General
-
Target
d0e28255ca662506e1072cf52ebdd225_JaffaCakes118
-
Size
2.1MB
-
Sample
240907-cw6xgszhnl
-
MD5
d0e28255ca662506e1072cf52ebdd225
-
SHA1
e322d8bee03d612835a7d36f4310107b00e05bcd
-
SHA256
93e159245485ca5daf09699bd2244a64e96de475c6e24721b0b06ef00f9657cd
-
SHA512
041c971227bfd0fc7547fd53236abd25d0e7f143b2e0ca7c62583f081c2c53506a9fc02fe307c033424a9c85f7e255fe214fbcaf697386d143a2d2156d23f55e
-
SSDEEP
49152:ZHA8D1AUBp7xbufjxFvkwyCIeM9UMpLqcn9xWuQm/KkUuY0:hAin7tCF8lTd9DpbWA/nUuY0
Malware Config
Targets
-
-
Target
d0e28255ca662506e1072cf52ebdd225_JaffaCakes118
-
Size
2.1MB
-
MD5
d0e28255ca662506e1072cf52ebdd225
-
SHA1
e322d8bee03d612835a7d36f4310107b00e05bcd
-
SHA256
93e159245485ca5daf09699bd2244a64e96de475c6e24721b0b06ef00f9657cd
-
SHA512
041c971227bfd0fc7547fd53236abd25d0e7f143b2e0ca7c62583f081c2c53506a9fc02fe307c033424a9c85f7e255fe214fbcaf697386d143a2d2156d23f55e
-
SSDEEP
49152:ZHA8D1AUBp7xbufjxFvkwyCIeM9UMpLqcn9xWuQm/KkUuY0:hAin7tCF8lTd9DpbWA/nUuY0
Score7/10-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Queries the phone number (MSISDN for GSM devices)
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Acquires the wake lock
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Reads information about phone network operator.
-