Analysis

  • max time kernel
    23s
  • max time network
    190s
  • platform
    android_x64
  • resource
    android-x64-20240611.1-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240611.1-enlocale:en-usos:android-10-x64system
  • submitted
    18-06-2024 08:49

General

  • Target

    bad8ff787a9b045af8f1b077cdc780de_JaffaCakes118.apk

  • Size

    12.2MB

  • MD5

    bad8ff787a9b045af8f1b077cdc780de

  • SHA1

    af6be96f9b6802b1fbd891dbe3bf096bffb2c05f

  • SHA256

    7fbea9dfecb8b9838d72c7fb94af516954884966db08b5d518a411e6be0f6508

  • SHA512

    57bd81a5a3c49510c99285894d1c8ea7598c73b1426b623fc5d74ca757c83537fac858095f125a80b3471d19011b4e3921c250c108c76e192267a86595cefe01

  • SSDEEP

    393216:vU+3GvvQzSUHQMQFwsC4OBpMdT0slITUT8uCH9:soGvVUHQMmpCjBmJ0GITRd

Score
7/10

Malware Config

Signatures

  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

Processes

  • com.mobiletool.appstore
    1⤵
    • Queries information about running processes on the device
    PID:5050

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.mobiletool.appstore/databases/MessageStore.db

    Filesize

    36KB

    MD5

    15669eb47bb19111cb64fa7508b227d7

    SHA1

    c7585424afeb0fc7051697b771eb3d81e0e3aae3

    SHA256

    ecb0e8c93a782292a1dfe20a90e204d1c1c804e2773f1831c9ca34826aa62071

    SHA512

    13c2cb45912090ba0b670b36050eab5954e22d57b79e141d2236035dc1ea2000960d93ebc544fc4dee48765335a3d52baeb5d31c8a40407224c624fffebbc11b

  • /data/data/com.mobiletool.appstore/databases/MessageStore.db-journal

    Filesize

    512B

    MD5

    377f11c20089cc9b7573ef844de391ba

    SHA1

    305818e7036cd383e92693a6466436624fd14af8

    SHA256

    51ab5fe3a919b53a4aa5ef4af32656415bced5a8419fe9b220af79ae18129758

    SHA512

    013e4fc553e99c12502c1252cbd1cc41d5e914a7a153c2276608f9531aa4a9dafe4fea333a274c5688217ca93e540aa6b0c05e80e1cfc6b6bb152d5bcb3012e3

  • /data/data/com.mobiletool.appstore/databases/MessageStore.db-journal

    Filesize

    8KB

    MD5

    da03ced2b569bc7286f5ac87af14e529

    SHA1

    3c6188b01fdba80a9d98edfad82ea81e09dbbb70

    SHA256

    d0168d1f05aca3e182ef8cc9e6ad863cf4fe523bee525faa1ca940b9872049d5

    SHA512

    d0cdb98d672fcfdd10a6caa1270a17a9be96baee44a0d0e4f74713b04f3837f164422146c2145d5ec4e32639c71c8f05d4d776789b870b4c9436276b2d94a280

  • /data/data/com.mobiletool.appstore/databases/MessageStore.db-journal

    Filesize

    8KB

    MD5

    a395ea5f20b179a180ecc5e9f8953eab

    SHA1

    ab1390445d9499b147e1531fa5931673591a746d

    SHA256

    eb585f62e915cb22ba00f4d5613169de4a4db89f105272ba4bda8743e96a7174

    SHA512

    ff379daa5e5fc3be6fa0b12ee899c103c34b82aa343700dae88c73139516aff7e188f4eb9713afa081f4f4e0db47539ad06777f26f45db73ae1a563efe5f02c1

  • /data/data/com.mobiletool.appstore/databases/MsgLogStore.db

    Filesize

    56KB

    MD5

    9cec591e3ef91ae568f4cb6e7c2a8745

    SHA1

    ccf756b6b465ad9ad7ff6bfbeb4e8345ba3f6ff7

    SHA256

    05be88f05e9bfd4d6496caab584a704e7956fb87036529a0c8028f1e2bda309c

    SHA512

    f824b3268338787275c184bb740d152d53c1d8e57a044f587530735ef04d021a2671cc2aebb17ae3b497a0ad171060da484a565bfa62d32ed334ae5ffb538f51

