General

  • Target

    ba6d429724314d7ad41691c9f3974e4f_JaffaCakes118

  • Size

    2.1MB

  • Sample

    240618-h7v71ssgqe

  • MD5

    ba6d429724314d7ad41691c9f3974e4f

  • SHA1

    89ed36a9c46c3b76f92f827d2c5333d7c58d4e44

  • SHA256

    f3615fb5feb72d75581eb0fb4170cd44296cc4906511a7d169d5e49e1efe2057

  • SHA512

    b27f1523acf985f0aac7adcc0dccf44792521ef2237d6786222893c80ebc618a9778106794605b37e26fbca6ecd190190b07dc28aa5f194602bc828966a1fa5a

  • SSDEEP

    49152:2H70cnNNtzKgcqeYtZaGVL6UghnpxN31cUgT75/:K0cGDQ+JN31DmV

Malware Config

Targets

    • Target

      ba6d429724314d7ad41691c9f3974e4f_JaffaCakes118

    • Size

      2.1MB

    • MD5

      ba6d429724314d7ad41691c9f3974e4f

    • SHA1

      89ed36a9c46c3b76f92f827d2c5333d7c58d4e44

    • SHA256

      f3615fb5feb72d75581eb0fb4170cd44296cc4906511a7d169d5e49e1efe2057

    • SHA512

      b27f1523acf985f0aac7adcc0dccf44792521ef2237d6786222893c80ebc618a9778106794605b37e26fbca6ecd190190b07dc28aa5f194602bc828966a1fa5a

    • SSDEEP

      49152:2H70cnNNtzKgcqeYtZaGVL6UghnpxN31cUgT75/:K0cGDQ+JN31DmV

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Reads information about phone network operator.

    • Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Mobile v15

Tasks