General
-
Target
adf8622156f7ee491ccf8f91a28265fd_JaffaCakes118
-
Size
5.0MB
-
Sample
240615-mdy42azhrk
-
MD5
adf8622156f7ee491ccf8f91a28265fd
-
SHA1
f7d1fa0885c142e05dfa3d1bcfdfbd4a8ee7028f
-
SHA256
ee5c986aa4ac104173b559fbf8e704ae803ecfb185d26d97cd0524e1d431f9f4
-
SHA512
e93a3445b54ff19112f5d8d2458b622199c0c52f66d3c02bdb519e6a06de9dea0482f2c9d48eab8d00ee42a50b8c9b45a420c2301e4376798615c6a1c7fc1684
-
SSDEEP
98304:Tn+5jPkKahuQIcYuM1FGkP11xlpliHLbHFQIKiO88fPPiGBS:q5j85QXuMhd7QFLiPPiGBS
Static task
static1
Behavioral task
behavioral1
Sample
adf8622156f7ee491ccf8f91a28265fd_JaffaCakes118.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral2
Sample
adf8622156f7ee491ccf8f91a28265fd_JaffaCakes118.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral3
Sample
adf8622156f7ee491ccf8f91a28265fd_JaffaCakes118.apk
Resource
android-x64-arm64-20240611.1-en
Behavioral task
behavioral4
Sample
__pasys_remote_banner.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral5
Sample
__pasys_remote_banner.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral6
Sample
__pasys_remote_banner.apk
Resource
android-x64-arm64-20240611.1-en
Malware Config
Targets
-
-
Target
adf8622156f7ee491ccf8f91a28265fd_JaffaCakes118
-
Size
5.0MB
-
MD5
adf8622156f7ee491ccf8f91a28265fd
-
SHA1
f7d1fa0885c142e05dfa3d1bcfdfbd4a8ee7028f
-
SHA256
ee5c986aa4ac104173b559fbf8e704ae803ecfb185d26d97cd0524e1d431f9f4
-
SHA512
e93a3445b54ff19112f5d8d2458b622199c0c52f66d3c02bdb519e6a06de9dea0482f2c9d48eab8d00ee42a50b8c9b45a420c2301e4376798615c6a1c7fc1684
-
SSDEEP
98304:Tn+5jPkKahuQIcYuM1FGkP11xlpliHLbHFQIKiO88fPPiGBS:q5j85QXuMhd7QFLiPPiGBS
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
-
-
Target
__pasys_remote_banner.jar
-
Size
108KB
-
MD5
63ba17ca047dc71aa659c7ed8bb60de5
-
SHA1
675bd0556bce8d43cd29a6d9b3d996d41f3e0b2b
-
SHA256
2750f3af62f5b9d1d21f6a8215f529e472e7098ac16295b976a29115e8520a52
-
SHA512
5b70f6bc391276d2034a97e371adad0a635caafdfc33d32791db1432d4cca3f0364e1af6b10b574df5c8f3345bd5539a4d70455aa521f10b239e68216f5ddc39
-
SSDEEP
1536:JsIZFap4+HLANZ5+01fFI5iWBrANsLIHmd1C4i6L/AvuWD7i3z7Y6mrfrJvIC8O:JPZEpHrA3x1i53hxLOQ4I4mD3zk6mlI2
Score1/10 -