Analysis

  • max time kernel
    14s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20240611-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240611-enlocale:en-usos:android-9-x86system
  • submitted
    11-06-2024 18:14

General

  • Target

    9f1b1be54ffe42b092949f769c403568_JaffaCakes118.apk

  • Size

    4.3MB

  • MD5

    9f1b1be54ffe42b092949f769c403568

  • SHA1

    03e57070b1fb5c5766316f8e8165d647a8fbc056

  • SHA256

    4f090d929e3747308cc3e74ae9e006f4957bfe7a9ba35c4026eef99d741d7a22

  • SHA512

    894a06a331c0acd65a9dcd31072e1b427d1799225300e1359104dfdde6f809fe65ea953843876fca93bf912f7d157e713f61bbcdb47e267d3dec1c47c69dbaa7

  • SSDEEP

    98304:YF0tIlGQNxXXwwi6rwJgetFjgV/2TDzvDaq5FgK:YYQNxXXnnTetFjbDzvFFf

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • ir.basaco.taxionline.jaamejam.passenger
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4282

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    c56a43118a35531fd0832429275d63d2

    SHA1

    16cac1fc65245bd3663384a4c8feeb804be8c1c4

    SHA256

    24b1d4b3d42d0b37ef94abaa072af30ba6d44b5760d6808b16ff0ec0a14d5c4b

    SHA512

    9d4371d35b9d556178eb1c84f8fd9d8ed8a97c5c745c93dbda7b21e6bbef0cac5051e49ef9e8e5da509aff49fc661c9604a2552d518325245d8bb481c3470c8a

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e40837c26fd257fa88670fe9d6186675

    SHA1

    95af720aed121693c5cd71c7717e849cd3d1c3a7

    SHA256

    5190f04af66c3b11c06a402ec33e857a1fd09fb75b25b5cf997d19a72592f596

    SHA512

    903d1065d9306122c0cf096928e1f3ec9348c252b073980d1d1dea639b744b2758a064fbc1c8526029b18cff98eae7b74002f1fb327a9c2fced7b6783f5e4c21

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    5cd3399399aaf8aaa23c5a2977c9ad69

    SHA1

    83e5ca77da80718fc458f12bf872f86da0f96255

    SHA256

    bf7637ec4491e8a95c9ca923233801e346680da38bb85ab6ed739dbcb0926345

    SHA512

    48c482ad2fa9338a0d40faa9045bec235cfdbacd81b5f60ae58b6c59e33b59d3e07a12a5e28ff0e3a64b4eb498550e44fe136122d1ed1e042f810d5b8e20b2a3

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e35fbeeb64764d927812aae556d42d6d

    SHA1

    302477a200ad16628b1bca0a4551d817e1dee4c7

    SHA256

    b4eb5233668c6d30312549cd8a8736b04c79467a4abbec4e5c1e8b9b5a0391aa

    SHA512

    8713bca2e160116dd9ca876427760b2d10235a8c118382a7091d974de899ea1a8357d0669e7bff5a4845dab52a81aa6e2cfc9771710d584842fc66f35b8e5619

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    41172d46ff8888be4cfc7da9dc7d75bd

    SHA1

    83758a810bc86c52f60c838acebb9bd0c541be19

    SHA256

    7c27b82cb8af372763b0699274222450a8311bcf96cd8e876b717d4ead2a4c9c

    SHA512

    6d2556fbd104bc18366276346a8fa3d36992b5a7e98b2dc43683912ab4322dfda0ddf76c43b20710f8b5a8018655e731e5a52b2e573fd62f0ba0767b868c3972

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    b19742b1eac60d0850489eabe830d48f

    SHA1

    ade8f465ecb7cc82ff3785661a9045251270a8b6

    SHA256

    ce37def3c0a7da04300e5cf183fd2d8564ca499937f7424d4ab92c1140647078

    SHA512

    793e8f26d71d50afd660274a2d6fe77bef274f2cd9a789846d9c9734b9a4bbb9f095ab3f258ba955698343f517e56ab3d7dca1b7cd0756cc8f4e46e35baea6ed

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    1d695eb0e3636b751968a41bca0e0962

    SHA1

    225c3b51d0e82d38733d034252c0c80b1fd2b7bd

    SHA256

    5450776753d9a167463844e37cb0305974112347962a75d10aced7e8f37400b0

    SHA512

    12b9ceea2cd6487c26dc41d897eb84f388d06b29d721b9ec86684e3cdd005bb13372127d5ab630fe32c73a856a5ce95b0dc5355981990cc6a3c05a4e884f534a

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    9f29f8eb3a0ae5c3f82651d144934083

    SHA1

    4e010ccd5518ce8558b8d00aba9bf3712a351703

    SHA256

    108b61c3dbf345b6cd772465f0167ce8bf6294f49112d538315e2c04c2be2bc1

    SHA512

    b1b4ba2a5ded3cfd82bd980f3bca8424db7e14b0f201c78308e4ce32a0e4dd3c640cb3e49a27dc7a14307a8b35c443a64086de5c84925d358b0f030ac8e0f7d3

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    c8dbecfd87b4873d670fcbaa69c56b90

    SHA1

    c645e8a18734d685c4c3ddea5e97c59ede0f7747

    SHA256

    468a9b321da004abf2e43d04527df428570033e12f5aa39d208b42baf6cb41e7

    SHA512

    4c3fcdc2203b3bc4fce02a9215e98141f7d8da04711d8b7b3524b2f084671fd2738d1077a756a23938c07378f760a8f69255cc750a2fdfd74f68d5acd6d96576

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    072cb5d441f8a1bbe7f5792b56d7a69b

    SHA1

    e5c5f23ade3d8bfc19da97416d058aea12071879

    SHA256

    7aab8ab58d6b07910b6442912abf3197fd623c2b1ce5a4c00c6b0d83dd6b08bb

    SHA512

    944607910b8c7b9a0d6b106a4691bb00da08d019964ca58f003dd93c14987f83c4f452947e7175b0530f740ac31ecaac89fb6bdc1115ebc292f4af6e8a43172a

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    f94835a1de6d6fcde0b41dbb23ed31fe

    SHA1

    4011169103bf58791c8e29547b0406bf85f6b7af

    SHA256

    1af1e17c782603aba1d5d4c666b13f1ee9e375587aa889491655ad689c031306

    SHA512

    fd9280f07582b36c2c6d752dc72f62f71ca6abe5907a097cefd65bd5b54bbf0ddba5d0ef8991133a9e91e918978c09348814887ec1504fb92b8b099ce388dc0a

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    b0daab7fa7dda3777231d392ecf701ae

    SHA1

    32d4d86be0d330fe87adcbf8aa444f5f3c80444b

    SHA256

    9ddcd1f74ed53c62d1230fb34d4028b9566c81908a6cf80d23a431c881079205

    SHA512

    ab425b81415c0da269f3639e2f2355cef93a9d4473d8451bf641e265d4759eee5b76f4946635ae570bf0bc44b5f3e823137aec0e8685fb70d330b6cfde293045

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    cc5fe4e088508175e9194c7b71c06ce3

    SHA1

    504bcd62df5b7948332a01fdec39486d4bae4d46

    SHA256

    7a8c3faf62e4f48598332033387efd4c547f9193afeeca6cb4b5b7c5d00709e4

    SHA512

    b92f5bd1a7e86ceb9627e9599dbb0256cbd49490c057018a29dc185018e0703b5ef56548f75183c3103a90b9f18e55feec0f6ef452cac3833e75a55b45f21f10