General

  • Target

    b6e3f4e381954a7708f2701c3b923b3a_JaffaCakes118

  • Size

    13.2MB

  • Sample

    240617-fpdtxazbpp

  • MD5

    b6e3f4e381954a7708f2701c3b923b3a

  • SHA1

    3cbc7e59b7a66b8f075c5d1515d6105dd087a421

  • SHA256

    7eabbade0ec52f14f84092fff25365d314fc5d9c50ce7d402c391a7fcfa271e1

  • SHA512

    dcfbf4ca66f787147dd9c130003c96c4c79645b355b5218e6e08b5ec714aeaba2b011c1b528c21cdd059386c99fd72e26aff7837c84a99f91dbba2124e79a644

  • SSDEEP

    393216:7PFqiFIiZPd1Sik750oGCFoMPP9GRK29yy1:7UiF/ZKik7nFbP1Gpwy1

Malware Config

Targets

    • Target

      b6e3f4e381954a7708f2701c3b923b3a_JaffaCakes118

    • Size

      13.2MB

    • MD5

      b6e3f4e381954a7708f2701c3b923b3a

    • SHA1

      3cbc7e59b7a66b8f075c5d1515d6105dd087a421

    • SHA256

      7eabbade0ec52f14f84092fff25365d314fc5d9c50ce7d402c391a7fcfa271e1

    • SHA512

      dcfbf4ca66f787147dd9c130003c96c4c79645b355b5218e6e08b5ec714aeaba2b011c1b528c21cdd059386c99fd72e26aff7837c84a99f91dbba2124e79a644

    • SSDEEP

      393216:7PFqiFIiZPd1Sik750oGCFoMPP9GRK29yy1:7UiF/ZKik7nFbP1Gpwy1

    • Checks if the Android device is rooted.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

MITRE ATT&CK Mobile v15

Tasks