56cd7223b0455aa168a5a5b2979aa19a4ba6be7503603c0d4c965fb67f2faaef | Triage

Sharing

General

Target

aa1799929144e9266156a68b4e3d1a00_JaffaCakes118
Size

6.0MB
Sample

240819-h5v48s1cka
MD5

aa1799929144e9266156a68b4e3d1a00
SHA1

82e122d1a1f86d7fc2c35d0ba0324f374118604b
SHA256

56cd7223b0455aa168a5a5b2979aa19a4ba6be7503603c0d4c965fb67f2faaef
SHA512

4817ebd1e6067c7d7d111750f43404a6af499a086d7df10166feffd5e3714cf4f8e307ae3ce9e2fce237b4b52b15ad5f6511037cb28329b3e403e37745f4339f
SSDEEP

196608:7tKW5eQM0ET/Vyd+ho4GYEzFDyaol3M0Bz:r5DM0ETodh4oeawvp

Score

6^/10

android discovery impact

Malware Config

Targets

- Target
  
  aa1799929144e9266156a68b4e3d1a00_JaffaCakes118
- Size
  
  6.0MB
- MD5
  
  aa1799929144e9266156a68b4e3d1a00
- SHA1
  
  82e122d1a1f86d7fc2c35d0ba0324f374118604b
- SHA256
  
  56cd7223b0455aa168a5a5b2979aa19a4ba6be7503603c0d4c965fb67f2faaef
- SHA512
  
  4817ebd1e6067c7d7d111750f43404a6af499a086d7df10166feffd5e3714cf4f8e307ae3ce9e2fce237b4b52b15ad5f6511037cb28329b3e403e37745f4339f
- SSDEEP
  
  196608:7tKW5eQM0ET/Vyd+ho4GYEzFDyaol3M0Bz:r5DM0ETodh4oeawvp
Score

6^/10

discovery impact
- Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
- Queries information about active data network
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryimpact

behavioral2

discoveryimpact