General
-
Target
8e935020c94a5826fdd960cc25ef0fd6_JaffaCakes118
-
Size
4.9MB
-
Sample
240812-nnbbdstbme
-
MD5
8e935020c94a5826fdd960cc25ef0fd6
-
SHA1
842816d57a5b716a39f281702bf733c75c58aa76
-
SHA256
47204244088727aed359cdc4d7a5f3139f2821b0e11e6dacaca3c7269146ef12
-
SHA512
c30787ab49c8127f23cc5616ccd91b1ec43bf565bbf450712003d35bed5cba38e2dba44c771b32c77a7a0014e4811af31e642b4a29d5de2dd18bb0bb6e74ba76
-
SSDEEP
98304:+3tJYtVtDpMuPXwPAB16YuDZTHZBPPh90xOOWu:oQDTT6YuDdvPD0xOo
Malware Config
Targets
-
-
Target
8e935020c94a5826fdd960cc25ef0fd6_JaffaCakes118
-
Size
4.9MB
-
MD5
8e935020c94a5826fdd960cc25ef0fd6
-
SHA1
842816d57a5b716a39f281702bf733c75c58aa76
-
SHA256
47204244088727aed359cdc4d7a5f3139f2821b0e11e6dacaca3c7269146ef12
-
SHA512
c30787ab49c8127f23cc5616ccd91b1ec43bf565bbf450712003d35bed5cba38e2dba44c771b32c77a7a0014e4811af31e642b4a29d5de2dd18bb0bb6e74ba76
-
SSDEEP
98304:+3tJYtVtDpMuPXwPAB16YuDZTHZBPPh90xOOWu:oQDTT6YuDdvPD0xOo
Score8/10-
Checks if the Android device is rooted.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the phone number (MSISDN for GSM devices)
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Requests cell location
Uses Android APIs to to get current cell information.
-