Overview
overview
8Static
static
6bb1ab6ce6f...18.apk
android-9-x86
6bb1ab6ce6f...18.apk
android-10-x64
6bb1ab6ce6f...18.apk
android-11-x64
6PandaHome2.apk
android-9-x86
8PandaHome2.apk
android-13-x64
com.nd.and...me.apk
android-9-x86
1com.nd.and...me.apk
android-10-x64
1com.nd.and...me.apk
android-11-x64
1com.nd.hil...ac.apk
android-9-x86
6com.nd.hil...ac.apk
android-10-x64
7com.nd.hil...ac.apk
android-11-x64
7com.nd.hil...ca.apk
android-9-x86
6com.nd.hil...ca.apk
android-10-x64
7com.nd.hil...ca.apk
android-11-x64
7nd.apk
android-9-x86
nd.apk
android-10-x64
nd.apk
android-11-x64
Analysis
-
max time kernel
138s -
max time network
194s -
platform
android_x64 -
resource
android-x64-arm64-20240611.1-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system -
submitted
18-06-2024 06:29
Static task
static1
Behavioral task
behavioral1
Sample
bb1ab6ce6f0e4e56baafe4f311b89511_JaffaCakes118.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral2
Sample
bb1ab6ce6f0e4e56baafe4f311b89511_JaffaCakes118.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral3
Sample
bb1ab6ce6f0e4e56baafe4f311b89511_JaffaCakes118.apk
Resource
android-x64-arm64-20240611.1-en
Behavioral task
behavioral4
Sample
PandaHome2.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral5
Sample
PandaHome2.apk
Resource
android-33-x64-arm64-20240611.1-en
Behavioral task
behavioral6
Sample
com.nd.android.widget.pandahome.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral7
Sample
com.nd.android.widget.pandahome.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral8
Sample
com.nd.android.widget.pandahome.apk
Resource
android-x64-arm64-20240611.1-en
Behavioral task
behavioral9
Sample
com.nd.hilauncherdev.plugin.browser_V_4_M_f098eb78edf38f1234dbc177c54037ac.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral10
Sample
com.nd.hilauncherdev.plugin.browser_V_4_M_f098eb78edf38f1234dbc177c54037ac.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral11
Sample
com.nd.hilauncherdev.plugin.browser_V_4_M_f098eb78edf38f1234dbc177c54037ac.apk
Resource
android-x64-arm64-20240611.1-en
Behavioral task
behavioral12
Sample
com.nd.hilauncherdev.plugin.navigation_V_15_M_f9116e80f80655ce754d9e54d0da57ca.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral13
Sample
com.nd.hilauncherdev.plugin.navigation_V_15_M_f9116e80f80655ce754d9e54d0da57ca.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral14
Sample
com.nd.hilauncherdev.plugin.navigation_V_15_M_f9116e80f80655ce754d9e54d0da57ca.apk
Resource
android-x64-arm64-20240611.1-en
Behavioral task
behavioral15
Sample
nd.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral16
Sample
nd.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral17
Sample
nd.apk
Resource
android-x64-arm64-20240611.1-en
General
-
Target
com.nd.hilauncherdev.plugin.navigation_V_15_M_f9116e80f80655ce754d9e54d0da57ca.apk
-
Size
771KB
-
MD5
a435c9750bcfc45844495839fe48788d
-
SHA1
1cd299bb6c3de10d88024337bad42a9384ade401
-
SHA256
48a86092acb220b35bf26a8bce521243470130fc27ed04e8a2441e8f78872545
-
SHA512
1b18fe3f946d90e1fd03c965d31b210454338ea0fa1d181cceaef027e08837c9be26e897f5ad15aad587e00a4b9b31675388691ef5c806f24898c781b7959f7d
-
SSDEEP
12288:Cu2F5fdMgUnub0ls4b5Y1z6AzpXPtVoMWVh0TgdFyTuIAwLa61uz4KAA+aAU:dejM5a0ls4EdT7WVRwyIvm611VPU
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
com.nd.hilauncherdev.plugin.navigationdescription ioc process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.nd.hilauncherdev.plugin.navigation -
Queries information about active data network 1 TTPs 1 IoCs
Processes:
com.nd.hilauncherdev.plugin.navigationdescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.nd.hilauncherdev.plugin.navigation -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
Processes:
com.nd.hilauncherdev.plugin.navigationdescription ioc process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.nd.hilauncherdev.plugin.navigation -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.nd.hilauncherdev.plugin.navigationdescription ioc process File opened for read /proc/meminfo com.nd.hilauncherdev.plugin.navigation
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
20KB
MD55ce3b1aad6d101c83d53cc3afbec58c8
SHA1fd6c6c199af6044fec75fd11d4425b7d37e3fda1
SHA2567eea66e92a7bca023c5e8c9fc213ed2b3f7ee728811c3b87d7588934b360a19d
SHA5121456e9d3bbe613cfed73e4c8009cb32fc2a80ca031cd3d1747234b86eaaae448d9c853551a9d26aa5e2975e2b332514719ff1ed7f5f091d4f737decae8904eb5
-
Filesize
512B
MD581c455682aa720f66652a2249a01a6c6
SHA16ece060ec3d5f0c885952e069f9b531718d1af31
SHA25685391d6a5c4431eba2939438e7a0c816ee4eb6e9a47da2ae7237896a89bcc4f8
SHA512e05649a54302342d1a0d3ad6731766c75a644ebdd20eac1642467fd6aa981ce33a3266b01e7fb62b6e5e80172a44218d74250a7ddaee355cabdf2e27caff7db5
-
Filesize
8KB
MD5348d6d73fc95fe9509f23c15426f4048
SHA1fd72ce4c486ff49d7fca472e0556c666ee2c9f02
SHA256c4e324cd0796fdc3a8baa841300bd1920fe1d418ac15853a0ad76ae7cc564ae3
SHA5121ed048b310f06e2e925f146da5dba03ce6a8db363633d6c49c791b319d11e807c5e759e7149fe6bdbc580c94735012dffddb7ec324e4e0e1cbd75164148c6d74
-
Filesize
8KB
MD56826e0253b403add806e92b6e1cb079e
SHA1863e13bc1403346563dfd1ca0cc0c38262d46587
SHA256e254b9c149ecbe0b5270b267a5c37320e8344523a41157d7c2ea21bf74ffc9f0
SHA512e126b20fae2fa47991f76a8fd1078eef98b6af8c2785ba94aa766818bf8d4a4590121ca4292959cad2ab8a44f31c9e8125becbd3b42816dec3c6da571e11756d
-
Filesize
3KB
MD514adace71e0e91482a993c6bf1698756
SHA1614e2892a8a77076e935d1813c4b8c9ccf16289e
SHA256eeec618629b5ea5e946c7b61bd6ce7b9dbaddb92a193376355ccf64663a9aaaf
SHA512b0d0d65dbded382229556f2de57805e930e6ea2aba7ff374456506c099beab9660b9d5ddd010396789ff49b975d382c0c79c7c511141b9caf6e9964f59d0c7c1
-
Filesize
2KB
MD575762b1d4cf1f49bd6b036b4a4d3d6ed
SHA165ebf30194b63374e40d81b40839bc694a6c8a91
SHA256046739d4f217e457aa30598dde39fadf14ccb6e71cc1e8bca6c821682933da43
SHA512b7fa68b5308e71c3c56f9fe7e6a21e3623aab91827cdbc2453e68e38e93870c0e5416f8365643d7093086d2c742f79f211054632f0bcc77861b47f9a94caeb4b