d8c4a6db51935b355370f2773c83_JaffaCakes118

  • Size

    29.0MB

  • Sample

    240610-s49w4s1hmh

  • MD5

    9b31d8c4a6db51935b355370f2773c83

  • SHA1

    7b9ee6bb7943fc142f5d624d9d8dd90acfc64830

  • SHA256

    86d70f10fef22a96a9cf3fb1d09770f6441fe74892fc374b531cb2494c3c1c03

  • SHA512

    09eb6ed7e281bd43eb691d2f70230c8466313031283475313266fb5908e1449c56335ef559112b08b563b0d0cf5661526e6b06d1dad21ac2557457ce217fa6b6

  • SSDEEP

    786432:j1BOqNtZX4h4Aafp3C2bOo7PLxX29DvVr23kTo:Z4InXU4TB3CXohX29DVrE

Malware Config

Targets

    • Target

      9b31d8c4a6db51935b355370f2773c83_JaffaCakes118

    • Size

      29.0MB

    • MD5

      9b31d8c4a6db51935b355370f2773c83

    • SHA1

      7b9ee6bb7943fc142f5d624d9d8dd90acfc64830

    • SHA256

      86d70f10fef22a96a9cf3fb1d09770f6441fe74892fc374b531cb2494c3c1c03

    • SHA512

      09eb6ed7e281bd43eb691d2f70230c8466313031283475313266fb5908e1449c56335ef559112b08b563b0d0cf5661526e6b06d1dad21ac2557457ce217fa6b6

    • SSDEEP

      786432:j1BOqNtZX4h4Aafp3C2bOo7PLxX29DvVr23kTo:Z4InXU4TB3CXohX29DVrE

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Reads information about phone network operator.

    • Target

      cha.so

    • Size

      76KB

    • MD5

      d48d1590f246947f64581b37bd6b2b92

    • SHA1

      1e6ce734ff1b1ffe27e8e8a8894a621eb4c7487e

    • SHA256

      a9d29004ce7b52c1c27dd431cfbcb45c36ed5a9cc7287bb3247160c9114a8286

    • SHA512

      fe170c67b1ca7555cd66c39bfab222f842777364a762241d43f1970ca0323784568c1bb7da3d15a888cfbeab0c538b856a8c0f52ccc9520605b5176495266ef7

    • SSDEEP

      1536:pLUD/U74EXKlo5Mlbqok+0rDHZIbNzKJ5W0wcd1F:pL6/U0IKlYMsok+0PHZIhmXW0jd1F

    • Queries information about active data network

    • Reads information about phone network operator.

    • Target

      com.so

    • Size

      60KB

    • MD5

      62d8205952d64fc042b3654983e1d747

    • SHA1

      e195f0888d125db05a2e3d0393ebed8ce396e4a8

    • SHA256

      43b79a4340d061dac86c5869f194d0ee3ce845c32d666ec22a6caf17ab1c32a5

    • SHA512

      a55eb56d7e3bd47253eda42515beb09f3ae26a61472a6ac12248750a7fac1cc13934842de5a680b9d39d10cf349e383245662c42de69c87b44680f187c0f63ed

    • SSDEEP

      1536:fJZJgpCDW/WvLJRZyL7JEVRrXJUrbPlc6W5OY:hzDzLNyJEerzypcY

    Score
    1/10

MITRE ATT&CK Matrix

Tasks