General
-
Target
b4eab4ad4dbe3b1c1c78c7b10288a031_JaffaCakes118
-
Size
16.2MB
-
Sample
240616-yml2lsveka
-
MD5
b4eab4ad4dbe3b1c1c78c7b10288a031
-
SHA1
657af869440d1b98ff04ba57f0a361c575481080
-
SHA256
b77f03b05b21d06e8b1d16567b25ffef70afc61574edd9123b53121767eb5008
-
SHA512
b1395ce203021ea802c9813002697d946f8a4700699342193abbb6829bc884c51eb6e15b30ef2c78d61f262402f25d5bd0818cced6305552ee9d64f435f2d76e
-
SSDEEP
393216:25EqNpjxweZgLLkI9tpc9ca0g2q6U6ckF3TIVikw3I1:2bNpjxDwLkI9txI6UWFEVnYu
Malware Config
Targets
-
-
Target
b4eab4ad4dbe3b1c1c78c7b10288a031_JaffaCakes118
-
Size
16.2MB
-
MD5
b4eab4ad4dbe3b1c1c78c7b10288a031
-
SHA1
657af869440d1b98ff04ba57f0a361c575481080
-
SHA256
b77f03b05b21d06e8b1d16567b25ffef70afc61574edd9123b53121767eb5008
-
SHA512
b1395ce203021ea802c9813002697d946f8a4700699342193abbb6829bc884c51eb6e15b30ef2c78d61f262402f25d5bd0818cced6305552ee9d64f435f2d76e
-
SSDEEP
393216:25EqNpjxweZgLLkI9tpc9ca0g2q6U6ckF3TIVikw3I1:2bNpjxDwLkI9txI6UWFEVnYu
Score7/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Acquires the wake lock
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Reads information about phone network operator.
-