Analysis
-
max time kernel
5s -
max time network
160s -
platform
android_x86 -
resource
android-x86-arm-20240611.1-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system -
submitted
18-06-2024 14:06
Static task
static1
Behavioral task
behavioral1
Sample
bc578bab172b8aae0329657e187d4a8d_JaffaCakes118.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral2
Sample
1.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral3
Sample
1.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral4
Sample
1.apk
Resource
android-x64-arm64-20240611.1-en
Behavioral task
behavioral5
Sample
gdtadv2.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral6
Sample
gdtadv2.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral7
Sample
gdtadv2.apk
Resource
android-x64-arm64-20240611.1-en
Behavioral task
behavioral8
Sample
2.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral9
Sample
2.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral10
Sample
2.apk
Resource
android-x64-arm64-20240611.1-en
General
-
Target
bc578bab172b8aae0329657e187d4a8d_JaffaCakes118.apk
-
Size
5.1MB
-
MD5
bc578bab172b8aae0329657e187d4a8d
-
SHA1
1139e5d95461b700e8a938ec228fdcc575d4aa0c
-
SHA256
91844369cbb17d85a82f1da9d422d89e54332f661edbd3ce0dd0c4b25784471b
-
SHA512
4d5950f9a9940f0286b34b890e77ed86786dde296db7bb042421251a1f73e04e261603e878cebdf39e874855e3eb88baeb32991d335a60dd24dca7c34d56652d
-
SSDEEP
98304:oKrOy+44jl1n8moybjOM3ejxRi0yWP29HE1+kvdwSMh7IvhQ3H2cdK/2sGS:brgp1n8moybj4Di0m9v+dw3hkoWWa
Malware Config
Signatures
-
Queries information about active data network 1 TTPs 1 IoCs
Processes:
com.goyourfly.classcialdescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.goyourfly.classcial -
Requests dangerous framework permissions 9 IoCs
Processes:
description ioc Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
com.goyourfly.classcialdescription ioc process Framework service call android.app.IActivityManager.registerReceiver com.goyourfly.classcial
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
707KB
MD5b1fcb89d11d09690037e6cdef4dd16af
SHA1663895e25a9286363cfaf5186c40343f03603053
SHA2561281704bdec6d366e6778b74798cf21e6d9744f97396a646037cb1f1453a241b
SHA5129259f3f74443d8cdedc010ec4ab21618f330b7521577df1579f8a66921877a87ea166fb1721479a1560214087d66f0f46c43d78f7c7935a07ac19c6b413301a3
-
Filesize
1.0MB
MD5d524f8b220bd4422c6ef11e2735d79a2
SHA1acbc69e0c8e2aae1f314dc01fcf2eda83873addf
SHA2561ec900501a927a935e6e845444ce3b44e04d1cec2d102a9fb1eb280d0e1a5d8b
SHA5126668cdf08fe2b1ee68cf4f2b2bca46898df887b2db045b08559eefd88ed375a05633fc3992a886c49bf5aa8b30a38afab50c78b115532aa2ebaae3e8407513a5
-
Filesize
1.0MB
MD52ba0797d94fbdcd6307612b88d5fca15
SHA12d77b1f41d0a3231b5a1f9af1f5b2fe3750ad6c0
SHA25678cc5e34990e20571cf2885d9f6f9d624ff9b6e317e1f71cd8986c7532117c88
SHA512440fea9ca7db9d809fe5c7844c1a5038f6ae6948091d8b0a78f802914473938002d73e58a5ca44d5d9a7c27ad6ae931c37d005348cde312463a6089514e8e54d