3e2ca6ce1d882e23d0918fa36bfd8e1c73ff486435331830c6c19f5777450daa | Triage

Sharing

General

Target

b60715bd6ad101b3c1145ab476b45356_JaffaCakes118
Size

14.7MB
Sample

240822-c3jqjaxhrn
MD5

b60715bd6ad101b3c1145ab476b45356
SHA1

ae550f70f035d1b65b108fd4c26edac5e1e63e9a
SHA256

3e2ca6ce1d882e23d0918fa36bfd8e1c73ff486435331830c6c19f5777450daa
SHA512

252425a2fb1263f4c0a40f120ed5ffc2143323bc04d2c4dd02c61f44dc9358470301bec56787e82079f85f59c2656b335fcd7e0defadaab1ba00b0ea8c011e5e
SSDEEP

393216:k98xDofzwy+5epmhCDr0bCG0bly8nm6yoMStboIAw:kWZny+5eECXCCGOfHESxoI1

Score

8^/10

android discovery evasion impact persistence

Malware Config

Targets

- Target
  
  b60715bd6ad101b3c1145ab476b45356_JaffaCakes118
- Size
  
  14.7MB
- MD5
  
  b60715bd6ad101b3c1145ab476b45356
- SHA1
  
  ae550f70f035d1b65b108fd4c26edac5e1e63e9a
- SHA256
  
  3e2ca6ce1d882e23d0918fa36bfd8e1c73ff486435331830c6c19f5777450daa
- SHA512
  
  252425a2fb1263f4c0a40f120ed5ffc2143323bc04d2c4dd02c61f44dc9358470301bec56787e82079f85f59c2656b335fcd7e0defadaab1ba00b0ea8c011e5e
- SSDEEP
  
  393216:k98xDofzwy+5epmhCDr0bCG0bly8nm6yoMStboIAw:kWZny+5eECXCCGOfHESxoI1
Score

8^/10

discovery evasion impact persistence
- Checks if the Android device is rooted.
  evasion
- Checks known Qemu files.
  Checks for known Qemu files that exist on Android virtual device images.
  evasion
- Checks known Qemu pipes.
  Checks for known pipes used by the Android emulator to communicate with the host.
  evasion
- Queries information about active data network
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence