9a4409031523b93c97f46f91e2764bdcb714bc637fbbf8b7d9fe6cda214ae770

Analysis

max time kernel
45s
max time network
180s
platform
android_x86
resource
android-x86-arm-20240611.1-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
submitted
12-06-2024 13:45

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a0df7ae495ce9ac6e84699c02aaea9a3_JaffaCakes118.apk
Size

6.5MB
MD5

a0df7ae495ce9ac6e84699c02aaea9a3
SHA1

ef5e58b2010a4cbd87ea0de529c5e5f84a53025c
SHA256

9a4409031523b93c97f46f91e2764bdcb714bc637fbbf8b7d9fe6cda214ae770
SHA512

76e5599e26d0e918a169ce59497df26c2beb51ac5d209fb5ca440d6a98b8fe6d02a863d5dd22b1ebf2e38c19e1ea492b30ae6c3b6db75082c4438458f3be32a5
SSDEEP

98304:lOEDdtJxOk690v93gfIj8BpZd3hcqE/erIRza6df+M9OLaSzmWjqCH6vCCgi29ja:lxTOk6U3gQjabxc9LzaUr9Ou6JqCGCxa

Score

8^/10

discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs
evasion

T1426

Processes:

com.bkidshd.movie

ioc process

/system/app/Superuser.apk com.bkidshd.movie
/system/xbin/su com.bkidshd.movie
Acquires the wake lock 1 IoCs

Processes:

com.bkidshd.movie

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.bkidshd.movie
Queries information about active data network 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.bkidshd.movie

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.bkidshd.movie
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
discovery

T1422

Processes:

com.bkidshd.movie

description ioc process

Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.bkidshd.movie
Checks the presence of a debugger
evasion
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

T1624.001

Processes:

com.bkidshd.movie

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.bkidshd.movie
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

T1471

Processes:

com.bkidshd.movie

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.bkidshd.movie
Checks CPU information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.bkidshd.movie

description ioc process

File opened for read /proc/cpuinfo com.bkidshd.movie
Checks memory information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.bkidshd.movie

description ioc process

File opened for read /proc/meminfo com.bkidshd.movie

ioc	process
/system/app/Superuser.apk	com.bkidshd.movie
/system/xbin/su	com.bkidshd.movie

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.bkidshd.movie

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.bkidshd.movie

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.bkidshd.movie

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.bkidshd.movie

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.bkidshd.movie

description	ioc	process
File opened for read	/proc/cpuinfo	com.bkidshd.movie

description	ioc	process
File opened for read	/proc/meminfo	com.bkidshd.movie

com.bkidshd.movie
1⤵
- Checks if the Android device is rooted.
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
PID:4291

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.bkidshd.movie/databases/dbbobby.db-journal
Filesize
512B

MD5
ef9b3f5839f766116c45ad717ec1302a

SHA1
6644796c044a2db8c7fec713b13dd479ee7298ae

SHA256
01a7a09d0850dc2eca124a27a127f001be7f3d18a489cc1e0bbff20f0c13c01d

SHA512
c62a964e33aaa1fa1867ded69eca718dc7b48fd22b418334ae557661d12b769023f2acc5d4658b507836417611b1ef4f92d9ce14b80209699bc5a46a36f580a5

Download Submit
/data/data/com.bkidshd.movie/databases/dbbobby.db-wal
Filesize
261KB

MD5
29db0de0477e4c6d0afecf66a9ea2b38

SHA1
76553ad830e8c2169259e697fa0f4e7a9c146071

SHA256
4c3df1e55541778332691e8c4c16949a51cdb9b4416c22d3303a2fd9a78c0937

SHA512
41aa7a6ef19dc15af63e18b615defcc3ad000a171122c988024ea64cf058b8b21453c36243a39bfe43da81cbc6a5de3b3812d003e8d82f16be2f5f3d4faaaa56

Download Submit
/data/data/com.bkidshd.movie/databases/google_analytics_v4.db
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.bkidshd.movie/databases/google_analytics_v4.db-journal
Filesize
512B

MD5
c397c3efc9477cfb0ff82b5208846d79

SHA1
3db6552d43f157892ea34657cadba6909ce2f87c

SHA256
a78df6bdcdf1a4c0f3ddf426c2c760661ae2e16d077a0523d31d2342bd30ef74

SHA512
f55381cefb9c54baab71aad4fcb0508edb7f1ca883eb893fffbb6921802f6f9320e045160095a210eb4fe262b679f999053db5d52f0dc388962cc1a3522d0aba

Download Submit
/data/data/com.bkidshd.movie/databases/google_analytics_v4.db-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.bkidshd.movie/databases/google_analytics_v4.db-wal
Filesize
60KB

MD5
40963b00cae9ba35b0db2769da00c878

SHA1
e5da6e951939d2fa479927eeb3e7d5145d8827b7

SHA256
c8f420996ab7ff4ab7038c79d646ec96ef9f49911687058316bd436d7cd697bf

SHA512
d626c2d9e432ee5f6d775554327ed565f36dae4f6058155ad8ed5029c5e5aae1abef1ab533a00c683de506fae2858b62e4a73ffe314bd5529a81f17bd40eaaad

Download Submit
/data/data/com.bkidshd.movie/databases/google_app_measurement_local.db
Filesize
16KB

MD5
a380d533d20016cf508cd730d8eefaa6

SHA1
70dcf7d8ac666ba2e66979e28b65a7a3c7a9a9df

SHA256
100bd679e058f5f4d762e39613d20446e5359584b359c927ecc080098ca6d56c

SHA512
c95fb6fcf15dc4bcd39988f7af48a4989292fc93ea8af5b4edd59d3e38cd96a9cecafc1c8388ca6921773e3f03aedd6d3ed88347dc94a6f7078c3c5797afbb0d

Download Submit
/data/data/com.bkidshd.movie/databases/google_app_measurement_local.db
Filesize
16KB

MD5
6b63b92f6d4ec960961ab1deba76d015

SHA1
bf6ffccf76f70b897c1a6cb46d129418190f509d

SHA256
a16377ad9b4b59218937f24a93699b9a7cc2409814ad71504ffb45c59fc699c9

SHA512
43e6e2290c76065c77021b625e5f31d41df9f98b2efec0db7e363c7b34bbbeccff92699465c899a34400ddd1195d67f580e4f0eb92479defdaebe4ea24fd9e21

Download Submit
/data/data/com.bkidshd.movie/databases/google_app_measurement_local.db-journal
Filesize
512B

MD5
942baf0793c9f5dba364ce267f57b8d0

SHA1
64d4d4a39492267e2c439e8e7a042ea52378fa27

SHA256
d1afe31435f23673d475019eee47576daf0cf443364e245deb5c50b057fcf92d

SHA512
ac540d5f9aa4fab38c313959810b9a741b95c88d55879161d4565ba77d55fe9cd20846db224ad6e1e8f9c8b8bd7e4d8e4993cedd5ac48832ae11d5fbfd4bcd68

Download Submit
/data/data/com.bkidshd.movie/databases/google_app_measurement_local.db-wal
Filesize
36KB

MD5
78946e304cb455966c4a345217fbbb22

SHA1
d6da6fd1115cef7e778ff45f3716e78162dc6c2a

SHA256
620e973e477378c4c30548148b33913af1216779ec321526b881bffa9d50489d

SHA512
50527f5c4e29499cde616eb38acf61d12a94732b6d19c1d6ba62acfa3a926d9f1a06bf40c0433383e15a3d864329b46fd63bb5d917842808b0811513ba1078fc

Download Submit
/data/data/com.bkidshd.movie/databases/google_app_measurement_local.db-wal
Filesize
4KB

MD5
b0a3f09bc49a82b88a5726ca84ce8833

SHA1
2ec40a585ed5f5e7de55d74951418d61f9f34982

SHA256
71e2e1f0e7000816e66cd7a70407f0571ec726b18042ec54d4acc388a5addf01

SHA512
24d8debaf4bba8c6d9cd24863179fdbedffa3b4574b31c3f57928c6e424540356e2da870c6aa15c5b42950abfa0638eca248e6420168b13b79cd3b6912633a54

Download Submit
/data/data/com.bkidshd.movie/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6669A69202FF-0001-10C3-21CC40AA64F6BeginSession.cls_temp
Filesize
79B

MD5
a2ee3f3b228e2ea1f7d63530f58c025c

SHA1
5d0adbd37f9cc7251cc526cd39e356a67f1406f1

SHA256
0e6886d503356c8a6c520c37e5d75c864b8ce1a735e4ac6e7005e195c0a972d3

SHA512
d064e780f4a71f4b2824180a735d2f5da105687288254b88e75f61a57aa3a6d1ad92ddef155243f3889084bd29dce90a7a4fed69ebd3d3895233e148801c4ad7

