1d2c5d118b89ce90a0f25a0780a319b99eb48b7705f50f08284f355933aaf085

Analysis

max time kernel
65s
max time network
149s
platform
android_x64
resource
android-x64-20240611.1-en
resource tags

androidarch:x64arch:x86image:android-x64-20240611.1-enlocale:en-usos:android-10-x64system
submitted
13-06-2024 13:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a5e11b572f220b2d51cb2cee0bf062d2_JaffaCakes118.apk
Size

794KB
MD5

a5e11b572f220b2d51cb2cee0bf062d2
SHA1

c5630e8956200d96b9d1007bb053a8c5b095f532
SHA256

1d2c5d118b89ce90a0f25a0780a319b99eb48b7705f50f08284f355933aaf085
SHA512

7fb856b5556f3b6fb07cf4bf24836cc061dd2e9755d680401b81704a3147cbda29f3b27147ba22ed216b5bec5c3b1cc4f817be4d099fc7e5f0ec8935e4532211
SSDEEP

24576:9sfFCbjeVgRRzjz1eeBjFqSVC6EDMdJma0eM9lQ0kVMWYsydukl2mq4krs2WAUO4:rY1Mmq4oxWAUO81/N

Score

6^/10

discovery

Malware Config

Signatures

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs

Processes:

flow ioc

9 alog.umeng.com
Queries information about active data network 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.dm.mmilive

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.dm.mmilive
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.dm.mmilive

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.dm.mmilive
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

T1422
Reads information about phone network operator. 1 TTPs
discovery

T1422
Checks CPU information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.dm.mmilive

description ioc process

File opened for read /proc/cpuinfo com.dm.mmilive

flow	ioc
9	alog.umeng.com

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.dm.mmilive

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.dm.mmilive

description	ioc	process
File opened for read	/proc/cpuinfo	com.dm.mmilive

com.dm.mmilive
1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:5033

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.dm.mmilive/databases/cc/cc.db
Filesize
36KB

MD5
0908e924aa236931dc7166fef6e00862

SHA1
7782648d6d8f6e835bd47058d4852932c096a467

SHA256
38f8548795ca7470b449dd1de9598c07a247ba59883c0764c9c96ff0b7d31d7f

SHA512
3c16fbc5172aed04cd206e776c46d26e911732c6e3631536410a71f1d217449475727ac9b3175e827c5ce645a1da9e05900258ee6ca27c936a9060f241361dee

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db
Filesize
36KB

MD5
67c12933d1e0e63d9801a6aa43092ce7

SHA1
b6936908554e4a1986b8eb08289e2d3545e8ff74

SHA256
abda5dd4cc2e7dbb951637c4b49d6990f9f34411fab4dee1a387dbcc8e7eed40

SHA512
db8b818daa3ff4ec7678645f84bf8b45c809bcbb758ea78b28982d071572655bba2d20e6f1ca4f0d057ab34fa655c5bc40457dc65050180351a2fc04a47175dd

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
12KB

MD5
9ae8cebf5715a87101f4375c310521cd

SHA1
bb1a427ec83ffb80bddf8747ad0378230b1ff619

SHA256
df811c5c55586e4471a2bd0f5d5b418ecc1890e42bb2e044758cd26e95b67cad

SHA512
6ec4aa7a935ff5900e90707234ce2984a2d46c919d55710fa4078b707c34dacd55b90b19fd8f28ef56fa5b185e0872816fdbc871ac454ce03ad465ce0b1476b8

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
512B

MD5
b8595c26ef6a93297831a51c55d67e1c

SHA1
8676d11cdd7353d8537c2ee9c8f100aa681c81a6

SHA256
9249ebde07349cc391df8010032734a237cd3a8ae04d4b204d1ee9a7ffd23929

SHA512
bafeeb478fb5855bffcec2e190546d46024e55a9f3d277ea4389fc8840660841b7dfe41ae1c646c25267f84b3026ca71e779762f347f5b6d44156167402909af

