Analysis

  • max time kernel
    4s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20240611-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240611-enlocale:en-usos:android-9-x86system
  • submitted
    11-06-2024 18:18

General

  • Target

    9f1d09e7f2cb073f61afa6dd15556b27_JaffaCakes118.apk

  • Size

    11.2MB

  • MD5

    9f1d09e7f2cb073f61afa6dd15556b27

  • SHA1

    7eadfa0592cb267c8c303efebf774b836d8fabcf

  • SHA256

    4360318bc61f8e315513c356ab8d67c5fed58f667fe6a133c8e24d895ee663fc

  • SHA512

    ac8cbee06523bb788569ff482c5892d8911f36e135534aff828b4dea2e22db7570160da6dedc77f31bfeb3ee9efede6154b29e439b8592a0d2c275d0f958bba7

  • SSDEEP

    196608:yURZBMKp17GmdgNontO7VfTOoWIfFAI7icrY9HG+S+JeNPffubXCzxAMO4BBmFWF:yuMKDiKgNoUJTP/9AqicrGcoeNPXubXC

Score
6/10

Malware Config

Signatures

Processes

  • com.xgbuy.xg
    1⤵
    • Queries information about active data network
    PID:4268
    • chmod 755 /data/user/0/com.xgbuy.xg/.jiagu/libjiagu.so
      2⤵
        PID:4297
      • /system/bin/dex2oat --instruction-set=x86 --dex-file=/data/data/com.xgbuy.xg/.jiagu/classes.dex --dex-file=/data/data/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex --dex-file=/data/data/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex --oat-file=/data/data/com.xgbuy.xg/.jiagu/oat/x86/classes.odex --inline-max-code-units=0 --compiler-filter=speed
        2⤵
          PID:4320

      Network

      MITRE ATT&CK Mobile v15

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • /data/data/com.xgbuy.xg/.jiagu/classes.dex

        Filesize

        6.4MB

        MD5

        2de713f37f75676b36e385fb4eec3f56

        SHA1

        aba2d55f5f93613504095163dd41f343b5b563ff

        SHA256

        bd1ab2bd891891d9485a5384caa045dac15bbb3c925a99b082d382fe4315fd10

        SHA512

        e52a07462f910016d9ade1d263fc45792b14b7ee5e3cf7c7be0ba093ed8d188c750e75c811df9172d937312988db0dd21e39298881908574649e340980fcda73

      • /data/data/com.xgbuy.xg/.jiagu/libjiagu.so

        Filesize

        337KB

        MD5

        5cffb3090a405e02f3932b13dfd160bf

        SHA1

        bbd2e8bed5ba632786c70d8aa8bb61646f4db583

        SHA256

        5a448089cebfc0088651ead6e1486f98891991ee6d1cefd0d2933f96a7f7fd45

        SHA512

        9c0044025dc87740936e265e50659238b8cb377852ffc86f956bbb461c3480329bd5e404441cef037102b262660b5bcfd6273865a4121bb619f254b0f5fe278d