Overview

overview

6

Static

static

6

bde5e37e91...18.apk

android-9-x86

6

Analysis

  • max time kernel
    10s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    24/08/2024, 04:32

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    bde5e37e9157be2406a346eb3392e89e_JaffaCakes118.apk

  • Size

    17.2MB

  • MD5

    bde5e37e9157be2406a346eb3392e89e

  • SHA1

    ab48a6b7e1577890c50ad42b7473186263998c65

  • SHA256

    9407e0d5a27c993d0a5b0a127aa8b470a538ced2dfa1266ef833ccd438994c48

  • SHA512

    f88698684194b97cfbb03dd087abfb3e137a9a9aa2dc1fc5cc60f24e05a28f5a478f05b308b625eb11768f196006e089a93e0aef46e44f8303ea2cd2f84db9aa

  • SSDEEP

    393216:x6m6a6u656X6s6I62GhM/yrn4scrnFmT8zgvkfprWt8+GM3TsaxMHR8:0iy7LcBckfNWGT58

Score
6/10
discovery

Malware Config

Signatures

  • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Checks CPU information 2 TTPs 1 IoCs

Processes

  • com.hydbk.huangyedabiaoke
    1⤵
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Checks CPU information
    PID:4254
    • getprop ro.product.cpu.abi
      2⤵
        PID:4292

    Network

          MITRE ATT&CK Mobile v15

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/com.hydbk.huangyedabiaoke/app_xwalkcore/libxwalkcore.so.tmp
            Filesize

            21.0MB

            MD5

            e9bdc278b4674038e8b76a1339a90bb8

            SHA1

            027697f1f67b4be8e60e85ec15af000385cf6e51

            SHA256

            6e8b694193196c4521df4d99c64f9ca6310b836370e1c417d6036713a68b566a

            SHA512

            9a1949dbe03423e5ebf22b69447ce2cdc91360e5942372c45b27ca17e003242afc819febfb3feaa504d0495a7c8a07c5ae5e01a258e3b9dd855817ea13fa68a1

            Download Submit

          • /data/data/com.hydbk.huangyedabiaoke/files/umeng_it.cache
            Filesize

            310B

            MD5

            80b00d87d47089950f459377cac3b793

            SHA1

            af43e6a946a57b4567deb0d9dc55058631b69b97

            SHA256

            7f5caca41c17c37de9185024d169b5872b6076eaa674ad14f65a197dac9b8592

            SHA512

            3942d02ebf9aba6c602c8a0d7a63c4ac7e6d402b1f3f2f2e5de98545e3547ab85a793fffd8dc91cff31cc0fbaf48faf80036f2fa9271c51f064f60e6d3ea13ec

            Download Submit