c0cc7101425cc0975bf7a3245104868062a5663c0b812f886cb539a2a6aee0a1 | Triage

Sharing

General

Target

aa4a810603f804b9b7ec927833dabd80_JaffaCakes118
Size

25.7MB
Sample

240614-sbekhavgpg
MD5

aa4a810603f804b9b7ec927833dabd80
SHA1

4b1c97e9e11559e3f76008b741db96b92d15f61f
SHA256

c0cc7101425cc0975bf7a3245104868062a5663c0b812f886cb539a2a6aee0a1
SHA512

c154bbd9f6d16f5069776057e37181cc5858853143b88e09b797a20465ec28444fefb5954b1a1e83da6b0b2e2d67cd456f78541b7ceaa3cdb735f00aca26c913
SSDEEP

786432:vTTYkZfEkwUSOJgGSBz/UDo/tIMb7fZAvz:RZfEJiJgGq/USRHf6vz

Score

7^/10

android banker discovery evasion persistence

Malware Config

Targets

- Target
  
  aa4a810603f804b9b7ec927833dabd80_JaffaCakes118
- Size
  
  25.7MB
- MD5
  
  aa4a810603f804b9b7ec927833dabd80
- SHA1
  
  4b1c97e9e11559e3f76008b741db96b92d15f61f
- SHA256
  
  c0cc7101425cc0975bf7a3245104868062a5663c0b812f886cb539a2a6aee0a1
- SHA512
  
  c154bbd9f6d16f5069776057e37181cc5858853143b88e09b797a20465ec28444fefb5954b1a1e83da6b0b2e2d67cd456f78541b7ceaa3cdb735f00aca26c913
- SSDEEP
  
  786432:vTTYkZfEkwUSOJgGSBz/UDo/tIMb7fZAvz:RZfEJiJgGq/USRHf6vz
Score

7^/10

banker discovery evasion persistence
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Queries information about active data network
  discovery
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Hide Artifacts

User Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscoveryevasionpersistence