4a19bf75c68cc74ecaa34e8e5f7116f284d35911305a8055e9c0a832b568fa8c

Analysis

max time kernel
7s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20240611.1-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
submitted
13-06-2024 08:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a49971dbee503e2c21da3f02679a9a5b_JaffaCakes118.apk
Size

10.7MB
MD5

a49971dbee503e2c21da3f02679a9a5b
SHA1

43deb6e7777cf62f7b4c6237be176a36a6f74ae1
SHA256

4a19bf75c68cc74ecaa34e8e5f7116f284d35911305a8055e9c0a832b568fa8c
SHA512

137960215f7c954fd4493d352124e37c30dd34bef94ea3274e8b4d17a56b959d4f60fddd891dbe3628cd9481cf452e1af665f81bf1709c7f95ff641f4c57b356
SSDEEP

196608:mGcHdWQhGQDioG/9HNXwHuoaYu4q1RtYJnRXuU:m15hHBG/9tXJiu4qw0U

Score

7^/10

discovery evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

T1407

Processes:

com.poiuylkjh.vbfgrtdefgg

ioc	pid	process
/data/user/0/com.poiuylkjh.vbfgrtdefgg/[email protected]	4643	com.poiuylkjh.vbfgrtdefgg
/data/user/0/com.poiuylkjh.vbfgrtdefgg/[email protected]!classes2.dex	4643	com.poiuylkjh.vbfgrtdefgg

Queries information about active data network 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.poiuylkjh.vbfgrtdefgg

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.poiuylkjh.vbfgrtdefgg
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.poiuylkjh.vbfgrtdefgg

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.poiuylkjh.vbfgrtdefgg

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.poiuylkjh.vbfgrtdefgg

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.poiuylkjh.vbfgrtdefgg

com.poiuylkjh.vbfgrtdefgg
1⤵
- Loads dropped Dex/Jar
- Queries information about active data network
- Queries information about the current Wi-Fi connection
PID:4643

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.poiuylkjh.vbfgrtdefgg/files/.jglogs/.jg.ac
Filesize
32B

MD5
2ee035412fd78fa6202652705df85fce

SHA1
4d30b90d7be58dea7bd92c876f6ddf30b1c247a5

SHA256
78ed5c466d4854ff40c46bb768e5bac55460999ddb797f956b96991f7b4217c1

SHA512
49686abefdd3080d3ad3cc1135dd820339b652aaf5ef94fc6321f463cfe94d72b0233ab74add5fb87d1887a59b01efbfe7838df9ac5d3b69b745c7048720568e

Download Submit
/data/data/com.poiuylkjh.vbfgrtdefgg/files/.jglogs/.jg.di
Filesize
340B

MD5
2507992a2393cbb367c3fd0aa43f9a69

SHA1
9564e00ae55bddf06e89118a7264638cc4b32a2a

SHA256
b96cfa3004f66f7a12da41b9c1a9581a7fbe5c526dd042aefa73a2141ee924d5

SHA512
a54fb17f7defab24cb6747e838a1377cb46fb0a0f2112bee319a5a6788132e182bb90acdba72c9f2391962e711f32e2a636bf438664469e32b3c077347a899de

Download Submit
/data/data/com.poiuylkjh.vbfgrtdefgg/files/.jglogs/.jg.ic
Filesize
32B

MD5
5357e876d2e46535797bc796ded52b31

SHA1
a02b8832c4f628c1e541a3f5bcc6aa7f289b7eab

SHA256
f88d23f47648865b256dacfdb6ae30e0ad9cad204e3c740ffe346d003026af81

SHA512
bb548479ee5371e87e7058c39b118e0909201b79ce552e2627aac1f36d099e4befe364e6797e532bb110c35f76d43c95c25b8cc5747f9e4a5eeb5aa41d28e20e

Download Submit
/data/data/com.poiuylkjh.vbfgrtdefgg/files/.jglogs/.jg.ri
Filesize
314B

MD5
5ea6a1cd83e282dbc84eb5e17bc66661

SHA1
1fd6a76f1ab9c4839e88c28ab4e7f3c2a4c94a57

SHA256
13671f120971adbf3a8e0561995b64cbfd3fc262114c9f3e00d3daf4d9c096f7

SHA512
ab40206d634ab7f51c88d827a8b3654ffdaef8ed62c5071c5ffb0a11e91d3d6904c91797f7fc75304fdd39254301d778cfd3d0dc5c338a4664855bff448ab820

