bf290d35a256eae8bdc91a27b4f47ac12187e57f11ec90ad06a6644a9635ba00

Analysis

max time kernel
3s
max time network
137s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
17/08/2024, 21:08

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

a42556f725139f2effb5b2e5ff661602_JaffaCakes118.apk
Size

20.3MB
MD5

a42556f725139f2effb5b2e5ff661602
SHA1

05a2bc15d21c4cc02d165216b22854543e7f3bee
SHA256

bf290d35a256eae8bdc91a27b4f47ac12187e57f11ec90ad06a6644a9635ba00
SHA512

0a16c38ccf2bc36048c1947b295b4b23e7077270564347d08b39be657939785d20a1002c3ff7dcf03d37f8002676387cc1afd2cb99cdf2853c146b6a44169cc2
SSDEEP

393216:z1uOWXUjNIZ4HgJ2kRLYFy9PC3jytEIPyR/mCJGJLcYVxptMpKHdyKHg+6XifHL2:5paKIZ4HgpKA9KTQE3uCIhVxptMpayK+

Score

6^/10

discovery

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shenma.passenger

com.shenma.passenger
1⤵
- Queries information about active data network
PID:5047

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.shenma.passenger/.jiagu/classes.dex

Filesize
4.1MB

MD5
d39a8e1a0a05bd4834018346ae107882

SHA1
3332afeddb6d3537a8ed03a4c7a554f38f828a3e

SHA256
3fd8e3c1df28fa9fb9b669d347df758c04dd3a9863f3163ee9a382039f5e985a

SHA512
8a551ae1efe554c1826ccb006a71a1d8bd46a0a5329b4ac1157debbff020ad96a7115b13ec88709b18a63b0e67042f91161eef5e5461b9e32241379298702855

Download Submit
/data/data/com.shenma.passenger/.jiagu/libjiagu.so

Filesize
358KB

MD5
0f988c9a7d52923d162bbfe4d2ea8171

SHA1
0084318df7665847bc5cabac2f4b7cd2bdc02a34

SHA256
c548db6ffa4e11cf80c934aeb77d40397e7aeed067a89799262467d552921bce

SHA512
926bbdc706705674e3cd19186990b5c30d1b7b7141c6dd7ace9876899f2bd92275793a5b76e7becc8c6de82766a3dd075ebab9fd8ccb11d3e077b49c613774b9

Download Submit
/data/data/com.shenma.passenger/.jiagu/libjiagu_64.so

Filesize
348KB

MD5
3960ccb43f0dcbece693ef11309acba3

SHA1
3246e0358a386d964dae42387d13054f36ab5141

SHA256
22c4ab7ddf8ef43f242e82a1b984f324fd3775d00d973a19662c4e93a31be003

SHA512
44c7a206e9f0fa8c8893dcefba5d495bd3fe249b7f845d3649a555cf9bbc30a3455fae89991635276e447ce82778d5b1175d5a7ec87189a085edabc0cf4b368f

Download Submit