62e445ccc8691fc30337b00e44c5270525c013c2ce96de40a4dd96f8bbd6f2cc

Sharing

Copy URL Twitter E-mail

General

Target

3d6742e51c24f7ed9fafac13d2c8c539_JaffaCakes118
Size

4.8MB
Sample

240712-ps4n6stdqn
MD5

3d6742e51c24f7ed9fafac13d2c8c539
SHA1

3a01743d6ef985c4311b7e81da0ed3d1d7213e98
SHA256

62e445ccc8691fc30337b00e44c5270525c013c2ce96de40a4dd96f8bbd6f2cc
SHA512

6ac447b43136ed6b9a618f14f00f361841e43037e08e30d70c88cccfac5fe56fd06ed927421d1a0dc1c896209ed282ce85bac3a06710470acb1fb7d3ded0d126
SSDEEP

98304:TGBJRHIBJRHDBJRHCBJRHdBJRHX7vVQvaK8LVnx+yDQpRDhp7KsM/c:TIHqHNHUHPHX7vVQSK85nND2J6c

Score

7^/10

Malware Config

Targets

- Target
  
  3d6742e51c24f7ed9fafac13d2c8c539_JaffaCakes118
- Size
  
  4.8MB
- MD5
  
  3d6742e51c24f7ed9fafac13d2c8c539
- SHA1
  
  3a01743d6ef985c4311b7e81da0ed3d1d7213e98
- SHA256
  
  62e445ccc8691fc30337b00e44c5270525c013c2ce96de40a4dd96f8bbd6f2cc
- SHA512
  
  6ac447b43136ed6b9a618f14f00f361841e43037e08e30d70c88cccfac5fe56fd06ed927421d1a0dc1c896209ed282ce85bac3a06710470acb1fb7d3ded0d126
- SSDEEP
  
  98304:TGBJRHIBJRHDBJRHCBJRHdBJRHX7vVQvaK8LVnx+yDQpRDhp7KsM/c:TIHqHNHUHPHX7vVQSK85nND2J6c
Score

7^/10

discovery evasion persistence
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries the phone number (MSISDN for GSM devices)
  discovery
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries the mobile country code (MCC)
  discovery
behavioral1 behavioral2
- Target
  
  core.jar
- Size
  
  163KB
- MD5
  
  1fd2c24f05e9ffe80fd294d9533cde51
- SHA1
  
  07ee0fb97369a80ef3271b4242e1cd87f04fdfcb
- SHA256
  
  3df8da925b6bed8f320ae7741a48255e323efaf463e0c2136e7e40854cbde897
- SHA512
  
  68d661f33e632b17b12cd6c63e81cbffe95b5a92327c9c7d1549ea44ac716edf3605750b90a32984fbe24147b07766b69bf3629385906eea761d52570fb45942
- SSDEEP
  
  3072:zPf9VMmPk3lth9uYmGzGTAZgO44dU2IT2YB9ZN4PXmFgBeBvpTECl:Je+slthIGkdMUJTP9z+mFmeBxECl
Score

1^/10
behavioral3 behavioral4 behavioral5
- Target
  
  update.jar
- Size
  
  7KB
- MD5
  
  fc30536ec2c6ac9a928cd2030158e275
- SHA1
  
  fe3765791887a491f971a21be283877f5116532e
- SHA256
  
  bef144790506903b1c501aa1e1a8339ab503cb3b2d79f5beb1cef3d8073f0e48
- SHA512
  
  5b677412ca4d6f836b38c9fbcabb3aa31a624f875748a478affe4bc3f8a8931cb9496cd6659aa0d3c040c89289d018782574c230602e85f091ff1c6c1bbc3c22
- SSDEEP
  
  192:9EDPAQswrmCmuL4HaiODqJwSka0eN5rs89GKJmsXDw9mXJir/:APAQN5muUHMqyapz0KJO9mk
Score

1^/10
behavioral6 behavioral7 behavioral8

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped Dex/Jar

Queries the phone number (MSISDN for GSM devices)

Queries information about active data network

Queries information about the current Wi-Fi connection

Queries the mobile country code (MCC)

MITRE ATT&CK Mobile v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8