General
-
Target
a19b7f199238e38abe03870f25b150fd_JaffaCakes118
-
Size
9.3MB
-
Sample
240817-hwnc2awfkl
-
MD5
a19b7f199238e38abe03870f25b150fd
-
SHA1
5c1b6d1ed17754001d26425510a98f9b0b3caaba
-
SHA256
ffbc75c9082049c7bbf55b7d21e50f4c04c94998ecb0cb8a793255fe51ce7034
-
SHA512
c5666c243ed73e9b3456c9de5ab8bd906ae20dd52ee35042c7945f8c7e8ef87c2c63129b7749319d9493281864702fdfe97e5573eba12402338a906eb31d2ec4
-
SSDEEP
196608:lNAr90/Ck6sIpx8MgdJwHzUQIl+ExgJRwGr+adBqNlHR19QO7S:lY9kCvWJwHz8iJRLCYBqjSd
Malware Config
Targets
-
-
Target
a19b7f199238e38abe03870f25b150fd_JaffaCakes118
-
Size
9.3MB
-
MD5
a19b7f199238e38abe03870f25b150fd
-
SHA1
5c1b6d1ed17754001d26425510a98f9b0b3caaba
-
SHA256
ffbc75c9082049c7bbf55b7d21e50f4c04c94998ecb0cb8a793255fe51ce7034
-
SHA512
c5666c243ed73e9b3456c9de5ab8bd906ae20dd52ee35042c7945f8c7e8ef87c2c63129b7749319d9493281864702fdfe97e5573eba12402338a906eb31d2ec4
-
SSDEEP
196608:lNAr90/Ck6sIpx8MgdJwHzUQIl+ExgJRwGr+adBqNlHR19QO7S:lY9kCvWJwHz8iJRLCYBqjSd
Score7/10-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Reads information about phone network operator.
-
Listens for changes in the sensor environment (might be used to detect emulation)
-
MITRE ATT&CK Mobile v15
Defense Evasion
Execution Guardrails
1Geofencing
1Hide Artifacts
1User Evasion
1Virtualization/Sandbox Evasion
1System Checks
1