1d2c5d118b89ce90a0f25a0780a319b99eb48b7705f50f08284f355933aaf085

Analysis

max time kernel
65s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240611.1-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
submitted
13-06-2024 13:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a5e11b572f220b2d51cb2cee0bf062d2_JaffaCakes118.apk
Size

794KB
MD5

a5e11b572f220b2d51cb2cee0bf062d2
SHA1

c5630e8956200d96b9d1007bb053a8c5b095f532
SHA256

1d2c5d118b89ce90a0f25a0780a319b99eb48b7705f50f08284f355933aaf085
SHA512

7fb856b5556f3b6fb07cf4bf24836cc061dd2e9755d680401b81704a3147cbda29f3b27147ba22ed216b5bec5c3b1cc4f817be4d099fc7e5f0ec8935e4532211
SSDEEP

24576:9sfFCbjeVgRRzjz1eeBjFqSVC6EDMdJma0eM9lQ0kVMWYsydukl2mq4krs2WAUO4:rY1Mmq4oxWAUO81/N

Score

6^/10

discovery

Malware Config

Signatures

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs

Processes:

flow ioc

19 alog.umeng.com
Queries information about active data network 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.dm.mmilive

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.dm.mmilive
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.dm.mmilive

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.dm.mmilive
Reads information about phone network operator. 1 TTPs
discovery

T1422
Checks CPU information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.dm.mmilive

description ioc process

File opened for read /proc/cpuinfo com.dm.mmilive

flow	ioc
19	alog.umeng.com

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.dm.mmilive

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.dm.mmilive

description	ioc	process
File opened for read	/proc/cpuinfo	com.dm.mmilive

com.dm.mmilive
1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:4424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.dm.mmilive/databases/cc/cc.db
Filesize
36KB

MD5
4cfe777c9f6e7859f5efe2197401d8e5

SHA1
bb3774e8879ad5f6db0c37f151c3d6bc7b4b207a

SHA256
c422190539b6414072fc3950da19a17985c0c4c2172740b2f74682b520af5231

SHA512
6be469864edaf8eaa110f618f8abd27962da92e20945dcd38073ade2b60b10f00552d54d5db9d9f75ca133213031030e71e2e30113ff033e5ef507a28fe0b1de

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db
Filesize
36KB

MD5
86752a4be6564d8370f2f0e403995003

SHA1
29f7d50675f6e59f3b808eb6dcc8619384412115

SHA256
50484dcdc6b9c2801773018386a8143a52a5153eb2eeeaf5be8bbe46a49ca90c

SHA512
79c9435c1e0d41a3f97784be3e5a3cd8c0bd2d32ecdf326808bacb00c76d876d0447617d6e72ef04cd4b996c92eda4eb7bb200987ae7928ce2e0e7c8e807a5ec

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
12KB

MD5
5297f30722682cc39f460d1a3c69d595

SHA1
e95f6bf81291556869820aab82d76f571a9e7614

SHA256
cf39b0cd343598bb9f3b758c1a2918cc40fb003406267a57f730696424a34fda

SHA512
94acc0ff3677eae687312602f9f1d355b95ba3b3ffbf208d3283058d4cce814e0288305774b0e0ad6449722e11b9f889c5118fccabef156a92bfcf4864d1cc83

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
512B

MD5
2dfb461a465e00a08864d72be5b3c42c

SHA1
e66a8daa994e74f5859dcd13d367c9f06b015304

SHA256
e60497320e10cc650629a0fb40568592383ab77671059ef8a98e1c7d4f60a0bc

SHA512
18b0507d717f78e9af63f1a3cc51da5750c9039aceb08068c45d8f974301d83aa88e9e57e09b3f61e4d3b6176946059bae9781278ea47a3cbc586a6543741fb6

