Overview

overview

6

Static

static

6

adf9fd4ecd...18.apk

android-9-x86

6

dERlZG.apk

android-9-x86

dERlZG.apk

android-10-x64

dERlZG.apk

android-11-x64

Analysis

  • max time kernel
    4s
  • max time network
    186s
  • platform
    android_x86
  • resource
    android-x86-arm-20240611.1-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
  • submitted
    15/06/2024, 10:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    adf9fd4ecde144199055820cd85898d4_JaffaCakes118.apk

  • Size

    4.1MB

  • MD5

    adf9fd4ecde144199055820cd85898d4

  • SHA1

    091483c08e456461988d70b8c3338f53b3906c97

  • SHA256

    5289b98dff3beca5fe877702f20c0d5d236a65effbec46dfab1488b2809fdb33

  • SHA512

    f23910e4ff893b5fc543cef39ebb5c5c13745d2bba2bb10da7148d981190787a48ced7aebfc692be978f3e49b88faced02ccb4f050e5f417cf961fd7058523db

  • SSDEEP

    98304:lic+LfDMQneIvm076GJL0P05+yKb1fB+BIEK0qmgkcH2R:lYMQee7308LKb1fB+y/0jxcHK

Score
6/10
discovery

Malware Config

Signatures

  • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 2 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery

Processes

  • com.naoadava.wawawaoa
    1⤵
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    PID:4274
    • getprop ro.product.cpu.abi
      2⤵
        PID:4309
      • getprop ro.product.cpu.abi2
        2⤵
          PID:4329

      Network

      MITRE ATT&CK Mobile v15

      Replay Monitor

      Loading Replay Monitor...

      Downloads