a69edf24fd1cbbfcc12b10a2a189f6704d05f82975b71c96d156b2b5aec28a2b

Analysis

max time kernel
38s
max time network
147s
platform
android_x64
resource
android-x64-20240611.1-en
resource tags

androidarch:x64arch:x86image:android-x64-20240611.1-enlocale:en-usos:android-10-x64system
submitted
12/06/2024, 18:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a1d989aced8714d1dfd2b48549fd7bbc_JaffaCakes118.apk
Size

28.5MB
MD5

a1d989aced8714d1dfd2b48549fd7bbc
SHA1

0827170cfbdbc00c1022a4acfc5725988e7cdce3
SHA256

a69edf24fd1cbbfcc12b10a2a189f6704d05f82975b71c96d156b2b5aec28a2b
SHA512

2df59c4a87d9cd6cf9a9da33614140874de6d9437797ad36a83a17a2dd854eaff6020864689024d9c585c55ed3d1523fb41786feba10d37b44a73cc60db11f6a
SSDEEP

393216:1oiIfxpdA+7On8TZm9Vudk39DXanCLf1zCcD5S00x5PDIZFv1/5/pyWyOjyrpkag:8xzA+a8TEo+TrhzzdX0xoFDp1TcpjJ6

Score

6^/10

discovery

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.aongames.ffm.forzh

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.aongames.ffm.forzh

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.aongames.ffm.forzh
1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
PID:5027

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.aongames.ffm.forzh/app_fiverocks/events2

Filesize
16KB

MD5
b7dadb7f42765b9de12448171bddeb72

SHA1
08d7fc325a11eaec63911a0e1b15a944b176fa5c

SHA256
628a1a9764d397321e0504ff08561d93c57fb2af262a4e1a9f002b931bc3b231

SHA512
5cfe1e646fd7a8c2f64202dad025a2cea35ac6cba171fe2b9d0b2e392479c4734ef1a526ef5639a5626e863f34bc52e5cad37d79c3ff0581e62d7c88b24db3b9

Download Submit
/data/data/com.aongames.ffm.forzh/app_fiverocks/events2-journal

Filesize
512B

MD5
4d13799777ace00d9ec63cdd788b2d0b

SHA1
3a06a99e409e88511ab24ad2cc5694816632d986

SHA256
4cb22376a533835709b33fe0d5319c6736dc52a0065f9d6d717ce9b15fff2016

SHA512
13474c44169a0a9c5bb63ff3d60b1818a029f9026eb32a30b2b25e179505ddcc0a42c6c24969cda5b86327c3d38f9660055620ddb04c1f460ffeb6a0c616aa35

Download Submit
/data/data/com.aongames.ffm.forzh/app_fiverocks/events2-journal

Filesize
8KB

MD5
08bc9108bec6e0d711904e621ec79982

SHA1
f3dd1bc07b0c6dbcd30a75533f25c97656e9a258

SHA256
0702c422b034d77a6f22d9bbab0c3c7213ff08f107849cef80da5e02a8606ee9

SHA512
a8e7e82a8631e6ebdad5c4cc72f9d71c9b7471223694bd6862de75af63456008065f722b826890f22c141c554fc0a08ccb05c1a9504da957506c42f20a9f772a

Download Submit
/data/data/com.aongames.ffm.forzh/app_fiverocks/events2-journal

Filesize
8KB

MD5
0f2fb5d1f41b76cec1774212b3217325

SHA1
e170df5949d5fe01682ab5ea8d9635c8194003ad

SHA256
161a6deae7d38615e10ad623ca06832d11b5841a03879dfa522f35e86b2a0958

SHA512
3254d05be61b98820fd083a9bec8e797abdfc3948153997ffc2879669a979aa0f8d303024a6f3ced653c23834d1dc48cbfd73fc46b6d6bc5dc309c37bb3ce2eb

Download Submit
/data/data/com.aongames.ffm.forzh/app_fiverocks/install

Filesize
36B

MD5
fb5d064d6e217e724c137ba8ca1fe443

SHA1
972e41f1ef6b295d981e409842db6cac62a869ca

SHA256
7f3e36103c0102e8495a607deaa1a6dab343dbbe51f7094f6aaf08c82592e43d

SHA512
d34e8a52a49049571da2ffa7863368eb1c1dd1ac0a796c49c0d7280ad3a2baf0519839d359ff49e711b5affa898fea2795041fdd31342fa55eaa63a4178331fa

Download Submit
/data/data/com.aongames.ffm.forzh/files/PushTurnOff.dat

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads