8c2d4771444425280f56063ea077c99964cef55ae3bd52ff7908c7b74a442082 | Triage

Sharing

General

Target

8c078cf6742f85e62c6ce16f1a6d411a_JaffaCakes118
Size

3.3MB
Sample

240811-z9qhzstarb
MD5

8c078cf6742f85e62c6ce16f1a6d411a
SHA1

ea7f5b548139724181aca2bdad56df031c2bafe5
SHA256

8c2d4771444425280f56063ea077c99964cef55ae3bd52ff7908c7b74a442082
SHA512

53e4d1bc6b79403e0c384d45a99f26f1b84c7b0c1a0f3c14754561bcf88ff8c0bca087f26a2b632d6b10415219f023caf87b7c2490158cdcde3fa5d73729ce00
SSDEEP

98304:fPrL/jD6ZNvBoknQqBDCirqDMaepvb3LHOtywXj3kYK1pGP:fDDSZNKkBQe5u

Score

8^/10

android discovery evasion execution impact persistence

Malware Config

Targets

- Target
  
  8c078cf6742f85e62c6ce16f1a6d411a_JaffaCakes118
- Size
  
  3.3MB
- MD5
  
  8c078cf6742f85e62c6ce16f1a6d411a
- SHA1
  
  ea7f5b548139724181aca2bdad56df031c2bafe5
- SHA256
  
  8c2d4771444425280f56063ea077c99964cef55ae3bd52ff7908c7b74a442082
- SHA512
  
  53e4d1bc6b79403e0c384d45a99f26f1b84c7b0c1a0f3c14754561bcf88ff8c0bca087f26a2b632d6b10415219f023caf87b7c2490158cdcde3fa5d73729ce00
- SSDEEP
  
  98304:fPrL/jD6ZNvBoknQqBDCirqDMaepvb3LHOtywXj3kYK1pGP:fDDSZNKkBQe5u
Score

8^/10

discovery evasion execution impact persistence
- Checks if the Android device is rooted.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Event Triggered Execution

Broadcast Receivers

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionexecutionimpactpersistence

behavioral2

discoveryevasionexecutionimpactpersistence

behavioral3

discoveryevasionexecutionimpactpersistence