051d1f874f42ea0530e89289721d60ebbe3c7ab877f10f221c95d992d69598f1

Analysis

max time kernel
70s
max time network
150s
platform
android_x64
resource
android-x64-20240611.1-en
resource tags

androidarch:x64arch:x86image:android-x64-20240611.1-enlocale:en-usos:android-10-x64system
submitted
13/06/2024, 23:57

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a7354601ba0cdfa1f3e073bcb46623cb_JaffaCakes118.apk
Size

4.4MB
MD5

a7354601ba0cdfa1f3e073bcb46623cb
SHA1

e69830bca43b3a739bf8bdb29a024521d511f46b
SHA256

051d1f874f42ea0530e89289721d60ebbe3c7ab877f10f221c95d992d69598f1
SHA512

ba20c13d38dff6f142e0072faf737b32c21c7ee4941a2f3c8e3f985bc68f9f51ce9af18e3edcf02b7bcc133d2167e8af9cbb19b9da1b0123d0e14b73ef7f8af7
SSDEEP

98304:RTNcmlyr5Bh29RDLxKzFcPWY2DncsQ15zPjlUctVPY:5Ncmlyr5BhERDoBvosQ1ZP5vY

Score

6^/10

discovery

Malware Config

Signatures

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs

flow	ioc
12	alog.umeng.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.own.league

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.own.league

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.own.league

com.own.league
1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:5122

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.own.league/databases/area

Filesize
184KB

MD5
c8650adcdb15ea6c7fc6d9625737518f

SHA1
a19c7e0d17f4acf79fdf35aeff8bf64700f5f4ac

SHA256
fb6aa75601ca79282f6a1dc264a6b6e7c0fbf85d96ec68e17cbe6b025adae8bf

SHA512
50d92f89b998d12c1c9758e7f4dd193f29bb264c803b9c0e8a2db07cf85e04036594308f0e3919f33cc2a6096279fb3cdd383af162e51b2db94394e44fabc7c2

Download Submit
/data/data/com.own.league/databases/cc/cc.db

Filesize
36KB

MD5
67c12933d1e0e63d9801a6aa43092ce7

SHA1
b6936908554e4a1986b8eb08289e2d3545e8ff74

SHA256
abda5dd4cc2e7dbb951637c4b49d6990f9f34411fab4dee1a387dbcc8e7eed40

SHA512
db8b818daa3ff4ec7678645f84bf8b45c809bcbb758ea78b28982d071572655bba2d20e6f1ca4f0d057ab34fa655c5bc40457dc65050180351a2fc04a47175dd

Download Submit
/data/data/com.own.league/databases/cc/cc.db

Filesize
36KB

MD5
0908e924aa236931dc7166fef6e00862

SHA1
7782648d6d8f6e835bd47058d4852932c096a467

SHA256
38f8548795ca7470b449dd1de9598c07a247ba59883c0764c9c96ff0b7d31d7f

SHA512
3c16fbc5172aed04cd206e776c46d26e911732c6e3631536410a71f1d217449475727ac9b3175e827c5ce645a1da9e05900258ee6ca27c936a9060f241361dee

Download Submit
/data/data/com.own.league/databases/cc/cc.db-journal

Filesize
8KB

MD5
82bf7661c254d88cad7175f701d64bf9

SHA1
345ceee1ec6fba91d78e5cfcb547c1f4167fb98a

SHA256
f3107b0c9e55740e62ae0369812c3838f02ed349afe552dd08d38a511b92368f

SHA512
0323951cb5944c7ae5fc610fc87bf0ff22f77da061cc7f3b1518015c60f5a42094e27a5723ce863e6f17ba25ed8945f0318cace663bbe34185cf4de69881e7f1

Download Submit
/data/data/com.own.league/databases/cc/cc.db-journal

Filesize
8KB

MD5
35bbaee270193727bfb86f1f69536466

SHA1
fbbb4123a3bd15e56bb1e46fdf6589fb8576ea37

SHA256
0621e6a8c4ec1b0b2e5cd6c9d0c01aaaa693ab067116374666562a469dabcbf9

SHA512
0de5a579271141d71b20754841bd8f38da7932ea66d878528adf62e185b70bfc67e336bf0a6d27c41e58bc74a6985f7f9cad1dccc26bcd5e201e6d4cac6932a0

Download Submit
/data/data/com.own.league/databases/cc/cc.db-journal

Filesize
12KB

MD5
4c2018a3803a96feab3eb39866c42b40

SHA1
4f086768c0a700c93905f989995e75aed79dc97e

SHA256
e0d9455b87878384486abed9ceed02ada79ee404fe7c8b8f3c20e66d4420d73a

SHA512
9a19b76c51d44d5b72de6f16d462fb2a627ee046304c674d20192eb4ceb057a8e4bb6b9713a16d65706977230802aae0fbaecc02806e6b7c8503e1cc790c4fd4

Download Submit
/data/data/com.own.league/databases/cc/cc.db-journal

Filesize
512B

MD5
ace8c2aa5f54c442bc667709f6346eec

SHA1
6f80488abb6ed6e53e9e2f5b88ec851ef5d40fce

SHA256
afa4956cac30a8645268eff6580e92771bc1c36108451f8bc492bd7c58a62775

SHA512
c5824341776a684a8b5346a6ee48cd24b03cab1832a9943493c05f5a0b4eae57e36334d1548306048fefe7b477782f30ec8f7484b7388fc3d69062acfd619e6d

