Analysis
-
max time kernel
19s -
max time network
183s -
platform
android_x86 -
resource
android-x86-arm-20240611.1-en -
resource tags
-
submitted
14-06-2024 10:20
General
-
Target
a92b93f69e0fecd84aca61229abb32b4_JaffaCakes118.apk
-
Size
765KB
-
MD5
a92b93f69e0fecd84aca61229abb32b4
-
SHA1
05e982d1b9cc1a852534bf65db4ec45067316e25
-
SHA256
bebea5c3a250c005becf432455cabed3ed54e4c119bd08c958072a2ea4d0ba31
-
SHA512
980bb07699968e7e3bbb08a3078c42533bea64379ac2c4c51fddd280d7716e4bec249b300bc080718958748e4c2d18af2b9927d538805f68a70081a45dade432
-
SSDEEP
12288:3BwivDxMJdYb3xFA+eObx/5onRVqZhDW/8ab5mXXc1:3BtDxMJ4xFA+ecx/5A7eg8emXXc1
Score
8/10
Malware Config
Signatures
-
Removes its main activity from the application launcher 1 TTPs 3 IoCs
-
Acquires the wake lock 1 IoCs
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
com.eset.ems2.gp1⤵
- Removes its main activity from the application launcher
- Acquires the wake lock
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks memory information
-
su2⤵
-
su2⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.eset.ems2.gp/files/IM.txtFilesize
9B
MD570a9021a1b96084dfefd466350145c99
SHA137a62112d97bb2fc33161b24a27e86175055b1b7
SHA25659d1265a66fc96d76cf99c03240b83859b853333ea34b222456ae9b15fd0dbae
SHA512093568522d859ac71677b7fd164935c687e09163fe141f5ef1d1643672caafc6884331e0967d2ca7ed8b5ff21b2ee47358a39249d764ae6dbed5ebf4410fb2fc