Analysis

  • max time kernel
    179s
  • max time network
    175s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240611.1-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
  • submitted
    14-06-2024 10:02

General

  • Target

    a919a52d914d17db6f1e951718e24232_JaffaCakes118.apk

  • Size

    4.5MB

  • MD5

    a919a52d914d17db6f1e951718e24232

  • SHA1

    038be5c21f7c28bbe0f6d57347923d1ac99481a9

  • SHA256

    a5a4890af6c8de34aaa7177907e0ea11595ffdfe8e873b44b04c849639c45afb

  • SHA512

    efdd9eb77a9a5f519925b72faa250554d0ead0265728ccccc438fe2da3b187be7110028f497bf9c364238e7216c75887531eaa142e92b43472e7c198e30bbc3e

  • SSDEEP

    98304:h6ulWfbap8Zupss4YPHCZFda5crNGXBqiO0bToXfBMj:h6Bup8ZUpVPHWrsANGXBq7AMPBMj

Malware Config

Signatures

  • Requests cell location 2 TTPs 1 IoCs

    Uses Android APIs to to get current cell location.

  • Queries information about active data network 1 TTPs 1 IoCs
  • Reads information about phone network operator. 1 TTPs

Processes

  • com.sohomob.android.aeroplane_chess_battle_ludo_2
    1⤵
    • Requests cell location
    • Queries information about active data network
    PID:4489

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.sohomob.android.aeroplane_chess_battle_ludo_2/databases/downloads
    Filesize

    16KB

    MD5

    25e789992a726d032bd536e07398e23b

    SHA1

    a9dd8afe6763b8ebaf001c7336905164f97fa177

    SHA256

    adc84a900fab366754e4fc80d1479352d4500788906b0349726ea04db43eece7

    SHA512

    5935e670fb6f4b31d3e20963842fcfd833c9d54ba35d737322b9c4bd89b5c1363ba68b3a1972781a1677ad5de4f14a1643ba56f83f8aced1482af52c118cb7e3

  • /data/user/0/com.sohomob.android.aeroplane_chess_battle_ludo_2/databases/downloads-journal
    Filesize

    512B

    MD5

    465c1b3a445316f2c1e3638585e565b3

    SHA1

    7380a643a50bfac2cbac4e20f68fd1ddab3b10fb

    SHA256

    e4d82a6caea9a72e864ca2e00e6db55de606d1991da856a7b5d7345f399ddcad

    SHA512

    66513c8f56d54c278d97a159586d2242e4c81bc038b6c5141ccc4de10783277e84e665dc6c03e91fd7c7bc8987d8e69833d2674d15dd1eb6757d6efe3cb196b1

  • /data/user/0/com.sohomob.android.aeroplane_chess_battle_ludo_2/databases/downloads-journal
    Filesize

    8KB

    MD5

    027029756dd9883b6a477df1c0037ffa

    SHA1

    235ec0d83cb2903c162d39f0daf92a0bf9df7884

    SHA256

    570b4cf8f46bbaf9e258ff2e680a63cd08856743d2fd29d4b50d4eb5667e4d9e

    SHA512

    1ed7a3ed26e8db81ac497be8a5e89f0eda7d5a1d83bb1c9597a478058b2f95b2cdcb92dfef207879894c3f25ee26d88127bfc278eaf14e799ee3c1a1243a6e14

  • /data/user/0/com.sohomob.android.aeroplane_chess_battle_ludo_2/databases/downloads-journal
    Filesize

    8KB

    MD5

    906cba6a6e14cdd236df5fb751ac60a9

    SHA1

    7d32e75b8e6671d5424d811a901c2f567947d51a

    SHA256

    a3706d189b66ccbce5f002c9ac2258f75c62d9da28c5a172d990bc0e8fc33ef9

    SHA512

    1a83b9cd218b01d15ecba0ccebbb149806024327fb2b93b495bea686eb671b423182ef94be54fcbdd172fa9602a82acf0195f060ab16199ee4ea3469c2abec36