ade779cc9fae417ae88721aef785438c7168c02626858ef88273a7c1901bb4dc

Analysis

max time kernel
25s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
06/07/2024, 14:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2886777969bd852b27c21a756f219043_JaffaCakes118.apk
Size

1.1MB
MD5

2886777969bd852b27c21a756f219043
SHA1

2fa9096605d13ceb94b8f2a3c78bf23ced5ec8fb
SHA256

ade779cc9fae417ae88721aef785438c7168c02626858ef88273a7c1901bb4dc
SHA512

56aea8e2fa6010510695247d784d99a525d200165a1c3d67c6411dc047cbf7cefb7bae9973f041bb6bf43751c27dfa7f86efbcbae62f8f04b5ee8250c223f34d
SSDEEP

24576:Hw9X+dL1rR1YB7fWTNblgyyquIqsvyLAg/yvM6VfC9qz:Hw9qX1YpfWTNh/yq5qsvy0qEM6VAw

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.sanjiu

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.sanjiu

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.sanjiu

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.sanjiu

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.sanjiu

com.sanjiu
1⤵
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4215

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.sanjiu/app_lua/import.lua

Filesize
8KB

MD5
35f2594998b871efe01feb631eedcaa8

SHA1
c8f0737859fb9b2afee46c16c1681860297cc212

SHA256
3259dceb0a7dbb4117f62b5ff2c24fd54def478658fdb81728af3356c4cd41b3

SHA512
d447b95dda0e43929f8446f243df7a3c9cf94ebfc15491d703d8bb365e3efce25b8ad1043693c4acfd958ab2f455a650cd6e8125045890822169927ab10003f1

Download Submit
/data/data/com.sanjiu/app_lua/loadbitmap.lua

Filesize
531B

MD5
5cee84e76661f218683a84d8bc94c235

SHA1
95c21eafd2d614b29e94bf883258c93cc1e7870c

SHA256
76280590358396730600471c6a06d7c1547d617c3cfbc91f2dc545a574bed2fc

SHA512
94169c7f30506a3e7f928ee4ce8a3b43a7f4ce821bb24596d477be34ab8186992837efc9152a53a31c0441a44a895d09a3b68407beeab7ea77b3e526aac3ac66

Download Submit
/data/data/com.sanjiu/app_lua/loadlayout.lua

Filesize
12KB

MD5
db9b960c8c43da10a87812029ee7f5f4

SHA1
b5ca83f694c5ff51d405dc679a518baecdc45b2a

SHA256
436ce1d2ffb72829d7e2b00186ae4dd8f44f99d8e7cb67e359c37e260fb96efb

SHA512
2b48a4d223ec8d145c7167bbc1c32c66225b3075b2fd03ce00346bc5b0c62c6073065f93303b4981be8cc87ae26a310d209ed46ccaff3ae097e116e45e5a7cc5

Download Submit
/data/data/com.sanjiu/app_lua/loadmenu.lua

Filesize
1KB

MD5
439087f12946e6a37f25d5d12a20cdd1

SHA1
1770574e5bfc5053d1fca62dc671d6efe077be38

SHA256
ff21bfad844982e7d3019113f3a014f099c7daa63bded998d51c7b6dba033989

SHA512
7bff6c5a5c3635187c62fe5dd5d9d6cd46e1a60c74a6143627847a039c0da7278a8915d51c0e4257840f1e507f95e2175891f2e72abd7895879971364f1a7c87

Download Submit
/data/data/com.sanjiu/files/AdBlocker.lua

Filesize
1KB

MD5
b3dd91cb780ae5107d2169e4bd1a95d6

SHA1
e72ef4c408940e9f46c39c1505d20421193925f7

SHA256
e0e8d0b8fc69c370c062e75c78cea5a97db29484a4c6be66e14777f5db72816c

SHA512
e88f497cdab055fa0cbcf66fe0a90bf63c91be6e987f91dc036c31f7ff3d9732959c972488795797bdc20d6ec7eed2e5cedd149a5709084bead599d79dbd08bc

Download Submit
/data/data/com.sanjiu/files/BaseFunlib.lua

Filesize
7KB

MD5
5b914564e81b2a5ffab882ab0ec9b9a0

SHA1
343c0b9c7d5594283b830011bd6529ef96be1f8f

SHA256
8375a6a543f2d032bd60b5fd9cfcbbc553585f4b71c5dc8c88d3474ae4d71308

SHA512
5526f667f84c0fbc8a4dad70fe06d80c111ebcdab72cc5a6964c7e8bd74268db8b3653a9f9f320819688c546b108146c030d6064512007ac63ccab3b0d18633e