Download Submit
/data/data/com.bkidshd.movie/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6669A69202FF-0001-10C3-21CC40AA64F6SessionApp.cls_temp
Filesize
111B

MD5
74517ee31b99c345b36658dc4a4fa67b

SHA1
049ef4b32db30b753c1f64458a046366f90abc0f

SHA256
c2e24b08efe9557e6022c3197c89b0fce3da138930efb837e01a694c6348e5b3

SHA512
b61d8d2d385d29ce03dda40ae61c1a160e173dba81834e2278cddfe0d36a3f999be416db33bb89152212b7488df803d38598d1c2b3e9376f58d67068c2bd25ba

Download Submit
/data/data/com.bkidshd.movie/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6669A69202FF-0001-10C3-21CC40AA64F6SessionDevice.cls_temp
Filesize
131B

MD5
10e6499930be82720ed65c3a1e704bca

SHA1
6180ea40bd324bd8f735e9edd523cbdc1744c14b

SHA256
4f0dc81dff91def8b5d42c8af625b67d1df08842fdf72300a2295a01a17136b4

SHA512
d69510a93a102c48d9a593a9c4547beed507402243f277572f941e68fe4a2b10adac13ad8b68f252023e776888ed8d2af9b661deec655b6c0727e37aaa3bff10

Download Submit
/data/data/com.bkidshd.movie/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/6669A69202FF-0001-10C3-21CC40AA64F6SessionOS.cls_temp
Filesize
14B

MD5
9b3d4522944ce6396563812bfdb92fa9

SHA1
6d2a6133c8f01938a48ccc77ef86ad8ca335c020

SHA256
d32805d685a3f50caa7f1c0bd7c8804c4d937a866513289f60e3184f7a591ed9

SHA512
091d87643712530bf9006135db42a5a50742bb5ca3026bcc5f2c1c17bf4fd984a8938d29263b0abde3d15cac196d2230902534e200b0b79485e3a1bd97d95727

Download Submit
/data/data/com.bkidshd.movie/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap
Filesize
514B

MD5
e89f5271bcf9e734e98ac01a1870da13

SHA1
f93e04d10a5f54c997d7deca71dce9d658c4159e

SHA256
8d30e520556e15494630a1ae3a2bb27bc10bfc06c09f8a17d8dfff000021f231

SHA512
a42e3514c10a4a89f153dd440fba934b6f79ff08386404aef18a3e443e574f75e67616139931d3553fd8164ef6212dd44b9568226e548b3bf172ea11af0c1dc8

Download Submit
/data/data/com.bkidshd.movie/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap
Filesize
1KB

MD5
10ddbb243403d4b13250b202444f7dd7

SHA1
2e224504f8f753b3924ed2865f237eca861f0851

SHA256
4bfc62a094d497c1be6c5cd806140c2bfe4b99831c4a3b1f08b3176dc2476e20

SHA512
29333dc646bf1c5f04a886e6c4a53a186b4f74fbeedb1fa36a8dacb2073825e4a8d8f10f695e307ae8a200b63d74897e248036ea4092f4fc6335d3d94be4fea9

Download Submit
/data/data/com.bkidshd.movie/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp
Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.bkidshd.movie/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_f74d95a1-8bc0-4491-a988-8b9896ff1e0c_1718199960869.tap
Filesize
395B

MD5
6fc838878727d1d0fed7c5e3da1d3e4d

SHA1
82e2f93221e509c895e1779ec5521a936a2d0510

SHA256
f3915eed559eb061ec7a80783d65b799cde08ef43775aa52ad3814ab996e0c51

SHA512
ced9bc58e5e59cda439019e02d8d03ae3220f8db3a24135610c7cbb85eb500ee16802584870f3afe300c2ef96e97b83c6b4660125b175f5219dacd088e7b114a

Download Submit
/data/data/com.bkidshd.movie/files/gaClientId
Filesize
36B

MD5
22bddca20761d577b0f01fff160334eb

SHA1
dcb5e776749cc988cfd357b4751cae3a2a9a752c

SHA256
6ea577f0ca78f31d2448353add5b55c5035cd64970e77af570a20d53caaae229

SHA512
66fb821998ad34f96ffc163a57c04e4ac9e4891676920bc80a031f7cbee8ad8e6ed833c1ca72da45c0ef33ee38f2ea847e84cd2da3e5d47e66c1a7cdbad9a826

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads