General

  • Target

    ae263a05e015213414ad3cbc8b3170bd_JaffaCakes118

  • Size

    4.6MB

  • Sample

    240615-nazf3aybmb

  • MD5

    ae263a05e015213414ad3cbc8b3170bd

  • SHA1

    76cbec9e825bb27e5126dd160e4e99df0def615e

  • SHA256

    2a368769d76c5c58a0b6163bb8db8f736cf3c32337559b6e7329d74c00322ce3

  • SHA512

    16c9a59a6812085f46e541969efee996f0884cdab05c8b98617f8dd6b0d28408c2b88ae55589ced39e114076dd1aab72e4fb9850592362e932508192529154c0

  • SSDEEP

    98304:eccDKni/LuEEY0lFSaKw2HZ0yPMLA50F2ScsxIZBXsqbkmQBTmnmMR9RO:ebKni/Ln6j8wczkLAqsixIzu7QtR9RO

Malware Config

Targets

    • Target

      ae263a05e015213414ad3cbc8b3170bd_JaffaCakes118

    • Size

      4.6MB

    • MD5

      ae263a05e015213414ad3cbc8b3170bd

    • SHA1

      76cbec9e825bb27e5126dd160e4e99df0def615e

    • SHA256

      2a368769d76c5c58a0b6163bb8db8f736cf3c32337559b6e7329d74c00322ce3

    • SHA512

      16c9a59a6812085f46e541969efee996f0884cdab05c8b98617f8dd6b0d28408c2b88ae55589ced39e114076dd1aab72e4fb9850592362e932508192529154c0

    • SSDEEP

      98304:eccDKni/LuEEY0lFSaKw2HZ0yPMLA50F2ScsxIZBXsqbkmQBTmnmMR9RO:ebKni/Ln6j8wczkLAqsixIzu7QtR9RO

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Reads information about phone network operator.

MITRE ATT&CK Matrix

Tasks