Analysis

  • max time kernel
    179s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240611.1-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
  • submitted
    14-06-2024 14:30

General

  • Target

    aa2f097cc4c6c50db3b1f4920a0d7058_JaffaCakes118.apk

  • Size

    8.7MB

  • MD5

    aa2f097cc4c6c50db3b1f4920a0d7058

  • SHA1

    f543fae8e48478a35fcea987898480609085f6f3

  • SHA256

    812db8231164be8cda509398440e5f56764645e54fa258530abbad520af5d424

  • SHA512

    dc33aaab9457e9e5d69d999debcdaff262994a6274406689899ab129d4ff149954f938e6d423eabaf53edbf489d43745ca906cf1cbe77e693fd459ffedc328a0

  • SSDEEP

    196608:FU4iLXLoa6Hp+g9x45devORjFziq0exspcdP62sovhQyW:1iLXsakx9Wziq3PN6QO7

Malware Config

Signatures

Processes

  • com.koogame.lib.xiyou
    1⤵
    • Queries information about running processes on the device
    • Queries information about active data network
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks CPU information
    • Checks memory information
    PID:4238

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.koogame.lib.xiyou/files/game1.sav

    Filesize

    802B

    MD5

    f4f96968f5e0d17d25f6c3e21358ee82

    SHA1

    26136b246ce9c9ba8178c158f96defdd46d1462d

    SHA256

    108890d7f6d92585fe9e1c53198a284769d6182811128957a0961f2fa1f85f45

    SHA512

    5babd2e35b99c27bd5d196907dd6e834c5082663b7f1cc64774be0a558984a8b2ffbdd3b7ea1f2fbdd7ae07ef7281df2ccae0e038b0894c0a9a66f032b011dc5

  • /data/data/com.koogame.lib.xiyou/files/mobclick_agent_cached_com.koogame.lib.xiyou

    Filesize

    100B

    MD5

    e3b380a04eb549f8d1943ca5a0204c00

    SHA1

    05011dff537fc293d73467b8937679f5312aae1c

    SHA256

    df73406a8d72f9a2d992f6476394fe12d07cc61e85224e3ed886d037c6e94e1d

    SHA512

    fdc633b0ad0380eadad31974d56b5f43824de4f8637d486551428f9cb88970dee5476982ffc3be440578297ce5a0a3be2bb62a3aef761371c5677fc533e3bdb5

  • /data/data/com.koogame.lib.xiyou/files/tcagent.db

    Filesize

    32KB

    MD5

    2914b099371f6bad7952b1c6c01872c1

    SHA1

    99c0049987ae49edc65c06a909314780b9fccae4

    SHA256

    a1685c7009a5778d293a84ab4da6d0d5a8ea161b52d4e4e4160988b3b0f62315

    SHA512

    bec3b996b82fceeecd43333e79d5eb6f3b1afd0e5e71dc17663b5b2bec22ed3fcbe8b080adcb0a51a82eb04b2d8bda99387404a9f04b7cfd941fe10222561a20

  • /data/data/com.koogame.lib.xiyou/files/tcagent.db-journal

    Filesize

    512B

    MD5

    22de8d5c7a60a2f2e879cf5f4da31079

    SHA1

    5ddf34d22d798bc85fcfb5e3274dc727fca7e245

    SHA256

    8423c6230eb5d49144d4c1f0cb27b59fdde03948099ec336930881be18170aa5

    SHA512

    48f3ed0104c5f7caa1b08c981118ec6eb18cac92b7ebb17c76c2f2a3e344eda34d905daffb0efc553a8e29fb4b57494eec39f07928f783b771b636a01e8aae2d

  • /data/data/com.koogame.lib.xiyou/files/tcagent.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.koogame.lib.xiyou/files/tcagent.db-wal

    Filesize

    88KB

    MD5

    c1b8c988203545a070fa9ea79fb5adb6

    SHA1

    83bc4bc6bcd3d88967dab5b4a7075fc868c0d7b4

    SHA256

    9b3c556479c3fe763c5f0747e1652fe2952e1995bc1f50e0eb6902c504279157

    SHA512

    833127ba18b9de1c5561e8621bb6abc6d151e408397241664f985e3e9766d6a5cf63d9c6d951d1763c9f0d96a8235b5b608c9002ebcfc23a92fa1bc96188ccbb