68bd8a10ce568be7fbd89a379bd902f1ae91f75c1eafe940544717fddfb29ad4

General

Target

a43e13b4ee7cebd1189d8e77d1f7bd24_JaffaCakes118
Size

10.5MB
Sample

240613-hd943ssalj
MD5

a43e13b4ee7cebd1189d8e77d1f7bd24
SHA1

4939c41bc2ca31a3978208217fb44b8d03d1bac1
SHA256

68bd8a10ce568be7fbd89a379bd902f1ae91f75c1eafe940544717fddfb29ad4
SHA512

d1690ebdafc8d13e23e8269090b365b4af1bc39ba8b93c9f5ed15ef279eb6966b35ddef5c8801c664515cda5df3d09947277bb5df0f256f86445ddd9b96fd15a
SSDEEP

196608:X8bwNQHDNSuHEJV+zn5+yfgnST64tWFkW+Bg9PJSXDy+Utsl4CV+YiwkOk:L4ScEvy5+yfSS24IH9n+UOV7vkOk

Score

7^/10

Malware Config

Targets

- Target
  
  a43e13b4ee7cebd1189d8e77d1f7bd24_JaffaCakes118
- Size
  
  10.5MB
- MD5
  
  a43e13b4ee7cebd1189d8e77d1f7bd24
- SHA1
  
  4939c41bc2ca31a3978208217fb44b8d03d1bac1
- SHA256
  
  68bd8a10ce568be7fbd89a379bd902f1ae91f75c1eafe940544717fddfb29ad4
- SHA512
  
  d1690ebdafc8d13e23e8269090b365b4af1bc39ba8b93c9f5ed15ef279eb6966b35ddef5c8801c664515cda5df3d09947277bb5df0f256f86445ddd9b96fd15a
- SSDEEP
  
  196608:X8bwNQHDNSuHEJV+zn5+yfgnST64tWFkW+Bg9PJSXDy+Utsl4CV+YiwkOk:L4ScEvy5+yfSS24IH9n+UOV7vkOk
Score

7^/10

banker discovery
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Queries information about the current nearby Wi-Fi networks
  Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
  discovery
- Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Reads information about phone network operator.
  discovery
behavioral1
- Target
  
  TenpayService.apk
- Size
  
  402KB
- MD5
  
  ec1863f8eefc993fd05d121563c324b3
- SHA1
  
  f95da79b308a766fbf1f85ce16185694b31a7500
- SHA256
  
  d4fd1ddf5c5a85cf9fc2589aa9ef694338bde77b2dcd1e606ee99c436241328b
- SHA512
  
  9a819f225c3d144dd571ed9d1c1966aa70d5ce9f5f7637fc1c43ce6a643785b14d6e1f8fcecddac3393ffc2bf03304628425c5e2032121a5b0b1c8e88bad7731
- SSDEEP
  
  6144:jBTLiBv153C+A9lp6S2ZEiUG/SYvQi/h1bSbRMCvsrVnEvSMCXfYq:lTLivtC+mlTsERlYvQWh129MwWVQCf3
Score

1^/10
behavioral2
- Target
  
  alipay_plugin.apk
- Size
  
  332KB
- MD5
  
  68c8cdc2e6e7d5b9c5243bb70acde9e9
- SHA1
  
  bee67040e9427c0465a3175da72e8471c7e315bb
- SHA256
  
  92a776b7cd5fdfb0b0aecf49fe9015bb226975e998dcf84e7e72c135b6c1dd3f
- SHA512
  
  dbe768b0979ddcf900ee022a40d1731348cec968550bed939266324d89e7b1a683559c6b6c4f864511fe3898c43c1598f8c190f64558ec4f74e993d98059d2f0
- SSDEEP
  
  6144:I0aUsFe9WXH/79crXnPcL3MddirifdGO12GHpNAl29mWvKLhA2fnUAND:I05sFe9WX4XQ3MXimV5TwlAmWv/2fnU+
Score

1^/10
behavioral3

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

Queries information about the current nearby Wi-Fi networks

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

Queries information about active data network

Queries information about the current Wi-Fi connection

Reads information about phone network operator.

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3