Overview

overview

7

Static

static

6

a7fdb7fa2b...18.apk

android-9-x86

6

a7fdb7fa2b...18.apk

android-10-x64

7

a7fdb7fa2b...18.apk

android-11-x64

7

Analysis

  • max time kernel
    19s
  • max time network
    150s
  • platform
    android_x86
  • resource
    android-x86-arm-20240611.1-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
  • submitted
    14-06-2024 04:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a7fdb7fa2bd0d367fddf68dd1a4ea851_JaffaCakes118.apk

  • Size

    1.2MB

  • MD5

    a7fdb7fa2bd0d367fddf68dd1a4ea851

  • SHA1

    ad1f5cbb92260f4d1d271ba569fdcb7b3bfa713b

  • SHA256

    27bdf1ac5d04a255228d9a2bd1f13fa2150c16ad61eaebe767dddbae14902697

  • SHA512

    c5ad5d65f07c50dadfdb7be55d9cdad3d6c6076b86515d5bf64abd6a55334c90c1fddbcb592294720b00fe3a9d40771c3aa60adbcabadff6f2243a8257630d76

  • SSDEEP

    24576:zUZZr06qpk7TL7Qx5Uo9Eexk9G4snNPWg8oIMEklPK1w64BeThwP3dBU:AXr06eknL7QxKo9EexkNuWBGTrBqherU

Score
6/10
discoverypersistence

Malware Config

Signatures

  • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.cyou.cma.clauncher.theme.v545afea835114130622a77cd
    1⤵
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks CPU information
    • Checks memory information
    PID:4244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.cyou.cma.clauncher.theme.v545afea835114130622a77cd/files/.imprint
    Filesize

    841B

    MD5

    91effa895f6bfe818c95ff1a8be0ce7d

    SHA1

    2b78fce405baa1c67f1c722403eb9bd8665c4274

    SHA256

    f47118d2a29a5972b8790420f6a1844907f4adf0eb91f76fe2d1d6c9fc1e6cd0

    SHA512

    85146defa7c8d30b9cd89a4362c3a0118efc78895afa46a3cc2f8b136bbd09bbb8a9341ee9de59b575dd8d70511b390ebadf7dc0aeee71c049c5d93e8645de98

    Download Submit
  • /data/data/com.cyou.cma.clauncher.theme.v545afea835114130622a77cd/files/uuid.md
    Filesize

    32B

    MD5

    5d3f058ad2357a1eb0aff83197be2d5c

    SHA1

    e7f1262ad454357f13afdb344768c9fe1060f791

    SHA256

    3136c417424734fd690f3536171628726536c20702ba27e590284f6b8d5db5a3

    SHA512

    217abbe7afcda9327a7b8cb3edfba6617d81fb02e9ee5698b6fe04993f7938bc49e8232cd2b8728d56dfd6818020c749549482828dc9b5b375460dd21f149a2b

    Download Submit