General

  • Target

    adc501287fcc25e632a4d9bd162e794c_JaffaCakes118

  • Size

    30.3MB

  • Sample

    240615-lgqfmaygnn

  • MD5

    adc501287fcc25e632a4d9bd162e794c

  • SHA1

    3117534c8ad29b9432327f82e0a7dd55e67a9aed

  • SHA256

    5a2b335a891596daab9cf77939ee65f2d7c8897a74e69605cae6ae6d5b585c58

  • SHA512

    dcf356d125807d80ddd21f0c31a104fe4f898e2a203f1cb9081af0c0c42f0960674122879907b8067a5cb5fecdd449c0126617b1f653a041113f834e5efe247b

  • SSDEEP

    786432:gdF+HDIZyrPSB5lNWnYy6Ozy7xNuQ5DS1ZdQ6tvfueF:CcHDy53UEVNuQ5wZkeF

Malware Config

Targets

    • Target

      adc501287fcc25e632a4d9bd162e794c_JaffaCakes118

    • Size

      30.3MB

    • MD5

      adc501287fcc25e632a4d9bd162e794c

    • SHA1

      3117534c8ad29b9432327f82e0a7dd55e67a9aed

    • SHA256

      5a2b335a891596daab9cf77939ee65f2d7c8897a74e69605cae6ae6d5b585c58

    • SHA512

      dcf356d125807d80ddd21f0c31a104fe4f898e2a203f1cb9081af0c0c42f0960674122879907b8067a5cb5fecdd449c0126617b1f653a041113f834e5efe247b

    • SSDEEP

      786432:gdF+HDIZyrPSB5lNWnYy6Ozy7xNuQ5DS1ZdQ6tvfueF:CcHDy53UEVNuQ5wZkeF

    • Checks if the Android device is rooted.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Queries the phone number (MSISDN for GSM devices)

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Reads information about phone network operator.

    • Checks the presence of a debugger

MITRE ATT&CK Mobile v15

Tasks