General
-
Target
69ea1427e416cd21fa894a1cf168dbeb_JaffaCakes118
-
Size
11.9MB
-
Sample
240724-cwhjwswdlf
-
MD5
69ea1427e416cd21fa894a1cf168dbeb
-
SHA1
ac9c49648753b91a68cdd28cae927f12637a7f1d
-
SHA256
00815e7fbff0ca3e338352ca30c458ffb579c846035288cc1107d9607abddeae
-
SHA512
b3ba3dc86a344b0cf56e0f01a2bf88a94329641b753639d864548d19409c351a26fd44281ff31d30fcb2806dff3aadb6782dcb9157d906dd94d2012c237dae7a
-
SSDEEP
196608:JkXhnBBO5muBELxKIDmXm68sOUZ/TRVUbzwUbF2lQ+6NQVUbzwUbF2lQ+6JH:qBYAuMgXmiOUZ/TM3lFVNL3lFVZ
Malware Config
Targets
-
-
Target
69ea1427e416cd21fa894a1cf168dbeb_JaffaCakes118
-
Size
11.9MB
-
MD5
69ea1427e416cd21fa894a1cf168dbeb
-
SHA1
ac9c49648753b91a68cdd28cae927f12637a7f1d
-
SHA256
00815e7fbff0ca3e338352ca30c458ffb579c846035288cc1107d9607abddeae
-
SHA512
b3ba3dc86a344b0cf56e0f01a2bf88a94329641b753639d864548d19409c351a26fd44281ff31d30fcb2806dff3aadb6782dcb9157d906dd94d2012c237dae7a
-
SSDEEP
196608:JkXhnBBO5muBELxKIDmXm68sOUZ/TRVUbzwUbF2lQ+6NQVUbzwUbF2lQ+6JH:qBYAuMgXmiOUZ/TM3lFVNL3lFVZ
Score7/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Requests cell location
Uses Android APIs to to get current cell information.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Reads information about phone network operator.
-