caaf51c1bf91528ca46ebca052cf8cc8c0547437d02c76345ae2a559bc3f889e | Triage

Submit
Reports

Overview

overview

7

Static

static

6

b4ce447bfb...18.apk

android-9-x86

7

Sharing

Copy URL Twitter E-mail

General

Target

b4ce447bfbf4a25bc3c96dd0070cad97_JaffaCakes118
Size

3.9MB
Sample

240616-x5p1jsxgql
MD5

b4ce447bfbf4a25bc3c96dd0070cad97
SHA1

d913253957463751d0d896ed2246641b040a0b2b
SHA256

caaf51c1bf91528ca46ebca052cf8cc8c0547437d02c76345ae2a559bc3f889e
SHA512

761ee7f1f41cfadd73e60ed4e2edcb5d55cee3f4d9b882a9630e2fc52531870ab1074368710670d1ec8cd4f0398b3387bb2be337246cd88d4360ed1e475a9937
SSDEEP

98304:mLXr18PPUaxZgLvTNwavu1/y1NWyLmSnUoQQqTc15Oz4E:mLXr18PcaxZwayBLRuTc1g0E

Score

7^/10

android banker discovery evasion impact

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b4ce447bfbf4a25bc3c96dd0070cad97_JaffaCakes118.apk

Resource

android-x86-arm-20240611.1-en

banker discovery evasion impact

android-9-x86

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  b4ce447bfbf4a25bc3c96dd0070cad97_JaffaCakes118
- Size
  
  3.9MB
- MD5
  
  b4ce447bfbf4a25bc3c96dd0070cad97
- SHA1
  
  d913253957463751d0d896ed2246641b040a0b2b
- SHA256
  
  caaf51c1bf91528ca46ebca052cf8cc8c0547437d02c76345ae2a559bc3f889e
- SHA512
  
  761ee7f1f41cfadd73e60ed4e2edcb5d55cee3f4d9b882a9630e2fc52531870ab1074368710670d1ec8cd4f0398b3387bb2be337246cd88d4360ed1e475a9937
- SSDEEP
  
  98304:mLXr18PPUaxZgLvTNwavu1/y1NWyLmSnUoQQqTc15Oz4E:mLXr18PcaxZwayBLRuTc1g0E
Score

7^/10

banker discovery evasion impact
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about the current nearby Wi-Fi networks
  Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
  discovery
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Process Discovery

Software Discovery

Security Software Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

bankerdiscoveryevasionimpact

© 2018-2025

Terms | Privacy