General
-
Target
ab37604d358e14b04b168958ffee394f_JaffaCakes118
-
Size
28.4MB
-
Sample
240614-yq5ywstejh
-
MD5
ab37604d358e14b04b168958ffee394f
-
SHA1
3d61d8ba1f732f4dbfb3bda0179c2563c598bb53
-
SHA256
5715d92386ddf114141721977e1f88bcddfc05d255b3b9de58748a35f54bcd4f
-
SHA512
ebb55787b1ddcf9fbc73448c772ac43c1712c38626269df6e83eb51bc3a8d410d06ee8623b44f83b04698a595e899633b6c66a95784d5e56a1dc7d331f446027
-
SSDEEP
786432:0lgloSePx7RV70NBwroJ5ELPhBzucnQFzLlCQS:0OpePxVV70LqoJ5MhtbQllCh
Malware Config
Targets
-
-
Target
ab37604d358e14b04b168958ffee394f_JaffaCakes118
-
Size
28.4MB
-
MD5
ab37604d358e14b04b168958ffee394f
-
SHA1
3d61d8ba1f732f4dbfb3bda0179c2563c598bb53
-
SHA256
5715d92386ddf114141721977e1f88bcddfc05d255b3b9de58748a35f54bcd4f
-
SHA512
ebb55787b1ddcf9fbc73448c772ac43c1712c38626269df6e83eb51bc3a8d410d06ee8623b44f83b04698a595e899633b6c66a95784d5e56a1dc7d331f446027
-
SSDEEP
786432:0lgloSePx7RV70NBwroJ5ELPhBzucnQFzLlCQS:0OpePxVV70LqoJ5MhtbQllCh
Score7/10-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
Listens for changes in the sensor environment (might be used to detect emulation)
-
MITRE ATT&CK Mobile v15
Defense Evasion
Hide Artifacts
1User Evasion
1Virtualization/Sandbox Evasion
1System Checks
1