Overview

overview

7

Static

static

6

a7ad6207b7...18.apk

android-9-x86

7

ZIPReader.apk

android-9-x86

ZIPReader.apk

android-10-x64

ZIPReader.apk

android-11-x64

beacon_dynamic.apk

android-9-x86

beacon_dynamic.apk

android-10-x64

beacon_dynamic.apk

android-11-x64

com.tencen...nt.apk

android-9-x86

com.tencen...nt.apk

android-10-x64

com.tencen...nt.apk

android-11-x64

com.tencen...ti.apk

android-9-x86

com.tencen...ti.apk

android-10-x64

com.tencen...ti.apk

android-11-x64

com.tencen...le.apk

android-9-x86

com.tencen...le.apk

android-10-x64

com.tencen...le.apk

android-11-x64

com.tencen...ic.apk

android-9-x86

com.tencen...ic.apk

android-10-x64

com.tencen...ic.apk

android-11-x64

com.tencen...nt.apk

android-9-x86

com.tencen...nt.apk

android-10-x64

com.tencen...nt.apk

android-11-x64

com.tencen...eo.apk

android-9-x86

com.tencen...eo.apk

android-10-x64

com.tencen...eo.apk

android-11-x64

com.tencen...gr.apk

android-9-x86

com.tencen...gr.apk

android-10-x64

com.tencen...gr.apk

android-11-x64

com.tencen...pl.apk

android-9-x86

com.tencen...pl.apk

android-10-x64

com.tencen...pl.apk

android-11-x64

com.tencen...er.apk

android-9-x86

Analysis

  • max time kernel
    49s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240611.1-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
  • submitted
    14-06-2024 02:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a7ad6207b71337d0c09279ff41760f0e_JaffaCakes118.apk

  • Size

    24.6MB

  • MD5

    a7ad6207b71337d0c09279ff41760f0e

  • SHA1

    fc0ce32ef757cdfbf8549cd907f0217b53de2ece

  • SHA256

    e310acbaa68b91f399480acb79ad148fa4ceed3f0087069989e359728af937ce

  • SHA512

    c1317cc8ba0989ecaed9c9dd0101b3178902c531bb820a1eb6913e3e0f7b864f9712aaaffeab2c3766aa41513af610e4fe17b828d4f0c5f530fc592f87e0d43d

  • SSDEEP

    786432:emOos5Sph4l7duQwaCnogXEMziRhh6gcGyAlEH:eLosQf4lZRwaCnheRhEgcGyAs

Score
7/10
collectiondiscoveryevasionimpactpersistence

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 1 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    discovery
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery
  • Requests cell location 1 TTPs 1 IoCs

    Uses Android APIs to to get current cell information.

    collectiondiscovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
    impact
  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.tencent.mtt
    1⤵
    • Loads dropped Dex/Jar
    • Queries information about running processes on the device
    • Queries information about the current nearby Wi-Fi networks
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Requests cell location
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Uses Crypto APIs (Might try to encrypt user data)
    • Checks CPU information
    • Checks memory information
    PID:4284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.tencent.mtt/app_dynamic_jar_output/com.tencent.mtt.account.jar
    Filesize

    267KB

    MD5

    a95bea89ddf2ffd7fc971063da89190f

    SHA1

    d4148c654342f95b5e4d47fd3fecbf09066b2170

    SHA256

    033d15bae82d5009f0705aa8427adf4be7941feb788da9483734aa3cf13cd1a6

    SHA512

    a07aaf3b4cac60cafecc7d02ffcaedd9c1c856edc524f51bdd138bde8bff4c722a21ef683f0e9469d442d8497b0f4130979ca27fb2beb8dd0760f0c97780f15c

    Download Submit
  • /data/data/com.tencent.mtt/app_dynamic_jar_output/com.tencent.mtt.share.jar
    Filesize

    102KB

    MD5

    488f5e89425c9385206026c9e23002fb

    SHA1

    7c82cd19450f7b256d1039e6b45ce3457aea9989

    SHA256

    80751e22e8a901cadc384e3e1ca311f66e10467df6ca24869080b897641f6132

    SHA512

    352feea0d7c1a5653f2372013b2f8a8d8c947439405692cf0d93dfb7aadde36737c7176ec9e5aeefe1072af8e4c489f042469932f9952a7e904b71fbf8ed6607

    Download Submit
  • /data/data/com.tencent.mtt/app_dynamic_jar_output/oat/com.tencent.mtt.account.jar.cur.prof
    Filesize

