5421037bbdc17f7cc8b95a5f559d72003e26203395c17584fd382ab4f00ee768

Analysis

max time kernel
127s
max time network
165s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
10/08/2024, 21:10

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

87aff31e0582216d2d8cdff90acac868_JaffaCakes118.apk
Size

1.3MB
MD5

87aff31e0582216d2d8cdff90acac868
SHA1

7b09a8972da1cc991b329e9db9263f26a25387ab
SHA256

5421037bbdc17f7cc8b95a5f559d72003e26203395c17584fd382ab4f00ee768
SHA512

49fb148ed931ec473774cfdea117021a36329b1afda0f272deb9532aa72375fff045560a0ca29772e1174b043b10f536ff51750f9517e59f6f21b4ed37f500d2
SSDEEP

24576:7ThS1/HmYfS5OItdMzsgeij2vhp0mOKrTsHdx1TvMkvgOrLXsji/o:7wPmY+jMAg1jQgmpTsHdxKNOrDsj5

Score

6^/10

discovery

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	cn.hongxiu.singlebook20828

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	cn.hongxiu.singlebook20828

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	cn.hongxiu.singlebook20828

cn.hongxiu.singlebook20828
1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:4990

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/cn.hongxiu.singlebook20828/databases/comicDB1

Filesize
84KB

MD5
85279b4953b9e20a23a8ac62e22e0d18

SHA1
55fbae754fbe13339e5b8ed335da07deab5ec09e

SHA256
0622e72187a3c2534919da2e0a03807b26bfa87d62362c68ffbbd60334f0f2d0

SHA512
411277f32f0bc16bdb486c6f23ca7d683c88297c956119696f8162fad50f09ab17a3eaee23960683e8b5f1f3394c444d11400fa576c05519f80722ab10ab77a2

Download Submit
/data/data/cn.hongxiu.singlebook20828/databases/comicDB1-journal

Filesize
512B

MD5
a004ce55c7ce2c0ed3f4d7088815dbb8

SHA1
285713a4e35f2a9703a4ffed9a9f7f833b145826

SHA256
1a52cf85dc56c27477de8fdaf8422dc321ad20df27fc54a40f40da5b2ed03863

SHA512
d970ccd7b29a55d8d648d15497e5c37d6c7b39a7daa2017d0693b8f4c3b4f4fe9625fd7aa55fbf8ddc8bba6edecd50f155196caacc84afbcaf99150fc6d0bb76

Download Submit
/data/data/cn.hongxiu.singlebook20828/databases/comicDB1-journal

Filesize
8KB

MD5
d379134e50efb8e6a4ff8ba97891bdc8

SHA1
d639b71e32f635bd1072bb5509e367248a62006b

SHA256
a13b334306e0b06a7aa0f2c1c80038a5c72c16c3cfbb1896b86c74d6040bd221

SHA512
a9f6c0d340e1a717af08179891bd20096b338ec90af1906d9f55e6631ff0abd14f2630090a08e41f4ad1918e5bf5b025699174168a68e69bcdac866073151c17

Download Submit
/data/data/cn.hongxiu.singlebook20828/databases/comicDB1-journal

Filesize
8KB

MD5
31be620b33d6f08a617e9c6923c9d1c0

SHA1
8c3cebc39174c21a149a4537e11c243bb6bf9f23

SHA256
09867cba985da09093954deb5beb942f122aff333cf5745ff1cef56ef991fcd4

SHA512
039cc89ebbf30747e90cddd43fa6f34b57726148b53eeed0d977e1bf0777c8c5637ab59406096264d344ce1dcb785a79d2ffa880bec47ead0074346a305ad657

Download Submit
/data/data/cn.hongxiu.singlebook20828/databases/comicDB1-journal

Filesize
8KB

MD5
c3ffe9ed693e717b59f9135469f1499d

SHA1
b4a558a358f58ae1f578f63d643b2d33edb16353

SHA256
2dd298f756118c44207952566251283451b373528f62333e3b289b209de21b8d

SHA512
61be5256cc3c7035b67a89a9cecf7eb0e10dfa9afe54b74c30939cb206f6634dc27eb7f74b879beb6e127c65c2e68653be1ef5703fc2d5d91e998ae36b7691d0

Download Submit
/data/data/cn.hongxiu.singlebook20828/databases/comicDB1-journal

Filesize
8KB

MD5
8cbe2c5fc25808ef6b613d43b7b5df38

SHA1
98281d5c9224db41c6b41e2b13c8f5d1a396edd2

SHA256
f902a0fdbe5aa8c1f88aab0f7b1aa5832283fda12ccace5bc1b27a6ddea88276

SHA512
e1018e14915f172d74b35d0d92a4a61dfe99b8040f8df21449c28137f0bdde2832b26fcd2278f3b477bb93b8d81563a461cc2c03359006d3f44180520a0631b8

Download Submit
/data/data/cn.hongxiu.singlebook20828/databases/comicDB1-journal

Filesize
12KB

MD5
073f0f0c2bcb984686f02bd34967f8f4

SHA1
36b893b4c8c4b06ae7d528bdea115691dd35a538

SHA256
413cdce63b334fc377ac9883a83b723163af6d54cd0b4cdd9fc5e7e9d8086615

SHA512
65faac3270f2bb77101b33642907d66127b2ec1c1cc6f8084bc2a5e51e92ba20135ef793f6cafcd3f485b09dfa0c23d34cbafacaf9cd4be9919212008e5d0c18

Download Submit
/data/data/cn.hongxiu.singlebook20828/files/mobclick_agent_cached_cn.hongxiu.singlebook20828

Filesize
136B

MD5
40a1634d34515884827be9a4ec2b8fa2

SHA1
d2a05057e153face00afd7a60b8f6c900cd09908

SHA256
8c8ad639a56ae693b32c11f960c74bd20fa54364654093732d007ef9f5cb274a

SHA512
91a4b9462724712d72e20b14c55673ef859a018da65536dcf1bda486e7bf22284ad0b2ce159095064c945b98d743e6542cc274d88e0673de402fc471342ab49b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads