621abad7eaa20372e7f103df780e8d67e2733157bef2080981e0709b03138f61

Analysis

max time kernel
75s
max time network
135s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
25/07/2024, 11:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6f78a179a5cecc172aaa9ed310b00036_JaffaCakes118.apk
Size

14.5MB
MD5

6f78a179a5cecc172aaa9ed310b00036
SHA1

312537c34cfaf45220a3fee098ff3eddbb8c02db
SHA256

621abad7eaa20372e7f103df780e8d67e2733157bef2080981e0709b03138f61
SHA512

dea7a0af48c7b6c79873bb8acbd25bf56eea2d3060222d7dbe6788e22111ee21f59045ecea54240eb365c7c46a4731f405cf2d254eb6b83493fcfbb3e935d5eb
SSDEEP

393216:ZzGmnN2PlSw/31nOijRY4N1ACnTwOjTGu9ceFfzvxrqf5:fNMSw/FnOi1Yu1nn0SGleFfzvxWB

Score

8^/10

discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.Neurononfire.SupremeDuelist

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.Neurononfire.SupremeDuelist

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.Neurononfire.SupremeDuelist

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.Neurononfire.SupremeDuelist

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.Neurononfire.SupremeDuelist

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.Neurononfire.SupremeDuelist

com.Neurononfire.SupremeDuelist
1⤵
- Checks if the Android device is rooted.
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
PID:4257

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.Neurononfire.SupremeDuelist/cache/1582435991586.jar

Filesize
9KB

MD5
e8e0527a01aefdb89afd2c508f131da1

SHA1
f1103e6b260c657ceb3d95f1b023af3fda8b133a

SHA256
f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce

SHA512
fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/ArchivedEvents/172190859500000.16282b6d/c

Filesize
1B

MD5
c4ca4238a0b923820dcc509a6f75849b

SHA1
356a192b7913b04c54574d18c28d46e6395428ab

SHA256
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

SHA512
4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/ArchivedEvents/172190859500000.16282b6d/e

Filesize
111B

MD5
8e79c70ceca81749811ce6ceb03ef4f4

SHA1
2a333938fa15b529bb2e451489c168e86d8f81a4

SHA256
745e26dbeef5322b80816eab422466a2be7fe84521224ab8dacaeb29310c8230

SHA512
c9acaa95f3da1f28fed23ae48efb1274ea94727f394889bdc564d5829940cd71ebd287e3e81a453e5c1a765cc87e280b96e6a97c20e95e7b61bc1d5a3baa5239

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/ArchivedEvents/172190859500000.16282b6d/g

Filesize
1B

MD5
c81e728d9d4c2f636f067f89cc14862c

SHA1
da4b9237bacccdf19c0760cab7aec4a8359010b0

SHA256
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

SHA512
40b244112641dd78dd4f93b6c9190dd46e0099194d5a44257b7efad6ef9ff4683da1eda0244448cb343aa688f5d3efd7314dafe580ac0bcbf115aeca9e8dc114

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/ArchivedEvents/172190859500000.16282b6d/s

Filesize
356B

MD5
2b0676656a6d250195b2e8bf0de2e6b6

SHA1
d9600f1da22af74d97a47565e8af796eb712c971

SHA256
8c08ed43538094ff87ccd1a917803e7ad915688175d950aad9b4440af82dc90a

SHA512
de748ed34b582185c859f06391de913236731ed50f6cb93a9e9019f77f988db11628f1af5d04d6fe6709b5c68b9d09e917ac215843ef250664bebf46a8ac8238

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/ArchivedEvents/172190859500001.16282b6d/e

Filesize
157B

MD5
0d241070b56bbb8ee45b46bdb267b47f

SHA1
123f6bda0e926cb5cbcc60f101633a7437705f03

SHA256
b58946d202799be2be198117e2d19fccb289790de98e0c5ab7affc29ef25d818

SHA512
90ef0283b5a3fa96333116c1894e534f817b6cfc4901fe5546cbb60737c02b39a2babc3c41e229ed356a2e056b526274b394262f48a8641c4c68423fde36115f

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/ArchivedEvents/172190859500001.16282b6d/e

Filesize
290B

MD5
e0fda84d6feaf88cc502b3f7beed01ab

SHA1
0f6da0a2547994dd84b16277225ccd3d1683991b

SHA256
2290e60249a20b7dbd08b61b5b53c13c9e9411cce8ebcbea750762f1575855b8

SHA512
39aa5cd370c30a5f77c47c5062d3f3e4bc71dbb335ecb02a4cd6d6c5ff01df60d2e1e12eceb7bd78027cc51baf9a369ec3009963b420ec246a048d94b53c9006

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/ArchivedEvents/172190859500002.16282b6d/e

Filesize
1KB

MD5
d6898940562850eaf7947af418640e6a

SHA1
527a8ac40e7a47ea0b6129a358ab931a5c2f92e3

SHA256
c6cec74822ecda6eefca28369d8696634b1a121a51dcc49dbf9d36d05ba67d93

SHA512
bb4135581f895fa4b9c9487b3bf397a90e44d70c13bcbc70f196e9b11abc678996991bd124f6d5d707dd3d79e08b92b8815dfd68e48867d2e2561cc0f1a359a5

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/config

Filesize
293B

MD5
8673a8ac0b06a9d056d08d62f857ba4b

SHA1
a351bea1932270bafbe468584058fef20dcfc31e

SHA256
83b3f90c4edf1f122c8faf9784ca0aee4dd017c65493ac181c1814211703db96

SHA512
edf28eb7fcef654f139285d308f817ee230d6f064a4c865109d6dfe6f73c11f8f35737c8159c8a302118237ab980899ba5773f547cc9da4028643a53b08e324f

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/Unity/local.c1c8e36b5bed9f040a8ec709c762cc42/Analytics/values

Filesize
133B

MD5
e7e79ee808b9d79fc3132858605e6ddf

SHA1
b7c6d8e5626ab2595c5d71e0d6257cea21348298

SHA256
cd0b35dc0ba34e9e4084c123f81945b3856fea857bb7fa0ab0e2dc4b95f5645b

SHA512
d622ef37cda91a0ccc3574a8df14aaf5eae65b7076f2d6d76202588c6df345cef454b6f028832267df22de790ec528d836c44e96aea4f348b94d88201df2ab75

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/Metadata/global-metadata.dat

Filesize
2.5MB

MD5
c3349fb2d7241bd8b1aea6cf08afa131

SHA1
cddf1a62204565cc4ab471a35beec893b5a16c9b

SHA256
da18f2c3cccda023ee35072363018de0f2806becb61bebe6d04a1f2beec7bcb2

SHA512
71935f9ed2e9850c5359df0f4c9049fcbbc90fe7531dca0b40d4f541fdad6d401c0460aa1c5b08bc3c1efcd4c57fcde3052440a14b780f1e285b5659df15316c

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/Resources/mscorlib.dll-resources.dat

Filesize
329KB

MD5
21d06dbc8af6432b2b49536ed30609af

SHA1
11a1c0e2ab2f8c06fe4507535ed47e0dd279a60d

SHA256
c5baa176a5b72cd545266340e42102d393a5e43d38c95796bc828918bb95277f

SHA512
2971f54eaa14c3ce6e2352e5a1aea5b044f0894bf4eac92de8cd92515b6473b5ca56ebfcad4369a9d4935cbefea2540a83f332fd4d832c37768310e8776ceb5e

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/SymbolMap-ARM64

Filesize
164KB

MD5
71ac7283e6908a9fe9a71493ad0d0ac9

SHA1
b7ff20e4bd89354984f1b8fc3d8e6d9112d19331

SHA256
777237ad53b1cc195c0ae7dc0037afc5c342e196590b8e729604989e908575bd

SHA512
8c8b013ab550be45458cfd9746dc2b90ffe23f9174ead469de6a0bbdf53843a80b6e6740064048432a46271484939c4e4288a5a3ddab319017ba83389074c094

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/SymbolMap-ARMv7

Filesize
164KB

MD5
8cf0f4798512b7da4ee21050ee31edc0

SHA1
fa248be9e96cd41515a5a7fc962bfa5a70b05b08

SHA256
54dfd6411ad2df9de314bb1db1077f4d6c43518fc1e26ef91a25c64f6c5ec7cb

SHA512
f01e83ce6a7c87ba3cae25fb68a98b5f41171e5b6669db7ba266cca8cbd0cc26e79b99aa0018650cbee0a09fe5bf64930647e838f8cdc56589039710ae14af24

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/SymbolMap-x86

Filesize
164KB

MD5
28d1ffcf56a2cceb2c5fc59e15efa4eb

SHA1
3c27f48a9535d1ea43eee98fe7949ecd4828957f

SHA256
2453b3c790af6d95096504502092b749ad0b485ac1d2759ad78a69ef55ea6714

SHA512
a8197103fb16ab3010fe87c691ba0a5e10e0e431fdc795d85a3a47d3a2621229165478c1835f997bd7f3fac7c21418ebd5ee5d860ba2fbad90ac6f08346dc870

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/2.0/Browsers/Compat.browser

Filesize
1KB

MD5
0d831c1264b5b32a39fa347de368fe48

SHA1
187dff516f9448e63ea5078190b3347922c4b3eb

SHA256
8a1082057ac5681dcd4e9c227ed7fb8eb42ac1618963b5de3b65739dd77e2741

SHA512
4b7549eda1f8ed2c4533d056b62ca5030445393f9c6003e5ee47301ff7f44b4bd5022b74d54f571aa890b6e4593c6eded1a881500ac5ba2a720dc0ff280300af

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/2.0/DefaultWsdlHelpGenerator.aspx

Filesize
59KB

MD5
f7be9f1841ff92f9d4040aed832e0c79

SHA1
b3e4b508aab3cf201c06892713b43ddb0c43b7ae

SHA256
751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a

SHA512
380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/2.0/machine.config

Filesize
28KB

MD5
cad24142abba464dd90777c3d347ef88

SHA1
d8db7111fce5a08d8b7c9a6e1e0ad2fbf34cfe12

SHA256
edc5bcf685d930a607bc097927260a3f9ac7f52dd809db68158298bfd934b7ce

SHA512
5d3ee2ee7921c95cc30790ae670fcadcf091d4fa1b9b5e1b9c7500c67230abe25467236ed160c51aa662e764ccea10e4955887359a65b09432b727abf27f8454

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/2.0/settings.map

Filesize
2KB

MD5
22c818a23169e12bd3c8587b6394c731

SHA1
dd2be2dbccd34736719301aee92429d4258ea5a0

SHA256
49c6160f9d54af4270a3b4e997fc4a8301f79b9e2070118fa46ddbcbbc44f9a2

SHA512
c1352e817e01277413a1790a94a4f979dc1b8333874fef28d735441c034c97bf8ce501fd9cd04c47d25541a0c1d54fcd4dd3bee9ac3e8fbde83ada9a1d2662d7

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/2.0/web.config

Filesize
11KB

MD5
2b6303c4f12762b71051db6e947f90a4

SHA1
a4d7e05516f63d6ab67327b299d4fb2852cb840b

SHA256
3c1a76a5849074b437d297656a208a3bef6d84b982153542b9c797046c601dfc

SHA512
80f5da60654e1851ef21526e434b32d94e18883a08bacbbaa0e1f85b80469c46510b6ddb9b429f16cc4be89c6f2bb2627bbae9cb1d0c7e45b665efb7721c6d86

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/4.0/machine.config

Filesize
32KB

MD5
24c866ce8037fcdca2287234eddff637

SHA1
9245befcd116458e9619694f1a785c50fa61b58e

SHA256
6919d5af506aae0d93e91bd83418a81895a5554b9f54cf94aad20d025a4db664

SHA512
f9960b5d5e7db35fe4a492dbba1f90cd0f0f0c4d84349baf33de3a941de57cffdec670b5be9862306503f7b5d57a697208921e7099cea13d4daf3310840ff4d2

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/4.0/settings.map

Filesize
2KB

MD5
ba17ade8a8e3ee221377534c8136f617

SHA1
8e17e2aec423a8e6fb43e8cbe6215040217bb8a3

SHA256
ce1db1ad8a9512073164e3eccdc193f7eda036e1a9733caec4635de21b2865c8

SHA512
c18bcbcbd4b9a20a72b1a934d70db1eafef047f34f3ba2c6357d8e3afed07ecaab861e5571ceb58c22d4d3e5ebb34b51e366a0553c3153fbc263d1d80472e297

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/4.0/web.config

Filesize
18KB

MD5
b127480ee9f0b8dab6a3f73ad79dd332

SHA1
7d776d730cbd253564713f36573dd8366782788c

SHA256
f1a6416eeedd9d040387fd85dcf7d6e074b6644c6829d08be220ff9fc32efb31

SHA512
00ddca43ad38127cf71477810c46617fc2ccdc33f197e26ba761151107eff701fec2caa51e43575fb5b4fbc11f640f525ba70b6b3e97811cecabc63773492401

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/4.5/machine.config

Filesize
33KB

MD5
0869544722561f5aff0eefc83fc7b001

SHA1
1e118f4b5c1c6a7b1858e3fccb1b1d1095561976

SHA256
ef9b9387168fd1dd6c996f96c134d9c44f8eb06f9587004bf997252a520182d6

SHA512
ced7c9a5363cabdb87b01ed6b4ca190a690640dddf5cbcc0438acdc611a8ee942cb6cd73c78d3fc2d59f70171f22ac832a10b1e23758dc92599ee24acd978ac2

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/4.5/web.config

Filesize
18KB

MD5
08101241b15b53ef0ab908f6d388881f

SHA1
ea3e2ad6d71d483c54b12852dcbdcd0baa569988

SHA256
15a2c7a9242bf54d3ccb3e07fa6d8f84ba8b303d8877243787a1103009941bdb

SHA512
a1ee7f17bb069ac42483d1f98ca839ff1bd06f3fc15cd379dff4aca3732a5dac24dc17e15acc8f8fa39e60e186219f4fd70664f9ea284002274a4ff8609791ed

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/browscap.ini

Filesize
304KB

MD5
378be809df7d15aac75a175693e25fbb

SHA1
2d5454e161de8a5b65910f27bd70d9d0ad8fa476

SHA256
4ddd50f31fb968f30bedefc253a46dc3f2890192d05cdaa9e0a64a056eee807e

SHA512
d0d181e806cbd2c016eb0a8786f7d9db877463eaac0195db4e891be111c9ed87491a1abcfa0d9ed7c2743e004e1f4a3f4789333d0b535e63358c672ae833c363

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/config

Filesize
3KB

MD5
506d24f8f3641d85468a61abc6cae294

SHA1
0323f0a888441cfbcbcb8d7084b77ece44415bd6

SHA256
f6238a41089538523af3926af29c9e8e97a94a71aa01d9ba223d1bc0bbf42241

SHA512
ab23d1b8f6b6ac2bc4f9615401e8db44ce553490a13df39bfad0e1483ef3b157b180b19ec0df4fdfa68e13b54e00513036df04934a516577adcc5d0b52f0e13d

Download Submit
/storage/emulated/0/Android/data/com.Neurononfire.SupremeDuelist/files/il2cpp/etc/mono/mconfig/config.xml

Filesize
25KB

MD5
f34b330f20dce1bdcce9058fca287099

SHA1
936520d5bb5c00a1985d7a4c4f0ef763a9031862

SHA256
0c56e34c69124510fa8c19e7b4c2ca6c1c4ff460ae19f798dd0ca035809e396d

SHA512
d6d4a8321eb44c117755a41a2590296be86a0568d27a5347f9d7f32f2d151d8f7e169675c83faed2dab5ad0f8d81858f8cd1167e439cd4bff7e68c243e3544fd

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads