051d1f874f42ea0530e89289721d60ebbe3c7ab877f10f221c95d992d69598f1

Analysis

max time kernel
67s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240611.1-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
submitted
13/06/2024, 23:57

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a7354601ba0cdfa1f3e073bcb46623cb_JaffaCakes118.apk
Size

4.4MB
MD5

a7354601ba0cdfa1f3e073bcb46623cb
SHA1

e69830bca43b3a739bf8bdb29a024521d511f46b
SHA256

051d1f874f42ea0530e89289721d60ebbe3c7ab877f10f221c95d992d69598f1
SHA512

ba20c13d38dff6f142e0072faf737b32c21c7ee4941a2f3c8e3f985bc68f9f51ce9af18e3edcf02b7bcc133d2167e8af9cbb19b9da1b0123d0e14b73ef7f8af7
SSDEEP

98304:RTNcmlyr5Bh29RDLxKzFcPWY2DncsQ15zPjlUctVPY:5Ncmlyr5BhERDoBvosQ1ZP5vY

Score

6^/10

discovery

Malware Config

Signatures

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs

flow	ioc
12	alog.umeng.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.own.league

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.own.league

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.own.league

com.own.league
1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:4302

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.own.league/databases/area

Filesize
184KB

MD5
c8650adcdb15ea6c7fc6d9625737518f

SHA1
a19c7e0d17f4acf79fdf35aeff8bf64700f5f4ac

SHA256
fb6aa75601ca79282f6a1dc264a6b6e7c0fbf85d96ec68e17cbe6b025adae8bf

SHA512
50d92f89b998d12c1c9758e7f4dd193f29bb264c803b9c0e8a2db07cf85e04036594308f0e3919f33cc2a6096279fb3cdd383af162e51b2db94394e44fabc7c2

Download Submit
/data/data/com.own.league/databases/cc/cc.db

Filesize
36KB

MD5
ce6135aa1b1fe4f2c2db2a546d2a5558

SHA1
79b59582154017aadab783dc266fcb158c252940

SHA256
7b45f576c08c7f78220168cca4a0e33198b13e9bdc8b1da406ddb6887412000c

SHA512
2839075fe374c8567c839ae35ce2d33ec72fdaebf170aa7d224b555e5b0e74d4a43f2f67d17ed806dae841da883e9620d788ea052d06152678afa927307c7ce4

Download Submit
/data/data/com.own.league/databases/cc/cc.db

Filesize
36KB

MD5
5d7ea1a23af19b4340cc8d90f28297d5

SHA1
4cfe95b23a9e98378d69c4290af81b51fbe76aea

SHA256
474c4a54534ed96beacad7cc9a805a3f53ec9c0522fc7bcc59771cf500a6a0da

SHA512
33071f4c92da0a3df01c4a61dd165df7c7e0f4f37753cafe02d19fc876a5e7fcbb01c069c804e140ab8bfa0644a55f50fd1373646d1c439f817baa5ffbd47f7b

Download Submit
/data/data/com.own.league/databases/cc/cc.db-journal

Filesize
512B

MD5
f104ab94224d7d34aee64554125eabf7

SHA1
4f3bed892da9d15058bc5bd9d5ea2fb09557850b

SHA256
a5391848010fed1f5ee11751b5364637139f5ff1dff171cda1f0eadc24236cdc

SHA512
037c227462b0c9649b840c0abc1cbe2987f9236013ec165d159600c3edf13abab3b589e1f38b847a250c8077e64a51060088e1b4c730d756e621015ee0799cc4

Download Submit
/data/data/com.own.league/databases/cc/cc.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.own.league/databases/cc/cc.db-wal

Filesize
16KB

MD5
0aac5c0ebfcf7863f8072acac3e6f1b0

SHA1
d1155e5ffd1992f96fbb7e30e93309aa8b743d1e

SHA256
11ff49788a5045d6736f7ecc90ee146b3412b844d978d227519cb5d3726784fe

SHA512
c6da454540500803f2ec6e2b0692381d2d8c4a30eda5bccc0e46b9cba304ddf830ee3b2b24110581bc778f27bbe05943553502feaaf95058b833ef7c32cf1b9d

