8da3ae1f5f79a3e7d90243be2a33fb3b508aec3570ea7fbab0f68768328df56e | Triage

Sharing

General

Target

b3ca8b3089c9552214f38a04aa7de815_JaffaCakes118
Size

19.5MB
Sample

240616-qxwpssyhqq
MD5

b3ca8b3089c9552214f38a04aa7de815
SHA1

41504e3f6619cdcd37a2d327c6325d7c9c2ddaf6
SHA256

8da3ae1f5f79a3e7d90243be2a33fb3b508aec3570ea7fbab0f68768328df56e
SHA512

7f24c93b5a68feaebae70defb06d78ea7c6e4f53a3d3cc2303491c7cf842da7a89cf3fb5756b9ddbafa1728bb346b8e32a751fe192e22d7eb65cae8c6051166c
SSDEEP

393216:1yU1FE1dzcNrjA5kA0F/bus/ybz6DxukIaDNYenfwz3U4O3:8pbzcAkAAzuPNnoNJnIz3U4O3

Score

6^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  b3ca8b3089c9552214f38a04aa7de815_JaffaCakes118
- Size
  
  19.5MB
- MD5
  
  b3ca8b3089c9552214f38a04aa7de815
- SHA1
  
  41504e3f6619cdcd37a2d327c6325d7c9c2ddaf6
- SHA256
  
  8da3ae1f5f79a3e7d90243be2a33fb3b508aec3570ea7fbab0f68768328df56e
- SHA512
  
  7f24c93b5a68feaebae70defb06d78ea7c6e4f53a3d3cc2303491c7cf842da7a89cf3fb5756b9ddbafa1728bb346b8e32a751fe192e22d7eb65cae8c6051166c
- SSDEEP
  
  393216:1yU1FE1dzcNrjA5kA0F/bus/ybz6DxukIaDNYenfwz3U4O3:8pbzcAkAAzuPNnoNJnIz3U4O3
Score

6^/10

discovery evasion persistence
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Hide Artifacts

User Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence