Analysis

  • max time kernel
    18s
  • max time network
    133s
  • platform
    android_x86
  • resource
    android-x86-arm-20240611-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240611-enlocale:en-usos:android-9-x86system
  • submitted
    11-06-2024 17:22

General

  • Target

    9ef6dd9f8ca17b424e4fa6f0b9eb8b1f_JaffaCakes118.apk

  • Size

    4.9MB

  • MD5

    9ef6dd9f8ca17b424e4fa6f0b9eb8b1f

  • SHA1

    55780890dd028bad3ca2c44768c6e7e10c36ff02

  • SHA256

    30394f5a9f356d0023058a5fc2b9dd3d4a37e78a46ec2abd4cbad74727c8e2a5

  • SHA512

    ba7a62bec0e1d62746c0a8d3ef66f4f86b1fc4dae7c86452822e61e4d9d42f3f2c0a6f2584817c207c94f159f9133226983ca1ecd4f633c720abb5eb7571368b

  • SSDEEP

    98304:kt227saPdiHFT2gK7rPTGeiE8SGgLFRfRgjjIi07Kwviixm87vtLXW03FE:kt22gMdIw/bGWDp0j3ATW

Malware Config

Signatures

Processes

  • com.mcxy666.h5.xydjb
    1⤵
    • Queries information about active data network
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks memory information
    PID:4274

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /storage/emulated/0/Android/data/com.mcxy666.h5.xydjb/files/tbslog/tbslog.txt

    Filesize

    5KB

    MD5

    3d12af938b29c532a073f30dd57d5641

    SHA1

    276aad6e9312814c9e72cf59a886d5c87f2ec8f5

    SHA256

    88c26dacf414f4613a469b51ab312e702a59a4a5eb844be9b57ba293e8aa9f40

    SHA512

    daba5afa58330e69dde5d5a898c585245326a427c333b13593159806b9968e665d41c2f75c1dda9c18cdf95f52f128c546ab6cdb5120721f5d264ba0e6115d9a

  • /storage/emulated/0/com.mcxy666.h5.xydjb/tanwanGameConfig.ini

    Filesize

    6B

    MD5

    fc82c89d70e617206bb6864a2e3886db

    SHA1

    18e55d3c05612ab02a0a6c26e2764e8739f43765

    SHA256

    a78899554c647cddc1f741c419543d6b40491e1a392697b754270f0b94147770

    SHA512

    8bf99ac70278b72ef210628a82a12851d9580a266593231e4e0f33f546414157ec40e00b6f47d78ba2418417fc80471f721ae3352534aeabb16bb2af3a993e82

  • /storage/emulated/0/com.mcxy666.h5.xydjb/tanwanGamePlace.ini

    Filesize

    6B

    MD5

    892408bb6b8ce3b0e4f3033b2962ad14

    SHA1

    4cfe5635a1e425d9a40ecca7bb82c8ddf9eb12eb

    SHA256

    6635d545f653eebba56477f794dd99f606374d3ec4be5ae98edbfa2912a8fc76

    SHA512

    5135d08247e53ebb9de03ff6b19c5ee656f57d50a944e40ba9c9939bb5d5ca85250df7c85d69699f032b92df9240864858f4414797d72f5db0bf6777f62c7d3e