Analysis
-
max time kernel
99s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240611.1-en -
resource tags
-
submitted
15-06-2024 19:09
General
-
Target
afecf973b5cc3d22cb18dae57cc3917d_JaffaCakes118.apk
-
Size
1.8MB
-
MD5
afecf973b5cc3d22cb18dae57cc3917d
-
SHA1
a072c4a3bf22e4b957a92e20bdd1ef020c127d9c
-
SHA256
9579d69ede30626ee7615739d19bf1aee654ffcdaad5d4b4ba8cec42eef2a3e0
-
SHA512
7cce4471b3b3e79b90006494d94ea335212df69a5c5fa58ba1d9428e592eec59ac4e93358f8b9503919e31ff7fed0a67ae04cc4fc126353e8eabc9e0248a1ca3
-
SSDEEP
49152:E50ejxvtdewe4/mEkS512WtFB1iP6EKQCigZx73ZOV:E5lXeDe3VWuEzFgZ0
Malware Config
Signatures
-
Removes its main activity from the application launcher 1 TTPs 1 IoCs
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Schedules tasks to execute at a specified time 1 TTPs 1 IoCs
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
com.puzzlegame.puzzledom.hack1⤵
- Removes its main activity from the application launcher
- Obtains sensitive information copied to the device clipboard
- Schedules tasks to execute at a specified time
- Checks CPU information
- Checks memory information
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/com.puzzlegame.puzzledom.hack/databases/evernote_jobs.dbFilesize
16KB
MD558c0b6e45328752b20ac6e719ac034f8
SHA1372b2638afd00bbbc4034657b3df3d2e428fb367
SHA2569d74f93afa5a179b1ba2f19f154b2880aa8b99c88209802099045a0874d2426a
SHA5122d347d5824b9ab701e341c89e8327a95fd6bab8e92ee15ce9550da368d773e22bff304072a4854df5ab763750a7401f7aa61a49e3292d62c27fa9f20536eb3ab
-
/data/user/0/com.puzzlegame.puzzledom.hack/databases/evernote_jobs.dbFilesize
16KB
MD50c332993e2254573a13735c1faf1972a
SHA1b3b1544ead5a363c16ac7bfdb6c1a3f87e61fe1d
SHA256909f0efe9e945909b6fbcbb7003321c60489076d1389f671e3e4d29a22aed2f1
SHA5127b0dd44d3a1bc425a148acea83de48081d7ad6e501fd0cd45a074b228d1cb1683351307a56e81a0fa33fa8f3230b4e991c3bc5550ea49fbe073d6fe9c4bb6d52
-
/data/user/0/com.puzzlegame.puzzledom.hack/databases/evernote_jobs.db-journalFilesize
512B
MD53d62821dfd1d87e61a730e42b70fc6fc
SHA1a926cbdb30058169c084915b5f534dd1e8233cfe
SHA256156cdc4e663d3854154e2670992bfad2a75781988dd0707a82d64af39415e654
SHA5123c74289a18a93e1a7b03adf43f70637aaaea61e90771666054327c0ff9c8a3f1c961a5cb80569a5ba45c34178acddf3728a9fc76978bbef1a2abe712360e6eda
-
/data/user/0/com.puzzlegame.puzzledom.hack/databases/evernote_jobs.db-journalFilesize
8KB
MD54ae8a08da72d3a65908684a3ca14a188
SHA14beba1107281a4bfe10808ecadf39fbc17ebfa04
SHA2562041cdacf2379ce257fd193496dc7457b9f4dceabb1240ff78ca1b491ecc683e
SHA51217f16f6a52a34a61574f43f5e45dc49aeb3c5b3c3f3f76bb2d4c07c5e4413d1b1f40dc31226813ecdf6550c30dfdf89adb329acbfabc99b1c985da0535ae897d
-
/data/user/0/com.puzzlegame.puzzledom.hack/databases/evernote_jobs.db-journalFilesize
8KB
MD5086709e23fbc1c4f7e02766a3eb3090d
SHA160f13e34d25cf53ed77e7a3cc51facc2f5910da5
SHA2561aa8f38f423bcd482fe370d4bde745bf8180317c3b567bcc3d6967030860e2a0
SHA51240a5d755b862bd46cacd2d30bc14ba5f3abc4192070508151058870ac44f78a9499ce04b0103ca634e140b4eb3d9c94b322a745c06a3a4cf636d2c10667c8279
-
/data/user/0/com.puzzlegame.puzzledom.hack/databases/evernote_jobs.db-journalFilesize
8KB
MD5e8a577021eb17dbcfc86412e375372f2
SHA181a9b25575f37da50cacd6075a268d9e67d01488
SHA25685434efae6c15f3f9c13048be216ea947f2dd7e8879fe97e77d9104acc80aca1
SHA5124974c9f4b67dd63373ceaebc97e89e425db380d0d9c20f77c3c995e06a1dad463f463d0918b8c926628eb54f5fa2ba81cedd75e51ea9696a7e3db8321a66c9a9