Download Submit
/data/data/com.poiuylkjh.vbfgrtdefgg/files/.jiagu.lock
Filesize
27B

MD5
2a66996462c5b3d4bdbcb1778aa7776e

SHA1
0b2588017aec58a2ef5067ca6608309e4ea4b797

SHA256
26de10d7a92b20a5f024c94e45c47653e08bdb9ab861033e8bde5dc7144df230

SHA512
56222aa6afb92f8693e7670416695391d2b36ab047b8e1c6e6646907f9a0a8d53ea79356d1633c728cc32d6982fda3fa4c4886bc3842c4e7848c5e20783cff4c

Download Submit
/data/user/0/com.poiuylkjh.vbfgrtdefgg/.jiagu/classes.dex
Filesize
3.3MB

MD5
316c62965ef8e5c39a34589da59031c1

SHA1
795119baabff3ed8288ea0b9ca7369e6a9e73fb6

SHA256
d73fb18430a6f812dd4ac9aac99945296afe6ca532480b281203609a2d9985d7

SHA512
4c1f9a70ea986a4c3eb64fbf18f67631f16ebf3cf99073b7a25f48c8bf10ecce85187fda59c5c17b8ffeb39ba0f61b78a0896187f1cde50aac6237232bd0f6b7

Download Submit
/data/user/0/com.poiuylkjh.vbfgrtdefgg/.jiagu/libjiagu.so
Filesize
457KB

MD5
0bb4d654e3ad9c4b9110d2c83a807d92

SHA1
9c07bd8b32cee0ee13c5c2da65d44e52156f315c

SHA256
4011a80b1f410991e861724f7f04fa1cec52c7f83dde89001f3eca1d7783a51f

SHA512
f830107afc85758ebe384e04cfa7bd082a1fec14f596f09cf7321ebe2c85dd7112ee56e985c08733be874905be3b9339885fdc788bcaaf453004240dd8e36d13

Download Submit
/data/user/0/com.poiuylkjh.vbfgrtdefgg/[email protected]
Filesize
5.7MB

MD5
2bb9a998aa693df6cc04440eeb737bbc

SHA1
9080735699e16340d3a4fec843a77769bdfacf9f

SHA256
ee433d4202c61b50ba95cd38607af6b90b093b5dce12aa1a4e0c450c284b1cbc

SHA512
16ca304338dd82b6ca1b75e4fe54962e22668e2b24e5124dfe32b1a07d43f98baf415dd0280098e202d06e36ada813761b89e293e625c345638a8a8e4c29dfc4

Download Submit
/data/user/0/com.poiuylkjh.vbfgrtdefgg/[email protected]!classes2.dex
Filesize
1.4MB

MD5
317c3d4098ff65d239297c6a09db35f5

SHA1
b7f4094f51ef3e03b2043fc7322bfa73f6b238df

SHA256
b920bdcdff7ef0883492fcaca634aa0ec79a67d9dc75012c6480d7560f7ddb87

SHA512
5dfda89ab8e4f87e3cc728ed5fafebb7af8e181384d3a701e0d6cbbc33f4d43f8a3f69c031e80d2df179614103bb24c715c11166ecec7398e47f44bda9649c0c

Download Submit
/storage/emulated/0/360/.deviceId
Filesize
48B

MD5
4c4c5285293d5141f582aefa4e038669

SHA1
e01852a72e5a8e6f7d63a21426b515118196047b

SHA256
36c5c63f39ddf7a6a9c01946e4f78b95790aa734176802e793e95724a1b5b731

SHA512
097aa673273e307f7bfb7c08861ad389d4b5f7fae55d972a5c1636aa66d0b8d23b5eb9b696cefe0e5b942f23969dabf0147397aeca85fb9a4d75e0473104e399

Download Submit
/storage/emulated/0/360/.iddata
Filesize
32B

MD5
a778c9e38096878a53a09d3c260847e4

SHA1
0733c1b59c700b548a3ba0b2cc5184143e1756c4

SHA256
035bc8eaeb64ae0716fe0d1e888b7df18fb87c8a48f08d35e3c73379cdc82dc5

SHA512
af02f7b5e0af55326cb820e442e4a3ee14308e8af5210adf5cf23c1200e1ff2b07ce8553dab369778beacde44fa161aa0fe033c7bb92e0ecbb1f9329600b3ab0

Download Submit