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
8KB

MD5
b3f2b629e0ca2e1b5fbfd8def6391a28

SHA1
094e314f9ab00b141a5375b950943efb2d1b0967

SHA256
fcbcba2e974401f58e47bce00ef91a0eb3320c3f0c0624353bc5e059371cf366

SHA512
db79bfd9f2c973f1b36c75fd042f45c104f8b40658a767adb8a17d6ca7480208a14e64a6c63a15f419ab4b9b757422ebd61605082e90ff3782888d851ab1aff6

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
8KB

MD5
49c67ab908acff9f95601ffa1bd0ee69

SHA1
60bd0e22b6cc3f183cae1d127b15b9f5548caf62

SHA256
132c7cbd9ea1bb92c599ec4020eb7c83e9dc4dcfec2e4a57c676d71ce0e93a60

SHA512
6614bf3e7f64bc624879ddc94ed995b2e53464afd4a32f5fe9f0f6734fd0e685f561f5210d0b2ebd080c8555c5f8918e538fdad4b636cdf661b3185a542cdc7e

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
8KB

MD5
a0c6a070d916e9571e8f2b41379534a9

SHA1
829447ce74c116bb8866fa9a56298754ea3a47a8

SHA256
0286478e503b260415b9b0468ff8d55178fb0c3a0e98219a28095dfabbf305ab

SHA512
58bd1f1537c015ab87d2293cd040b046841acea79af956d45bcc487f31efb4e585ef8b253a059076ff54bfe840eadcddcd353457648d59333ac3d7e7629c9cfa

Download Submit
/data/data/com.dm.mmilive/databases/cc/cc.db-journal
Filesize
8KB

MD5
474ec37fe1bb562388243e67102f0902

SHA1
2a0d91bdbe414c72ddff2e1249422372f24d9872

SHA256
81bc3b7c6e62ad3d9bbb3a4f635c84f0941587b602c38392f70d7ad6ec16966a

SHA512
da2070fb65d4ab9282ed48f21ef64c06dd9d253df0d22cdf2761f69a8ad2ec72897e72cfd1b818716ea710d6ca7da23439e514037e926314be2527ccfa862fb6

Download Submit
/data/user/0/com.dm.mmilive/files/.um/um_cache_1718286785713.env
Filesize
1KB

MD5
3c8b7c2934b123c95b9b6285a8dedcb1

SHA1
e6ab5f3160a4b05948f784c391ef5ec76e2149ee

SHA256
b5e0cad2bceb81362369b848a87465855d3ebcf89d54d4655f91c1cfda8d601f

SHA512
53be18787d88f01f46860a561ad9121f131fb3bfff46a93e8d64742c546ffb045035d51a398c1358cffd1938bc9890e0642c24dfe81098fe4cafd2e8d9305f3f

Download Submit
/data/user/0/com.dm.mmilive/files/.umeng/exchangeIdentity.json
Filesize
162B

MD5
47e552d7036f9d338c4a2cc6bb7a3ad8

SHA1
291b7d0551b4004fa3b5f90c03d160d529821cee

SHA256
b396aa39d226514be00062fd50d76b831b7fb70b0d09395f769e82bb2bc096c2

SHA512
9c15230aa8270099edd0bdca08e10fdf98f30b09bc6469650d444720c50592fe1f74d388550f0e0e0e918915b7fe2a1a9d95a78ebe1ca01d10fb4cb67fec72d8

Download Submit
/data/user/0/com.dm.mmilive/files/umeng_it.cache
Filesize
348B

MD5
7cb717938fd9609a142e044714f45ea3

SHA1
e1048eeb258385f5fefc680d2b2ea188232426f3

SHA256
22d8ae57975726ee6ae67ef1b2a45d47bca2db8baa51f33f42a6f4095cbed515

SHA512
ca682c90a78a8f68eac4bc2ca71edf1869202ab9f3ed6c07b79dc3d9fc8d2efcd5a2a4c957c155fe117749132f381ccc6827f70701629a95bf4fcf46a4c5c12d

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads