General
-
Target
b1b3aea561993b34b0d7a60f6a53a29d_JaffaCakes118
-
Size
12.3MB
-
Sample
240821-cb62ravbmd
-
MD5
b1b3aea561993b34b0d7a60f6a53a29d
-
SHA1
c14ffad9228714388a1b9f05b846d6bda8817b0c
-
SHA256
96bd074e7419397c0380bc861993332a13d2247c42f10386c4315164c2e7a59f
-
SHA512
1f3188e45d3bf9ace8066e8673b09fa0a854cc38e3f70365fd10a4b76c3ea601885456463b65a93242cb2b7a76f8f5049969b9bffaa3f85f092245c7fe8d9698
-
SSDEEP
196608:twCrcGaDWeGSQ44iGMLq44ZMEBVl7mpwmAEWB61yy75qR4WdjyWCQxfZ3FFpwN+T:xrcGnD3ywmAh6bA4ujHhbaK
Malware Config
Targets
-
-
Target
b1b3aea561993b34b0d7a60f6a53a29d_JaffaCakes118
-
Size
12.3MB
-
MD5
b1b3aea561993b34b0d7a60f6a53a29d
-
SHA1
c14ffad9228714388a1b9f05b846d6bda8817b0c
-
SHA256
96bd074e7419397c0380bc861993332a13d2247c42f10386c4315164c2e7a59f
-
SHA512
1f3188e45d3bf9ace8066e8673b09fa0a854cc38e3f70365fd10a4b76c3ea601885456463b65a93242cb2b7a76f8f5049969b9bffaa3f85f092245c7fe8d9698
-
SSDEEP
196608:twCrcGaDWeGSQ44iGMLq44ZMEBVl7mpwmAEWB61yy75qR4WdjyWCQxfZ3FFpwN+T:xrcGnD3ywmAh6bA4ujHhbaK
Score7/10-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-