General
-
Target
8a05c8562481ba26865456c25a30284d_JaffaCakes118
-
Size
5.5MB
-
Sample
240811-mjpgsazdmf
-
MD5
8a05c8562481ba26865456c25a30284d
-
SHA1
1b47cd62e133f2dce28be562b6b7fa82106c0eae
-
SHA256
309370f667cb0002e270b38340a7e84d4be7505a203eb33b2d9c63ec0d5372e5
-
SHA512
b6e838aa93c5cf31219989523d8fe2f55b38cb2c75022ab19ba069c8ebb3ac7ac50d427f2e6b057a36318c97ebb72709d49e32db065bc7220fb388c5a58ffb5f
-
SSDEEP
98304:IcGmRlmBADSXZmpii8D9bmchpUj+UH5MvE2aDiRGHc2pXcpqZQZqaQzTb:IcGVaD+m4i8ZicayUHaUDKKpXcph0H
Malware Config
Targets
-
-
Target
8a05c8562481ba26865456c25a30284d_JaffaCakes118
-
Size
5.5MB
-
MD5
8a05c8562481ba26865456c25a30284d
-
SHA1
1b47cd62e133f2dce28be562b6b7fa82106c0eae
-
SHA256
309370f667cb0002e270b38340a7e84d4be7505a203eb33b2d9c63ec0d5372e5
-
SHA512
b6e838aa93c5cf31219989523d8fe2f55b38cb2c75022ab19ba069c8ebb3ac7ac50d427f2e6b057a36318c97ebb72709d49e32db065bc7220fb388c5a58ffb5f
-
SSDEEP
98304:IcGmRlmBADSXZmpii8D9bmchpUj+UH5MvE2aDiRGHc2pXcpqZQZqaQzTb:IcGVaD+m4i8ZicayUHaUDKKpXcph0H
Score7/10-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Requests cell location
Uses Android APIs to to get current cell information.
-
Acquires the wake lock
-
Queries the mobile country code (MCC)
-
Reads information about phone network operator.
-
MITRE ATT&CK Mobile v15
Persistence
Event Triggered Execution
1Broadcast Receivers
1Scheduled Task/Job
1Defense Evasion
Execution Guardrails
1Geofencing
1Virtualization/Sandbox Evasion
2System Checks
2