a94551c942ab90e3a5fbca9b67076ff8e9f81a5c84305a2080dd4b53be3e86e9

Analysis

max time kernel
2s
max time network
145s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
09/09/2024, 04:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d5a7a0785c4b92225a89821b9134c9c7_JaffaCakes118.apk
Size

29.7MB
MD5

d5a7a0785c4b92225a89821b9134c9c7
SHA1

bd03d99979b9055004b67cb56eef25beb40997fd
SHA256

a94551c942ab90e3a5fbca9b67076ff8e9f81a5c84305a2080dd4b53be3e86e9
SHA512

415a13113dbafff076d17ab9ac5c5d6eb923f9d23ee0e831dc26f44950897374f0027c2f9ec8ab91a71343f9fcdc849d113532efb13598ccafc5f1d42a13dbb6
SSDEEP

786432:JUkI0nvwwW+HUr3ulLu61hzr3u+LPn1h6r3u1Lmk11ho:qIvNcMu63fHPn3awm23o

Score

7^/10

discovery persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.bbx.taxi.mobile

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.bbx.taxi.mobile

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.bbx.taxi.mobile

com.bbx.taxi.mobile
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4242

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/bbxpc_android_driver_port/log/bbxpc_android_driver_port_logs/clientsdklog.log

Filesize
2KB

MD5
b982cd2f7e381eef2524e13f43a7cba8

SHA1
3825f71489dd735dc4502eb2d9cc8b1565c97a2a

SHA256
2e3d716ed80ff77a85fa7c9207030f32c840b92559345fbc37fbad750fcdc289

SHA512
fc78f5476d211bb890ee3388604d8f892ef6b9a854bd7baa00d6964d689d87c46f8d991e527b675d6f97f387f62bcf7e0623882495d477ad7df4e11baea55c01

Download Submit