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
8KB

MD5
ece3e1344dbfde000d35a4e76870b964

SHA1
f0bbe665e94db9e74dc8dd9f5fd6237e48a1585c

SHA256
75b3562ef7091e513968638d2f79ee433b830c0ba771eedcaf553bac9fc1e562

SHA512
6512f3f9db640c34b6fc9e272509347946ee761f8d873c72c55ac22a106c49b6d886c7ac82b70aa82589a4feb8242817d98d1d4d3f9d41d910edf2ceca132372

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
8KB

MD5
970a4a08c461dc52a5eeb89217e190af

SHA1
34832d1f84078e512b0861c7a12712a098866662

SHA256
4b3e04321c84ccb2dd7c1ebe1666021ed410acea86438e72fcbe311d74736cdc

SHA512
4c88f3d72db664796131fc7e36cc9d8c8b84753c476f8e4bc715e60d0c7698647a87a5af30e5e2827e8ce2136e294f551871e0fb4e544f15da1a13f6119ebf51

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
8KB

MD5
2a73b79a5b900b88d489e5c4da54d220

SHA1
f411cc35f250d28f534466994800fdb31319053f

SHA256
66ab38e80c1f0c70ac40c2247ed60608e1a4d6a880d9dc3c224332dddc670a1c

SHA512
c8bcee887b18debf07cc9ebcf0cafecc33953f9c0ec6353b90293c44c1d2b8516c5d08e691a5da7b61aaeba0610c4fc817c4c08095bbe5d2334fcc67cc032905

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
8KB

MD5
5c27e2ce957a06a893e7509e46360cc8

SHA1
d4ed1cdad070fde5d55c9ce0981ecd18167d6547

SHA256
198c946c868adfdfbeb137db76a803f991faef4be8509d3c2825d2c28c709b19

SHA512
d191f7f1853361db5fdbf4611da6252f00be9ac68b9dd8db246ca72c556be9486f3c90b365eccde2e1e430e2291013ca9efbbe10b1d3405b46d772679176d54f

Download Submit
/data/data/com.dm.mmilive/files/.um/um_cache_1718286784681.env
Filesize
1KB

MD5
021147ac9da166a3d988ef0d4aaf4a26

SHA1
7bd620542d50f23b63b8eb66a3228f6811ad75fe

SHA256
1d532cc15f09be6e46e4732f7b81dbfb5e27660398fd0f0083578dc89e15a2c0

SHA512
855b051d2b99e38b0b98c6f65000ccfee252b1952cf62a15024233f6059eb25b448f6ea5299a21d019bbdf87c79b66de9d2148bcb2bede54995a7cee0170db70

Download Submit
/data/data/com.dm.mmilive/files/.umeng/exchangeIdentity.json
Filesize
162B

MD5
95e34204004b80c7841f7d1aec59a16f

SHA1
89000679e93ac415a27f434e1cc3669d7a0374c0

SHA256
88422036a10eb8afd1d7b5ad1851b612e3a5aeef7435d7e284f65f5d6ddb76fc

SHA512
3ed7ce4a53e63f2abe1298cdbe130ec94f0d2d1b59b21389df0de773883632365b93e71e3868ea15511e74d301959b5faf0e1668c36e7b89036c9848a298fdba

Download Submit
/data/data/com.dm.mmilive/files/umeng_it.cache
Filesize
352B

MD5
9ec5c90659daf484382515962e98be4a

SHA1
98156c595bd6d44cfeebf75fa768a14e54bc6807

SHA256
d09c1ed41f55c10a48dbbe471fe675671c7646d51112a7221d6e90b973dcf6e2

SHA512
5844798b082b476d73ab5b2e0e2ec24bf8026e4e3f908888675dda6874a928a247b58cab0e8ac195c8e31beb181056327c3676403a0b1f6cfcdf2f2f94ca6977

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads