5528b88f56ac02ec235fe1f7b0fc19d3edf98d465bc936e5bcd8c8e3851b44e5

Analysis

max time kernel
124s
max time network
159s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
23-08-2024 17:15

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

bc9c9f489cf028ad2920daccdd2662fc_JaffaCakes118.apk
Size

2.3MB
MD5

bc9c9f489cf028ad2920daccdd2662fc
SHA1

8962bec450a1b510d58fcfad08863c80ab28bcb9
SHA256

5528b88f56ac02ec235fe1f7b0fc19d3edf98d465bc936e5bcd8c8e3851b44e5
SHA512

103c8712db80968be51932ed18bf21ab7b27c414dc71a9eb4edb10b1a040813123b198e2a4380bf470aa180fb7e25a47565a913211aab852f80e1c46e61aad4a
SSDEEP

49152:Ekdz2xkwFzfuaeZxzPFw11z2xkw1xeJXFyvgz+DYxZnNNfoyuW/X:jAmE2P7m14m0xep1z+k3nYW/X

Score

6^/10

discovery

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.baike.yiliaobaojian

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.baike.yiliaobaojian

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.baike.yiliaobaojian

com.baike.yiliaobaojian
1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:4936

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.baike.yiliaobaojian/files/mobclick_agent_cached_com.baike.yiliaobaojian

Filesize
105B

MD5
6d26c200786783753900f1db5d399f1e

SHA1
e8927c404ffeb51a916d4ee78157ea633e350d55

SHA256
465ddeb02125257893e863f3eee759140b13288232870f02af5a1f4895540973

SHA512
98284429b76e517616cb40d7571ccfffc776f5ee0ffad57a6075d679bbc405dcc8a47e45ce41439bd48d9c0fb64d5f875ade53acae7196367ac5c0fe7defdcdc

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads