Analysis

  • max time kernel
    129s
  • max time network
    170s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240611.1-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
  • submitted
    13-06-2024 10:52

General

  • Target

    a52b05dbceca051f6f79444e20b1849b_JaffaCakes118.apk

  • Size

    26.9MB

  • MD5

    a52b05dbceca051f6f79444e20b1849b

  • SHA1

    2b85d721c3fc26ca13a2ac20052d4cd9b4abd85f

  • SHA256

    a1b35a4e787dd5f146e24b07ae82d9f5654b35beacc6bdcbf41a3bf563d495f9

  • SHA512

    131e5a5e34e18da9c0be73219853625ab43dcbd8bb91793844e310e2407bf8751d24bc02f68759e50e9ed253d0378f474c95225ba008f474e702bfaabfefbaf9

  • SSDEEP

    786432:3Lc5wRYsuN1sI/7EcKff5TTQhXYaae5zc0kLc2dMC46:3LLAn/7iRXQNYQ5zc0Yc9Cd

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 2 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

Processes

  • com.dweb.ultramanrumble
    1⤵
    • Acquires the wake lock
    PID:4468
  • com.dweb.ultramanrumble:ngds
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    PID:4509

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /storage/emulated/0/.ngdslog/com.dweb.ultramanrumble/pushv2_part_one.log
    Filesize

    1KB

    MD5

    432c1feeb99d308861211e42148c9892

    SHA1

    dde0ff982ae829b1565d3a0babb4ba05927d7957

    SHA256

    6b6ba77fa293f0ffd94baaaf9bf85ac6c192fb77bbb494a32d5324c15f5ee0ca

    SHA512

    79a2a3be94d604480ebadf410456c457b3738768cc7d7a1d971458906c946bc8c4b73a893a7fde833ff5f1e7f98066661cc06cbe5ba62897a8fb08608729d6f1