    297B

    MD5

    a44c1138f4f5695ff2bdc5d6969cb1da

    SHA1

    5a93d5708f797083c2dee483d672f451d40db581

    SHA256

    b910724690676f12191957c9c6170ea4c968e93d5cbf7f853ec39c7398088c2f

    SHA512

    122dcf1cf580e531a90a10877d4fb8e17dda9578ba863a3e0e4f1acf2e63797d7591e455b44c9c8593feb9504fc0a50bbb24fd3ec0fd931419d5554db8734074

    Download Submit
  • /data/data/com.tencent.mtt/databases/database-journal
    Filesize

    512B

    MD5

    cddbfbb1127734cc08c6cf930a2f989d

    SHA1

    b37b812fabcf34b8838c06feae3b3652dfc26096

    SHA256

    295885233a8e9968c1f146eda6d91418564c72cc5d082281ee3bfa0538367f63

    SHA512

    b1dfdc728df0e9e2d8bc561dca9c43e247c6183bcf1eb7b4a20d7153b7f085d3415b5a4c3876e3cceaa2c851ce95d6751fa1fefcf65e2b3354c354d01469f9db

    Download Submit
  • /data/data/com.tencent.mtt/databases/database-wal
    Filesize

    164KB

    MD5

    7dc5a7f9d3bffd2cd748b992fdd3bf6c

    SHA1

    b8e63f4a2a5a80e7bf9063e4eda9885ea735911d

    SHA256

    ce5356bb7b1f92437dac592379baa0d4914bf623323e20f426f65fb565b2e078

    SHA512

    677f06eab3e5755a08dc6f9569694c7f6111ffd5d1d9b01ad72b7494782e8aa17756323d28683dcbaf229798e584b457be31ff0d6ff77b30de8a572e0447d2ce

    Download Submit
  • /data/data/com.tencent.mtt/databases/default_user.db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit
  • /data/data/com.tencent.mtt/databases/default_user.db-journal
    Filesize

    512B

    MD5

    0b80da3f82ed1840e6289b417dffb860

    SHA1

    9ab6cdf5ae736d8cca495c9cb66e2a5ac01ac5be

    SHA256

    dd643b4c5a011175debd483541cf21c185822f1dcf5746bd905ae36209f482dd

    SHA512

    cf7161f36b3e1b37d5fad8f271b0f05a68ff3bf9c85925e627652a9f2c0af99e32f08247ddd2d5bf0364ae43918813c0255a186eec5320ddc0bfcd9f65be373c

    Download Submit
  • /data/data/com.tencent.mtt/databases/default_user.db-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit
  • /data/data/com.tencent.mtt/databases/default_user.db-wal
    Filesize

    229KB

    MD5

    5570ca7627a8166126186d58888c25c5

    SHA1

    b69b89c4fc97fe6f171627f216243fca7f285871

    SHA256

    67ecb81429dcadd519fb0f2944d4209a815c0dad9f9c01ea3fcd9f215953e276

    SHA512

    48911a18b02f22b1cd54cef0cc4d32d4c6342ccb051c5b15b79e8c92f5c74211712e832cf25164ae90d2fc9dfbd37e76615d3a28fe319d21deb92bd29b3a5051

    Download Submit
  • /data/data/com.tencent.mtt/databases/plugin_db-journal
    Filesize

    512B

    MD5

    8e44bc7d5f4c4121f412a1a94eaf62eb

    SHA1

    ed2cc215db3c925cb82dcb80128766d0a2b4610d

    SHA256

    c7495696a2353fd4c9947e0020947bc4037d9c3477024e9b87c1e70d3f5b3c71

    SHA512

    184ba4eecdae3579378277c8a44014d68ce46d94a15d255038fc635972290a6836dc91c0e9a5db1dfeb838757b06abb58756e4254c80da47a4be4211b875abb2

    Download Submit
  • /data/data/com.tencent.mtt/databases/plugin_db-wal
    Filesize

    136KB

    MD5

    14b38245b15e28c5d2c7edaa234701c2

    SHA1

    b12d46bca0872ab62a40388a831695044e7fc869

    SHA256

    ccfce73b738880860e5ffade1dbbdb095ba040991fec9c4592eae730c12cbfae

    SHA512

    0a21681928fe79f441fd302f13f09ba9a2679c5e01d915dd28c471899f93d5fdea74563f783795272cde165483a9cc65f9217ed7babc241d1d91a86fc089775a

    Download Submit
  • /data/data/com.tencent.mtt/files/.Application/com.tencent.mtt.id
    Filesize

    24B

    MD5

    6e072731d929383c65f493d8f0f308e6

    SHA1

    075bfe1363c7c13821e889012b92572c36834f27

    SHA256

    566fa4a6077f35ff349ab15c856ed9bf6a8a8f455d0668ef6d38ebe56724fa13

    SHA512

    a9c2702943a87aeb3814115af18050a3b0e2cac269979dcad7ec8166b8ee7161fa5789b95a5b97ee5b0d4ca8ff6ed53d1af70cbdaaca7af948961f4f4ea14de4

    Download Submit
  • /data/data/com.tencent.mtt/files/.Application/com.tencent.mtt.idx
    Filesize

    48B

    MD5

    152285cf9815931107f0f3a3771e216a

    SHA1

    4f8c1d07da3ce97f7b56671a3400fbaa45e4d607

    SHA256

    42a5dc7a90f703661b082c7df7c8201627dae0af12fcd363a83fee89854b7cde

    SHA512

    15dbb978ce94706100771d7008a1d548add71f978e0f13f941c9264326a3cbb81d2a022871208e59d12320021a73e322a9355c218c726a1277f83732e2b3ae93

    Download Submit
  • /data/data/com.tencent.mtt/files/data/com.tencent.mtt_wup_token.dat
    Filesize

    143B

    MD5

    54a739490aaee18dc202f800d165cb99

    SHA1

    946b3997926f818a5100bb008fa66656394e1901

    SHA256

    2286f7672d8f5401681b913eb40731d2935afa77dc4c4f77b77e68c42f95a557

    SHA512

    3d30aee2aa9287eee8f0613732c281281a7f1e407ad3a19b00f3d1f98a891b49953149de4a5276b4745924955e25d0c28b04625bcec912d209a156aeeb1b4e31

    Download Submit
  • /data/user/0/com.tencent.mtt/app_dynamic_jar_output/com.tencent.mtt.account.jar
    Filesize

    620KB

    MD5

    797dbe3ef98c6edcf668c5aa944e1e1b

    SHA1

    216b2a1e1c75d6c540d11fa14b1d6cb7385e6aa5

    SHA256

    05fe6c6400a0a74b205e39114faeb4272bcc7b04a835391ea5b857f98e4f6808

    SHA512

    35070bbea3280221209cf8dc8428226b0370bd353494ab3df85dc338ae6ae73c3d32b6baf3ec40c1b0548b99b04050383512b6376b71ebb2663e8c08f6cfcd66

    Download Submit
  • /storage/emulated/0/.tbs/ins.dat
    Filesize

    12B

    MD5

    4aa32dfc7c74d9f952e4c3cde2ddd953

    SHA1

    fcdb326f6fd2f8b65612a7b642d5547d952db13f

    SHA256

    6ce7843304bde8edf0420decc7a1206a6dc8e0962d201f223020834d4cdb87b4

    SHA512

    09618bb83dc937eba05173da0a5559a32dbf0d3ae9f1ec41a30de3e57d5f2a34f9dc7d5542039e4b4e7e52e2fc55efbccb15ee971db4a9d95ce95a6393e3a4cf

    Download Submit
  • /storage/emulated/0/QQBrowser/.Application/com.tencent.mtt.channel
    Filesize

    5B

    MD5

    26efb04257dbb66c4666c18fc1e92277

    SHA1

    2ce33d1d9a290f36b546a6795e3d0274fc7f9196

    SHA256

    16efe0e23064218e610f477f9124c495961f5b7bf5c79fccb111e8db36330ccf

    SHA512

    a0efd1f2c3e1a826af7d2a0245f6d5c3d9d34d4e885d3f5985afc35e8c30d7c8688c9a8b72b99f90009310e579809ae6963da78af9b748248b61eebc55994c65

    Download Submit
  • /storage/emulated/0/tbslog/tbslog.txt
    Filesize

    2KB

    MD5

    07cf5bf7fe8b5c8f15a77006512dd1f8

    SHA1

    e57d4edda3a7eb18487f121cd3aa44a8a73ba25a

    SHA256

    d8f803b2712e6dcb98cde7f0b27bfa5ba000655d5c38efbeb043c6c5c8a2d7d7

    SHA512

    174fe9c95e3a16e10bbb65265ca04297e44f60cfa2535680ee68892e18442be3971274c541b0f1f3c3191e730980fb4b1a61b4b06a5f750f02bfb81c68b6faa7

    Download Submit