General

  • Target

    a359f8fde5e91fc770f4efa094f286bc_JaffaCakes118

  • Size

    31.9MB

  • Sample

    240613-bstmbaygkb

  • MD5

    a359f8fde5e91fc770f4efa094f286bc

  • SHA1

    9ed1f4c13218cdf7ccda1fcca25f755fef373074

  • SHA256

    89b4d1ae4d955734f9ccb4cb8c3a633cc8c2e9adb2af7346c9487ff7181d1375

  • SHA512

    98222366f84e8d3fa2394556536a24809f86b049774149812b9a41476a022040de8c0d352ab572fd66d19392221c46ed8c514f31262923e72debf6207b5869bc

  • SSDEEP

    786432:9KbczckAOORyfzt8GWERfcdPtBRGr1nGm+J6Fi+/:9KQzcI189ERfcpUBb0PY

Malware Config

Targets

    • Target

      a359f8fde5e91fc770f4efa094f286bc_JaffaCakes118

    • Size

      31.9MB

    • MD5

      a359f8fde5e91fc770f4efa094f286bc

    • SHA1

      9ed1f4c13218cdf7ccda1fcca25f755fef373074

    • SHA256

      89b4d1ae4d955734f9ccb4cb8c3a633cc8c2e9adb2af7346c9487ff7181d1375

    • SHA512

      98222366f84e8d3fa2394556536a24809f86b049774149812b9a41476a022040de8c0d352ab572fd66d19392221c46ed8c514f31262923e72debf6207b5869bc

    • SSDEEP

      786432:9KbczckAOORyfzt8GWERfcdPtBRGr1nGm+J6Fi+/:9KQzcI189ERfcpUBb0PY

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Target

      plugin-deploy.jar

    • Size

      203KB

    • MD5

      a8e0d96087006f31bb3b7565a61edb2a

    • SHA1

      8a0afaca21a5dba7ddd35f3d3a7abdd7ea48d933

    • SHA256

      c8543a07d4cf4d01c6e1270a598039aada1041bf046510f18c54061e46c0d060

    • SHA512

      0d84932fe9c0c4ff819b89e5599ed931999c8a76cdd8451508a3ecac6bb500166ebfaa7969b795a51ebc6d20ebb2164cb4fa91be5219a13eb88710c3d04f314b

    • SSDEEP

      6144:cdSt6A+YfKBqYpoWmN7wkirVQD4simDPn91kDVL:z6A+Y4DpBmyNV84simcDp

    Score
    1/10

MITRE ATT&CK Matrix

Tasks