Download Submit
/data/data/com.sanjiu/files/Util.lua

Filesize
88B

MD5
5a8ff165c1311abe780b092ed79f684a

SHA1
353cd2b240f7ebb7ad51dee8ce10ee85676a88e0

SHA256
142269a62435d8d372c301d99096c4e2edb79921a8960291350d3c323343232a

SHA512
1a4e4c777540741482c7da01ece6cfb19cb167298cf052178eecee5b8a5f4510cd89d60ab22950c1258382701f5dd22ba5917003aaf22d2fb0e668baf310d0c3

Download Submit
/data/data/com.sanjiu/files/config.lua

Filesize
905B

MD5
3c8f73d91414ea010e747164adae401d

SHA1
48fa1dcab187e99cab87e219d887af2df8da6edd

SHA256
9b2a4d932c80a3f19594ac62629a40035a0b66f5c230f3a955388612ea2d0e05

SHA512
f12f294c06bd65e16af33eeacd861ee16c06840733b1272af85b7decbf5d18de39e75f4cc63ba79633fe6abe93a02daa6b7b71128ec104c7966651e05cdfdff4

Download Submit
/data/data/com.sanjiu/files/icon.png

Filesize
7KB

MD5
92ee7573b7a84c51e5ee7bce99dbe142

SHA1
5f3afe0231559c30bfc2618e3a9b7bb8d447ae47

SHA256
4d8e82233ef266a4059cab5e02b8ce4a366a8f98719bd06fe2f4f400c736e3f6

SHA512
90e6c244c5221d9023eecc5fcf63495471158b9b569dbe55d16ebdabc027c700670ef5f92a84b74209f65b129c60e3837f5a4429b889b3f6ffb9e58dd84387fd

Download Submit
/data/data/com.sanjiu/files/init.lua

Filesize
418B

MD5
789e7999160f9c43d50dd7489e85d85b

SHA1
85c0e5110f3bdf89e437d0e5b108aad0fbda76d8

SHA256
d4503fdd5b1bedef0a74a1d53e9d01446ad073e14322eb8df2b55206f8306dc3

SHA512
85f63a76eff37e66e6f414e57393f4ec9dac831d2fde0c38dc485019d34a1f76efbf765c571798fdbea1bcd08c142d93e64d01a351abb7237e8518d39fd21014

Download Submit
/data/data/com.sanjiu/files/main.lua

Filesize
7KB

MD5
0c6625fed8c0dd21ec821ab150b40692

SHA1
0c90934bac177f48851c2b245d04381e5d0d033f

SHA256
494377f857f7fc69ff0e14b48b443843342699b570a615a8e3d6821858d46bb4

SHA512
3267b8999f7a26d113205eee31532c98dbc62bd6de426288c043860151e58709730f89e2b8d31738570c8a5a1fb08ffa416d74ebf7e5ae18e80b024f5dd0da47

Download Submit
/data/data/com.sanjiu/files/popMenuFunc.lua

Filesize
4KB

MD5
e383e05957ce8fe9aa10f239b105327b

SHA1
7a264a0889d6510e6a0f02b9aaa4d68667bfb735

SHA256
df9a884e57cf43f76784bbc0bfa26178952a3315049daa0efdc05e237f9c4d54

SHA512
b647875a868801ca1ee6689f7961cb7bb0b96278a99ec1a9b918db5e378bfa725cb4a1d1fa6cf95c8ef4d1eb59bdae00e0c86a4ca240b472ee443da897edc6c4

Download Submit
/data/data/com.sanjiu/files/utils.lua

Filesize
1KB

MD5
58b3c48daf9316e4318a8ab2dcb86c29

SHA1
330129216d31e7d4bc754fefd05745b97969070c

SHA256
17e75345a9a93cc6f5bd8c85c9d3851b124e81d451313a09b5f4ea2fa3e569b6

SHA512
50c496bb4a5471513f4c5c39b80ced80353ffaba010b38cc75313518b9087dc2a0d8f80c4eb1a4eed229ae880d770589e9c3185a2f8947577ceafd2cae1f0e3d

Download Submit
/data/data/com.sanjiu/files/welcome.png

Filesize
631B

MD5
1fc46aac9c575fe7be1011757833b6d6

SHA1
a744e2387ed58c82bf2e87e39055676287fba58c

SHA256
f330536bbbde1b7b72f64dc528c46cac4dfa098e1a6a149d271883deb739e925

SHA512
4a2717e85c577cbd1193ecf1ee324615fbec086ab97d94d704e8285eb84e5ca7bce7c720bb6369044748a5b989420825674266294faa8d8e657636afa9dd60f0

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads