General
-
Target
d47c6b48a4e6ffdf574ff8e6823753d4_JaffaCakes118
-
Size
25.6MB
-
Sample
240908-qxl6csyerp
-
MD5
d47c6b48a4e6ffdf574ff8e6823753d4
-
SHA1
a0ccc68aa84bf3eff2708ab0cb73fa487d847da3
-
SHA256
6f8364786f317a40d84cd9a917a61388bc9de3ccb07cab60790bf7fb2cb2ad61
-
SHA512
02328c63b1eba374e3c75e5a48b8f96e4bf3731a67c8b0f21bc58c2fc39d1c14082e506f8741331793afbaea23664619eb789e82dc948bb4484f2111dcc54126
-
SSDEEP
786432:4uKvyVzo6YtVhXo4GWOkcoYKrDqE1/qIZg9:ryJhGWfco6Ee
Malware Config
Targets
-
-
Target
d47c6b48a4e6ffdf574ff8e6823753d4_JaffaCakes118
-
Size
25.6MB
-
MD5
d47c6b48a4e6ffdf574ff8e6823753d4
-
SHA1
a0ccc68aa84bf3eff2708ab0cb73fa487d847da3
-
SHA256
6f8364786f317a40d84cd9a917a61388bc9de3ccb07cab60790bf7fb2cb2ad61
-
SHA512
02328c63b1eba374e3c75e5a48b8f96e4bf3731a67c8b0f21bc58c2fc39d1c14082e506f8741331793afbaea23664619eb789e82dc948bb4484f2111dcc54126
-
SSDEEP
786432:4uKvyVzo6YtVhXo4GWOkcoYKrDqE1/qIZg9:ryJhGWfco6Ee
Score8/10-
Checks if the Android device is rooted.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the phone number (MSISDN for GSM devices)
-
Acquires the wake lock
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
Requests cell location
Uses Android APIs to to get current cell information.
-