Analysis
-
max time kernel
26s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
29-08-2024 17:53
Behavioral task
behavioral1
Sample
c9523fcf9668345b47d9e45bba4230df_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
c9523fcf9668345b47d9e45bba4230df_JaffaCakes118.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
c9523fcf9668345b47d9e45bba4230df_JaffaCakes118.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
c9523fcf9668345b47d9e45bba4230df_JaffaCakes118.apk
-
Size
364KB
-
MD5
c9523fcf9668345b47d9e45bba4230df
-
SHA1
7ee6d85718148519b1a6a12496757b951490d0d7
-
SHA256
263857fa92a5f89d98d87e90ea1c2160a164b75b2945647c115335da553796db
-
SHA512
f8a943c1044b3fbf085ba93731ebd26caef397aa401b3e05665fd27b2524b5f686f826907e029fae0e20d929e13cb241051235392287e687c553e3d2c7a3b5ed
-
SSDEEP
6144:mRiIPIz/JfxUOaXgcIAdD3C2xhjMRDuZnq1Zgo9ZXI8MI1Mrs/2UWCX5tsb:IPIzFxKX1R35gDsq1ZvSxI/245Q
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener tawk.to.megawinlivechat -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo tawk.to.megawinlivechat -
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo tawk.to.megawinlivechat -
Checks memory information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/meminfo tawk.to.megawinlivechat