Overview

overview

7

Static

static

6

a7fdb7fa2b...18.apk

android-9-x86

6

a7fdb7fa2b...18.apk

android-10-x64

7

a7fdb7fa2b...18.apk

android-11-x64

7

Analysis

  • max time kernel
    47s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240611.1-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
  • submitted
    14-06-2024 04:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a7fdb7fa2bd0d367fddf68dd1a4ea851_JaffaCakes118.apk

  • Size

    1.2MB

  • MD5

    a7fdb7fa2bd0d367fddf68dd1a4ea851

  • SHA1

    ad1f5cbb92260f4d1d271ba569fdcb7b3bfa713b

  • SHA256

    27bdf1ac5d04a255228d9a2bd1f13fa2150c16ad61eaebe767dddbae14902697

  • SHA512

    c5ad5d65f07c50dadfdb7be55d9cdad3d6c6076b86515d5bf64abd6a55334c90c1fddbcb592294720b00fe3a9d40771c3aa60adbcabadff6f2243a8257630d76

  • SSDEEP

    24576:zUZZr06qpk7TL7Qx5Uo9Eexk9G4snNPWg8oIMEklPK1w64BeThwP3dBU:AXr06eknL7QxKo9EexkNuWBGTrBqherU

Score
7/10
collectioncredential_accessdiscoveryimpact

Malware Config

Signatures

  • Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    collectioncredential_accessimpact
  • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery
  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.cyou.cma.clauncher.theme.v545afea835114130622a77cd
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Checks CPU information
    • Checks memory information
    PID:4695

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.cyou.cma.clauncher.theme.v545afea835114130622a77cd/files/.imprint
    Filesize

    773B

    MD5

    eff47b865e6e5285db52ccfde307b5a2

    SHA1

    17a545b741e3b1c7df335d5008dfd42f42feb96c

    SHA256

    135214e65d815976206e701f5d82943f76fb1e638c952ca1004c49d892ba7ffe

    SHA512

    79de65869d2cd86c8f9ea51cd138a14b8bc0668620dc23d6668582d12557f539e133399e64f1e9276b8ac28a75c6f4b4650b21cfe079eabf4f997bea5691d236

    Download Submit
  • /data/user/0/com.cyou.cma.clauncher.theme.v545afea835114130622a77cd/files/uuid.md
    Filesize

    32B

    MD5

    1bed19e748e65eee7ebd188f29918259

    SHA1

    e8e7f21b2fe1af1e411d5d1de29f1b1795073392

    SHA256

    73031b2f918bc24f79057f91f488fc7828c00dbf00461be58be836f076be64fb

    SHA512

    70b3f5a77b9dc091aadc6815c1d8080ef7b89c750ff2e32ee7697df5db69718e04b8141e78075d4182b729deb244171d0db552895fa0e790865e6c17be33c33e

    Download Submit