Download Submit
/data/data/com.own.league/databases/cc/cc.db-wal

Filesize
48KB

MD5
3aaaf541cd0b2b2a4339861003ea0c9a

SHA1
3e032de592ad22048fd631a131816daace72acdb

SHA256
b5d19bdae3776530d22a612e79dc52f7e2d47433a7f3619b3cafd0f9edcdadc0

SHA512
19bb2db01dd229a1e7c65124e0e46d00b25dcee9d4d6e3d511ce7006dcec03b16fe855bca83580c0882016ebaed2d09006dcff60b20afc0b8743972c1cc3b548

Download Submit
/data/data/com.own.league/files/.um/um_cache_1718323197744.env

Filesize
1KB

MD5
4295cf4e43af0238d367db996972075a

SHA1
2f3783a74d42ca2b84be8c27cb612f7c574e16f0

SHA256
777d4539ff6ff8eb95e031055cb93cde5ce382433b3dbf1f23a1f15ad56d2f9d

SHA512
653e393d18f5af56994670ffa8206c17d91bb7e0bf12b8dfa158f26f84bfd31153fff49812a49b97a8bd78f78e98668fa803059b32aea575e22c17a47f1b0432

Download Submit
/data/data/com.own.league/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
8d8a56ada5476f85d1fd3a17cd17939b

SHA1
009ca2adcc94c74ac6c7c32f3afbcfc9788ff713

SHA256
f1464a5c51011a7adb575ac20270c4d9700eebc259c0c73fc8eda9a4a91ba519

SHA512
b70e7e67b25cf7134d1888a3b86c981df1fa6d35c9e3870697965e7518667239c734715dec7c166fab071edc520f138a292f48aa629f230fb693119f549afecd

Download Submit
/data/data/com.own.league/files/mobclick_agent_cached_com.own.league107

Filesize
2KB

MD5
bd69db5f521c1f130d938fc85be093b3

SHA1
e98ed99324596493e1e95397e425dfcc3d9e2051

SHA256
b7a686ee9f50c23080c9eaf0d7e1446f51cef9e2282d4ff12d5d5283a39b3fd0

SHA512
95578d215be462319ab00ac3a4c2944b3c50cb584252da8dbb0f5e42bc129fd3433fc32b23ed38d85054757dc3282108276e761a59828e859ef6843a3a0544bd

Download Submit
/data/data/com.own.league/files/umeng_it.cache

Filesize
498B

MD5
618edaf437aac3fc12694cf79380b942

SHA1
b9aa5b3b2475d3940278a291e31f3703650c0f7d

SHA256
4e5b9ae472c55af579e935620ed6fbe09e8c2a34c4c01d4e6c9cc38c14bb0d5a

SHA512
835715520934cbb3598dbee4fa0a9445aae115d083409fde7d808282395d6a09b7f057ef59ddd5d5ae802d0042b6eeb46917bc16301280bafc037fd58d766199

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
148861aab055f79ab61af58f45126e13

SHA1
0ef81131100b8622c668906a565b0630bda6a1ed

SHA256
c19b5a75ac04146b30eaa65e8f024a8107abaf5834cc3d59d14cdc6507b74a57

SHA512
a542d8c3b364e98aefd9679cde65ca8f3c57a541280361b962289ccda698416856c3c26e226c5a04b13677cf754b2e4598a70da2de155e1dc17b4a23564aec3f

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
167B

MD5
03c25bcb5009b443d8f2a62f3429b1be

SHA1
7937a5763c64a5ba42f47c0aa05f7f12de4eb3ba

SHA256
a2b901271158eb19f019420fc71d1eea445091eb2ea6f0d3ffa26cd661107c1b

SHA512
88629630319d50969ef9f5bf0be8527d655b675dfac3a67f216598e74805ef90727170fc0d0a25aa4c9483fe1b009137e63638a05e91ad8f4afa51ce15ff1810

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
8f70432404e36081cfdee5fe81fb4a09

SHA1
ab9c8bd792b10e97a7943eb2a899178775ad8a40

SHA256
9d0219495a3cac53acc5f66d98c934f12c74c0b101c402964c4f127d24e2b5ff

SHA512
8c62cbf8c95377d6a0f9bcc75bb1ec909d78218e12cd0f88bc314f1d63faf48314b9a22ef8b6e6c3c2373636b51c68573cc77f94db846a5877882d320346a596

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads