c24ad8e67355cc7992a8b1854f38a16712846af7ac3099794609d7f731ffd944

Analysis

max time kernel
25s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240611.1-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
submitted
15-06-2024 04:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

acecd706ac72ddea24f10225af620272_JaffaCakes118.apk
Size

1.9MB
MD5

acecd706ac72ddea24f10225af620272
SHA1

1d547345821aa3072fbc6b827ed49a09fe757f73
SHA256

c24ad8e67355cc7992a8b1854f38a16712846af7ac3099794609d7f731ffd944
SHA512

6e7a3bb26cc090a0bd4c4fb76eb03de93a22f561bccd6975e14968ae4dcccd84977ce3796b526bf60a625cf6e650d720ec22180e7ea90f6be908c08ca27e2490
SSDEEP

49152:YuNPUmV/S6XnP1QQGCx+tmM51Y0QguUTi73ZGH3:jNPUK/TP1QQGCx0Y1o

Score

8^/10

collection credential_access evasion execution impact persistence stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs
stealth trojan evasion

T1628.001

Processes:

com.topfreegames.bikeracefreeworld.hack

pid process

4636 com.topfreegames.bikeracefreeworld.hack
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

T1414

T1641.001

Processes:

com.topfreegames.bikeracefreeworld.hack

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.topfreegames.bikeracefreeworld.hack
Schedules tasks to execute at a specified time 1 TTPs 1 IoCs
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
execution persistence

T1603

Processes:

com.topfreegames.bikeracefreeworld.hack

description ioc process

Framework service call android.app.job.IJobScheduler.schedule com.topfreegames.bikeracefreeworld.hack
Checks CPU information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.topfreegames.bikeracefreeworld.hack

description ioc process

File opened for read /proc/cpuinfo com.topfreegames.bikeracefreeworld.hack
Checks memory information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.topfreegames.bikeracefreeworld.hack

description ioc process

File opened for read /proc/meminfo com.topfreegames.bikeracefreeworld.hack

pid	process
4636	com.topfreegames.bikeracefreeworld.hack

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.topfreegames.bikeracefreeworld.hack

description	ioc	process
Framework service call	android.app.job.IJobScheduler.schedule	com.topfreegames.bikeracefreeworld.hack

description	ioc	process
File opened for read	/proc/cpuinfo	com.topfreegames.bikeracefreeworld.hack

description	ioc	process
File opened for read	/proc/meminfo	com.topfreegames.bikeracefreeworld.hack

com.topfreegames.bikeracefreeworld.hack
1⤵
- Removes its main activity from the application launcher
- Obtains sensitive information copied to the device clipboard
- Schedules tasks to execute at a specified time
- Checks CPU information
- Checks memory information
PID:4636

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.topfreegames.bikeracefreeworld.hack/databases/evernote_jobs.db
Filesize
16KB

MD5
58c0b6e45328752b20ac6e719ac034f8

SHA1
372b2638afd00bbbc4034657b3df3d2e428fb367

SHA256
9d74f93afa5a179b1ba2f19f154b2880aa8b99c88209802099045a0874d2426a

SHA512
2d347d5824b9ab701e341c89e8327a95fd6bab8e92ee15ce9550da368d773e22bff304072a4854df5ab763750a7401f7aa61a49e3292d62c27fa9f20536eb3ab

Download Submit
/data/user/0/com.topfreegames.bikeracefreeworld.hack/databases/evernote_jobs.db
Filesize
16KB

MD5
c264fe4299a2681794628723eccaa026

SHA1
e132e3a97d81a57f0ddde2a6a76a9ad1e200a160

SHA256
e20dcfa639abe4318f124050683a2550a930cf33364fce7412c0c6cd62b96694

SHA512
7608520a026bd9916b6fc89eca8601c510f9a1c405e992af52d56ce9a42b05f1cdfc91c479e42005aecd7fe2fe3c32035e659752d764c3e67049e9d0f8a9d221

Download Submit
/data/user/0/com.topfreegames.bikeracefreeworld.hack/databases/evernote_jobs.db-journal
Filesize
512B

MD5
9daadb5ebc030128f8b29103135ec022

SHA1
2cf71b6d86dc8dafd48caa74a438b7c4a567d72b

SHA256
3b8d53d7eba4f982af6ab13e68f15153df5629229fb0a7aab58e693591a872cd

SHA512
774dc60e3a09f6806790f17cfa284a3549e502639aefc09158822bedffb2ee13cea59c5e23c66c84b66aa724e8b043636fe9257bd823f7889e5e3d19fbd0f70a

Download Submit
/data/user/0/com.topfreegames.bikeracefreeworld.hack/databases/evernote_jobs.db-journal
Filesize
8KB

MD5
71b9c74e4ece4e617dff5767158e8ed1

SHA1
d32fd0b376ee91b082d0295332e531b0e834bae9

SHA256
58d4b763ebf32d17af090a284fb7c5080ac7cf5fb55cf4d91aa11b0039f6714b

SHA512
d62253a93daa29e5433d21e9d8b7f4850db4b79c98d338f89a2f6bcdb7c1cfb39e83407a99c1fab312425614df7dfb59c22f76c7b253cb14c511ad28ba131f4e

Download Submit
/data/user/0/com.topfreegames.bikeracefreeworld.hack/databases/evernote_jobs.db-journal
Filesize
8KB

MD5
217098dc82c5eaf0171557b094d04c1f

SHA1
34668f65668a30a08e24c6bd59b7cf33e3a28cca

SHA256
9d9258741ce39b1c7c27bbe92f41f1abfe61f2619d05f7067d3799f86e673d12

SHA512
aa2bcdc6ebe7a8d6499c58214d8e0caaee5e651b15557d51ea6c563c7d3063dcd81ee48fb4f3489cf69758145201f1853c55fb912f776cb790604ca916dc8cec

Download Submit
/data/user/0/com.topfreegames.bikeracefreeworld.hack/databases/evernote_jobs.db-journal
Filesize
8KB

MD5
318ac1992457a26be81ad55881b46678

SHA1
033ae45630a3cd4fe5cc63b14deb8a2d9cd232cb

SHA256
e63c510fb63cb7d893757fb01b94bb4cbbd7c57d16cfc883dbac8a6faca7abb1

SHA512
7316766f7504040cecdc609e8a0b24d730a208f59843444b5093db7b451abd245e5552e41a7b723c8f87c632b79fd937a10ceb49d42d23ab7b5ed6b9d3c14c97

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads