General
-
Target
a4a8c139b27ce14814d14f896547e94e_JaffaCakes118
-
Size
10.4MB
-
Sample
240613-khevvavfkk
-
MD5
a4a8c139b27ce14814d14f896547e94e
-
SHA1
2e7396763f70c6e5113050fcdc30398c6186ae22
-
SHA256
6d84a0281c36309d62ea797b9d09d9b4fa9dcbe88120bb9a27706b2a2aa32a60
-
SHA512
d30a4b370c5a130116ce25557d8f8ceff60763451287903745c7222ae0896633fc3a43d6993d2347e51efe4e100f6a8543da58f374d5d15bc1b428c166504dfa
-
SSDEEP
196608:79IWgD44tDdxImGx4lbrA9I6IrWfj9mdGu2k6GBdiqupnPHvsCm:5I9D4wROh0aI63jQGuo8YqG8Cm
Malware Config
Targets
-
-
Target
a4a8c139b27ce14814d14f896547e94e_JaffaCakes118
-
Size
10.4MB
-
MD5
a4a8c139b27ce14814d14f896547e94e
-
SHA1
2e7396763f70c6e5113050fcdc30398c6186ae22
-
SHA256
6d84a0281c36309d62ea797b9d09d9b4fa9dcbe88120bb9a27706b2a2aa32a60
-
SHA512
d30a4b370c5a130116ce25557d8f8ceff60763451287903745c7222ae0896633fc3a43d6993d2347e51efe4e100f6a8543da58f374d5d15bc1b428c166504dfa
-
SSDEEP
196608:79IWgD44tDdxImGx4lbrA9I6IrWfj9mdGu2k6GBdiqupnPHvsCm:5I9D4wROh0aI63jQGuo8YqG8Cm
Score7/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Reads information about phone network operator.
-