General

  • Target

    bcdff66ff0eb2d10a2b64ca08ed7e08e_JaffaCakes118

  • Size

    15.6MB

  • Sample

    240618-twbvsavgnl

  • MD5

    bcdff66ff0eb2d10a2b64ca08ed7e08e

  • SHA1

    a019fa0c043b0a7a9380afe497f86d7cc6c15d64

  • SHA256

    61913c17aeae92e3b3c9812676ab4dc6642bee403717a5a5a5051aaf4a1f2f72

  • SHA512

    15b894bdeb2fb87721cfcc953dbe8b72cf9b35d75377bef617da556f723907455e75d247dbc4c237bc5d53367b8cc8fe467f41ed6dd1a28d142af6bd8a119d32

  • SSDEEP

    393216:gnEelSjaPWuBGvZr/bs3Ny1jzy+HNDibMstHaXFOFik:cEWSuuuBGvROw1HyIDZrMFB

Malware Config

Targets

    • Target

      bcdff66ff0eb2d10a2b64ca08ed7e08e_JaffaCakes118

    • Size

      15.6MB

    • MD5

      bcdff66ff0eb2d10a2b64ca08ed7e08e

    • SHA1

      a019fa0c043b0a7a9380afe497f86d7cc6c15d64

    • SHA256

      61913c17aeae92e3b3c9812676ab4dc6642bee403717a5a5a5051aaf4a1f2f72

    • SHA512

      15b894bdeb2fb87721cfcc953dbe8b72cf9b35d75377bef617da556f723907455e75d247dbc4c237bc5d53367b8cc8fe467f41ed6dd1a28d142af6bd8a119d32

    • SSDEEP

      393216:gnEelSjaPWuBGvZr/bs3Ny1jzy+HNDibMstHaXFOFik:cEWSuuuBGvROw1HyIDZrMFB

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Requests cell location

      Uses Android APIs to to get current cell information.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks