3ddba013ab7c77493349c248f7ffcfeba9516dde00cc74f3912829d2941e3042 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

006581ba6135cffb22d47585542d23ee_JaffaCakes118
Size

2.0MB
Sample

240727-y9dzhswenj
MD5

006581ba6135cffb22d47585542d23ee
SHA1

31779125637218010df6106258a0ee6a413082f1
SHA256

3ddba013ab7c77493349c248f7ffcfeba9516dde00cc74f3912829d2941e3042
SHA512

d14066436df940bd80143cd9527fd05dd97f91db7abcf2fb619d22a6a78748b77113bd4f80e3240500b6e93df70f0a8df5718f020048c6d509f83b117222fe33
SSDEEP

49152:rd2A7z0MPsWBTjOh8yAobZhfpu6YT7BV08Qr:rFz0M1jQ8UZynPBV0j

Score

7^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  006581ba6135cffb22d47585542d23ee_JaffaCakes118
- Size
  
  2.0MB
- MD5
  
  006581ba6135cffb22d47585542d23ee
- SHA1
  
  31779125637218010df6106258a0ee6a413082f1
- SHA256
  
  3ddba013ab7c77493349c248f7ffcfeba9516dde00cc74f3912829d2941e3042
- SHA512
  
  d14066436df940bd80143cd9527fd05dd97f91db7abcf2fb619d22a6a78748b77113bd4f80e3240500b6e93df70f0a8df5718f020048c6d509f83b117222fe33
- SSDEEP
  
  49152:rd2A7z0MPsWBTjOh8yAobZhfpu6YT7BV08Qr:rFz0M1jQ8UZynPBV0j
Score

7^/10

discovery evasion persistence
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about active data network
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

discoveryevasionpersistence

behavioral3

discoveryevasion