Overview

overview

7

Static

static

6

b26a38d361...18.apk

android-9-x86

7

plugin-deploy.apk

android-9-x86

plugin-deploy.apk

android-10-x64

plugin-deploy.apk

android-11-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b26a38d3615b95e2c309922f5666225e_JaffaCakes118

  • Size

    19.2MB

  • Sample

    240616-jlmjesvfnf

  • MD5

    b26a38d3615b95e2c309922f5666225e

  • SHA1

    bd12e14b5a076c3337f96818cf2b6ef8c73f2933

  • SHA256

    f9ac46b839bbdb9fc5e5ee8094653a6e3bf8cb3b485daa3df02ddf4287c1ac78

  • SHA512

    9bf4e024c43d1f5ccf3efbc56aff1e6aa6ed1f51a3aad221329c8355c1e5f88a395b9bee01cc25f1140fb00bb2bc295bfffa6e51eb0f4a8efd955ee8ccaf2c6e

  • SSDEEP

    393216:8aADRNNu5dPYyW/1jGk7ZN25dr1cYYN67CLEKjeAOpRzkQfENrl7:vAL6hW/1aKN258YX7C4KspRze5l7

Score
7/10
androidbankerdiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      b26a38d3615b95e2c309922f5666225e_JaffaCakes118

    • Size

      19.2MB

    • MD5

      b26a38d3615b95e2c309922f5666225e

    • SHA1

      bd12e14b5a076c3337f96818cf2b6ef8c73f2933

    • SHA256

      f9ac46b839bbdb9fc5e5ee8094653a6e3bf8cb3b485daa3df02ddf4287c1ac78

    • SHA512

      9bf4e024c43d1f5ccf3efbc56aff1e6aa6ed1f51a3aad221329c8355c1e5f88a395b9bee01cc25f1140fb00bb2bc295bfffa6e51eb0f4a8efd955ee8ccaf2c6e

    • SSDEEP

      393216:8aADRNNu5dPYyW/1jGk7ZN25dr1cYYN67CLEKjeAOpRzkQfENrl7:vAL6hW/1aKN258YX7C4KspRze5l7

    Score
    7/10
    bankerdiscoveryevasionimpactpersistence

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

      evasion

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      bankerdiscovery

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

      discovery

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery

    • Reads information about phone network operator.

      discovery
    behavioral1

    • Target

      plugin-deploy.jar

    • Size

      206KB

    • MD5

      02fe22caeb17a9d7c7f5c3914e3cda29

    • SHA1

      7e3293216263ab967ca6e9a3c55ba589444e3de7

    • SHA256

      0fba8eedb44faf95448ed7e25bcba48b49aa981e1e1e154fcbd90e48447813a4

    • SHA512

      020324dd3b38d6d75fbb54f18caf0bfdff38e27b0c18aa83989b53e9da96a6d6c780f281b21da8f1b41e3de1206306954dc9d1e42aa2dd12f500b66e04f4c647

    • SSDEEP

      6144:QVMQdIey/0Jl8L9umLtnWy6C0mNiEfWBm63:QVMbL/q2nL4g0mNXf7o

    Score
    1/10
    behavioral2behavioral3behavioral4

MITRE ATT&CK Mobile v15

Tasks