  • /data/data/com.mobiletool.appstore/databases/MsgLogStore.db-journal

    Filesize

    512B

    MD5

    86fb9b1bc467016b02c4ef61a0648bea

    SHA1

    ce946ff9ee4981a7a16e98d366c077160830c182

    SHA256

    3fcb9ff1405fce2094731b7a725940b0793d1d92e7ebbd3419cc05528c8ca199

    SHA512

    6cbf67efa9bf7d9af260f8220fc5a27d91b64961233301ef4c241b3c1206b8c666f65703c739b99d3efb93d9c875dd353b2fde1355debe64cc943925f2fa0b5c

  • /data/data/com.mobiletool.appstore/databases/MsgLogStore.db-journal

    Filesize

    8KB

    MD5

    de8a6f68c6531e74663f92c95b2e93cd

    SHA1

    4ec70cbc788d4076b1f14e089d8599350ba8a262

    SHA256

    96ced69a7f04493da0447087df49ba5f6b590061dce6ba833707f5f196cc9012

    SHA512

    534343d137417d2936ff145aaf09f88777073aad0a6e9cda9b5c09d2aebce51dff31c93b42afe5d7b73647aeedd3e32f7b9b89491e1f2ccfeba491c93f78edb2

  • /data/data/com.mobiletool.appstore/databases/MsgLogStore.db-journal

    Filesize

    8KB

    MD5

    97f2787036586c444f36f3bda4187372

    SHA1

    a96f33a983bb5eeacbdbdaaea5fd378ae6e00fc6

    SHA256

    a5a3e5b997f8d7f4733287c361387801da8364264da75233f9f8a0e5544a5267

    SHA512

    86cac3edef72aef603e889f44be05a38a125874a8b4782712252a7c9f9f6989dc6d94ca2c80ea21baba23d6a4fc2ea352bd37b94dcedaa0a9e39ec9797dc2514

  • /data/data/com.mobiletool.appstore/databases/downloads_classic.db

    Filesize

    28KB

    MD5

    d5f18b8f59c9b48a641be38549075a6e

    SHA1

    f79fcac2ea7f580a58ed95eea3cdbe9569133085

    SHA256

    1cb9e0b83c09803d54755f425182eff61db67c83e409c86fbccdeed30c0594d6

    SHA512

    34a30d6d0cfa2043d3702a0092570f10863050d88e6b18313bd35846e47b9be1207379f005004b75eb430dbd4baabe5d02af41747961610ea4765c02bcd2643a

  • /data/data/com.mobiletool.appstore/databases/downloads_classic.db-journal

    Filesize

    512B

    MD5

    11df9de4c8738f092435ef51b1d7064f

    SHA1

    eb61db7ce2c76bf7331666c76f1c094c0e658274

    SHA256

    8771a0ef52a35117b35eace63bda8b06d4f5d8260f23671ea5004c046b63cf94

    SHA512

    d56856a6092cb88296fa992cfbae2851a85dec5adaf4737fe565ec6ee122e5797b511a630ff38b4a98393e78da62da61733ffc43871bff8caac750100c803305

  • /data/data/com.mobiletool.appstore/databases/downloads_classic.db-journal

    Filesize

    8KB

    MD5

    da02767fe6038c7b33ab62d2e0c8dfcc

    SHA1

    27755ef6d474f1574a0c84bd407c8a4dfc43360c

    SHA256

    589b598bf3678fab8ddf0d171ecda8e911e38ff170e63e99a62325d7719bc724

    SHA512

    f87054edb0eeaddba7e4bf329aa28c5d98a65e8e5e928c45bc9f8ca21510b4968fdf194303142869805f4cf62d945d8903ba98ef520b117d76e4cdd674a91e29

  • /data/data/com.mobiletool.appstore/databases/downloads_classic.db-journal

    Filesize

    8KB

    MD5

    99de1b4d701a4a81d103ffd63d952028

    SHA1

    1f45f27c99a5b9b4b36b142eba9f474a3f7bd24a

    SHA256

    8f09a66b07e91f779ef8f6ce0e6de6c687afe6b3c107e1390383965aa257b7b1

    SHA512

    79d58f8537eef8d5b0700f988e2861ecc6530872808dc15675f373bea4980178398cb5a48b3f18a5d432abe6a4f34c0fb0189582da17c29b2296b23f0ef0b1ca