Download Submit
/data/data/com.own.league/databases/cc/cc.db-journal

Filesize
8KB

MD5
fb2bc703d33506f9c2a96cbc67da5a87

SHA1
37c9028951bfb091e56d5fb367e33c3e91143308

SHA256
d6c6859a7c8eddc3c46a1cf3261c97538d07590327b7996828368a4837204797

SHA512
808e3892a567672b913a3de07af5fbfdf5926cba531f604fc2dc0eb68735338f2d133c6d56edd16cda4159fbc64bdfc293d167d57097ac7ebbd999b3e3b2e845

Download Submit
/data/data/com.own.league/databases/cc/cc.db-journal

Filesize
8KB

MD5
fe2bf2cb0d6e1582e00b93d94f8755d5

SHA1
e1f5c344f7a24d431b26ebb9ad5ea4725a751c67

SHA256
9b1cca30aa0b82a8397d19b76cf3bc68d0d02a8c33f9faf66be717ea3029bfd3

SHA512
609d6a9271932ef0dd1d4e1a256970a216f9cb7cc20d1a0467eddb8c082ab406f0b1bb0e93f8e904f6efb70fda3ca3b6ac703632b397c8588e137a1a42832fac

Download Submit
/data/data/com.own.league/files/.um/um_cache_1718323205618.env

Filesize
1KB

MD5
a4898ad51ca19330340c74adff091e28

SHA1
13ace955ef3e41e8051aa3ba6d68e517dd47b291

SHA256
c5a3567ef8c6367d8692a956e7bb87f6c37c38ff0e0a3d593dae76e6626306ec

SHA512
83963ef3fd51958ea08e5e8b689e39e3a53f9b8a25adedd2c534a5c5459eb7c2d8972928e1b956bfae49aac2a6e9191e032423797873bccd5dd00bbdd9777564

Download Submit
/data/data/com.own.league/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
7d5e25beec7f7abf8a1d419afd4fd18f

SHA1
02ffb93c17bbc5c7a895af256a2197314f2bb34f

SHA256
ec1a5d3d453e56bba3ec9cb1c084f4e6733239c9769bccb07b1d39967ae475b7

SHA512
997ccee63ff2b27c21d503c42ee2378bcac9550263b54416868aa6e6ace4b9a7730f9513bc9c1a82ae4457b09516793a8a992acc2f6e5fe3923045f16fb73b42

Download Submit
/data/data/com.own.league/files/mobclick_agent_cached_com.own.league107

Filesize
2KB

MD5
efd1ce97425383fbf799d8c4b1445426

SHA1
4f50b0ae2c0964c64fed2049c4a4ede4b9cd69b6

SHA256
937d0051fec8bc4a9ba4121326cdf0cbb222454c08607952f7b0f218029d45d3

SHA512
18bb69f6244a6549a4a9ca59722b862d00df3b9622a6d79463e39d03429dab6d28bbfa13cdf1608b207cdf55d94c88ecb0655de11f79611376d095852c17528e

Download Submit
/data/data/com.own.league/files/umeng_it.cache

Filesize
429B

MD5
36a6bcc8f6a9d67bfc8dc1561b174cf5

SHA1
77cd1c24c47c9fc223be646e02bcfc5046ec62de

SHA256
6d5188dc02698c3b5fc72ff4a6b8adcff54fa4d680d960e07610939bdf12b254

SHA512
07f383211eddc259068ae078f53b2dbc715c90b232ecebe9e65ac25f584a2b511ebdc0dea2262078e1f694c451ec5b0819bcc37f63ca7abdab5bda5743b9bf1c

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
6c5d62e4187b829c823de43f39839704

SHA1
1b493bb6eded63c8dda5ed6b34a10cd789fd5f90

SHA256
ed697d36306576306814ca21eb9561f830851d1a2b5607e5b18a782c36a9b8f3

SHA512
9b81d571087bbcfd5322cc07041ce439ed0681ada3a33de9ecd386a4626d129e172ea83ff69957178232998362d71577957e1c36562d245ff5d7cf1a4a37d75b

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
167B

MD5
57dc1ef842d6fc9570693fd9c75d9f19

SHA1
78f4168ce41f613517b9bb604f27c850233833ee

SHA256
66401f11c5a1e639e1214a22b5b222632d65dc68d5fbbf373b095083efa74866

SHA512
9e49c33c3d9bf2044e40a5f2a34ddf5787ea8a724a69a797819561ec74c5c05732bfe4ee599db2fe3fbdc710f0e49fe29ba100107bf60d70e1ff1abd13cd1625

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
b178b775e347fe72b1b7c020ab3fd329

SHA1
4c5e5fe26ceb7a43faeaabfd4c85ddba331269ad

SHA256
0aaf1007eef09bcfd7c42679f7c1af3a8b8f45afa32c2da691017c9219f7677f

SHA512
dbf8853ee12078b90f8c16863c97e7030a7bf4a4a481034f25affa02d7ce5e13095abeedfe37162ad957dab64aba4300bf784381ca18fe76c045f5b573a42037

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads