67c52f56d75eb5b50f52acf0c9fa920c1350b4c8a557876ab1615803358d26ce | Triage

Analysis

max time kernel
64s
max time network
158s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
11/09/2024, 22:55

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

db5f139b2cbf7ac72f25fa9e50b4f64a_JaffaCakes118.apk
Size

9.1MB
MD5

db5f139b2cbf7ac72f25fa9e50b4f64a
SHA1

f65739957082cabe55cf9123c05bcd28ea3da822
SHA256

67c52f56d75eb5b50f52acf0c9fa920c1350b4c8a557876ab1615803358d26ce
SHA512

b57276da66c538f9b2b5a918c10cc66eac63558cbf8921df3ba129babd9f033cacc803f182a1501fbca2323609bca512dd2f3d5a4c914b8e4d2c69089ec48f88
SSDEEP

196608:ayX+RCyNz6PSNfsUlaWGk/dViOiYkRoNDgmfWE:OXzgS1sUlaZk/dV14C79

Score

6^/10

discovery impact persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.aitype.android.emojinew

Queries information about active data network 1 TTPs 1 IoCs

System Network Connections Discovery

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.aitype.android.emojinew

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

Broadcast Receivers

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.aitype.android.emojinew

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

Data Encrypted for Impact

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.aitype.android.emojinew

com.aitype.android.emojinew
1⤵
- Acquires the wake lock
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4964

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0d55f4cb8ec87aa586561fe5891284a5

SHA1
1f7f5d4a268d271a0782b9d1e4501b8bedfdfee4

SHA256
c5170b232038c6c083fc46ac9d35edc59082db492ee604fed3245555d9610b2a

SHA512
5e136ce26204754abac63d4264cb574c6063bc91226308eec84b2000b8fbbd72d507f61598b7ae9d842037498966a1d1f772fad984e2d686e1e2c2bbcdb502f2

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8c343c2c99c35abce807fb7acb68f41a

SHA1
8b14add04e849eb66c47f12aaa8f8bc3ac16d604

SHA256
07429a01af9e4566f3eecaa5af710053675f9dcde07f2f3258067409b7d2cdae

SHA512
4f0cdfa35b921af2cee4f0320d5460292539adfaf4a45c4072d14db50289391add927f79628dad01e4725c0031682e8c9f929f93efe952514e295074f4b50e22

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db

Filesize
16KB

MD5
93e9c76ee27018071eac5f7eb8dfae01

SHA1
3694b85a72fccc39b8fe8ba670d2a4f8d3c79897

SHA256
3e6fba01257095272662344c064e3024515921d5d21985a9346cec1044b04a28

SHA512
930d74016b7d8b0ef956a62bb8d11e7fe423d26a9b2dd513271e8bb5fdb25bdb6259a4d372f93e124a80ce3ae3d8e3bd26b4558c8108066aefca564e628550b0

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db

Filesize
16KB

MD5
552625ad5bc3127a27db080719565b80

SHA1
d96393e4fc325c016140b23fd3aa4234afc36a19

SHA256
ac9d891018cbc495d5c7f6491cd89094cca1ad2fb2c80dca93afe6911e0950de

SHA512
5f13eb5fc54a17638921ef212591b36861bb140d74432dff92e5017f170488311e7e4463a705379ca22021edd2bd2cbd87cc2b17c7628e07ade379eaa33d449b

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
df6ae108180f4e3fcbd06081846aa378

SHA1
fde77d3acf86b2eb795f7280d2e973a961eddfaa

SHA256
869ece79f4aa36aff92a41e9e8b852aa61ed873a9e1e3a48b892de3013c3403d

SHA512
9053b799c0705fddf6d1bee35c9346d72ee47e6b0497d8dbfeb8b82eac42b756a213825d3b3b52e7ad6125e424d4553464b671b859107a72103eb581e3ad2e22

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6ec0d26789df62ae16d234397f34edf3

SHA1
667c059dd4cff0112342f413568ef6c336499bf6

SHA256
987c0ecdf5dd038053fc40da758642c1805efe276d007f8289f1908e79141937

SHA512
62ed7b2134de1334ec63a9261b3ad97023647615b103325d766970e5985e7fa22bc94c9ab35d32c5bfff6017fc3b041ea3bdc2dd2fc28bae851c36500f4ec277

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
4c4e5aec54d95dcaad5decd619f041bf

SHA1
5dcbd235881e45c3b4d63cb297f0b54371784839

SHA256
8d9e7cbd33780ec7718a88c8e1eeea32f73a00773dde520598d24026310ac70a

SHA512
1aa90fc195741c2f4a7650313942bbeb67dab48a7cfa4b5d900661e29c0e9da464a825b377c2a6459cdcfa2d7f7b56b67ac5bcfa5273cb87c9889dcc084a1925

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
36798e09664f4c5f8b16067f1c5dee6b

SHA1
de12412f14253630877160f721a72a71a71534b2

SHA256
fa5bae8c27f298cdc89c25008782077d5569ddf897c40da61982a59aa5f3bbaf

SHA512
7d671489287aa4698ef0b4e2bb0ff5e6971664e4f9ad5c6a40c515d236b6df9c9cd159df110277590d4347b3d896ce1f756bf57be5b52c8258c89aca092ddb5f

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
49d90420b99737d9cf6c7048973949ad

SHA1
9d3a862f1eb8f810023c7983f887a0f2058c62cb

SHA256
325b0cd96ddb1167b52ed3362a79982ada3fde536103c9856970c150dc57c00d

SHA512
7aa342d131cc2e282b640205e9d8ce0c2ad84cf47bfa410e669e40e77c667b8ed99557070ed848dbd7b593e3a162e15d62bca18f76c29b8df702dd0dc006d094

Download Submit
/data/data/com.aitype.android.emojinew/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
39d012cc5008083ef6d883bebec5b727

SHA1
b4fb002b31f9eb60326649882f2f6af7b0fdbf5c

SHA256
589d5406cf0d83e76001fcfea9e0c97ff8459a7fbeb9c5f1679cced039664d39

SHA512
38d3375da4db0c5b92c70ffabbe5dacfdec02483d76d44528f93fa8a17110780a198cc1db8d48332c2e1201f1d9d70d89f9bd02664f5387a759320f32d35465e

Download Submit
/data/data/com.aitype.android.emojinew/files/.YFlurrySenderIndex.info.AnalyticsData_N597BS46RHZW7JKDZ37S_266

Filesize
88B

MD5
5ca2f35b03b48ab80ceeefc18b7e88bd

SHA1
604b5b021eea90dc1a160e03af735acf01fd67c9

SHA256
b240696e30ce9b3095ffb42da57be8cfdf6f31cbc6d51af8cd8f7ecf191401f7

SHA512
d073138b2dc5545580d3003f669719cca6920c50eddea453445fb045e86376e90626122ede395b0d20d56921d6dfd27c3669af955fbdf62cfc0d6267edf4b8a2

Download Submit
/data/data/com.aitype.android.emojinew/files/.YFlurrySenderIndex.info.AnalyticsMain

Filesize
72B

MD5
b7ff3da7b5469f4b4d6606073c373bfc

SHA1
adce059cd44f07801d19d12ae9d469b7d9e9c564

SHA256
edc07cecbaea5262ff553f9827207e762aced06051440c98ecabd97b03c7082f

SHA512
28389d4223af00e3ea3353206a92d1b18c3ad1749d10a84a24ec51bfd054437528f64fafeb9801366023a1e2e5e5e1922ba9a53d28a2bcee663b9ce397232c7d

Download Submit
/data/data/com.aitype.android.emojinew/files/.yflurrydatasenderblock.40c2610a-a6c6-4bbd-99eb-591eb0b67a83

Filesize
358B

MD5
5f141106a3e3a4074a4bf69c27ac2aca

SHA1
9a444dfedecabf8f2df60c3f9f5063c7f6b2a4e6

SHA256
244f1d72000756de88b7b3321e5e0c63b3562b746345073c582c516ec699953a

SHA512
854397aba729f844607a3afe9c25cf683907439abe877bec6c9942203e9199854828022bc5301715ba6035c122e67502bf24c09ab0b6873758e8702cfa5a4590

Download Submit
/data/data/com.aitype.android.emojinew/no_backup/.flurryNoBackup/installationNum

Filesize
100B

MD5
4e298117e24c5fbfbe21754df4e4f931

SHA1
ab1811c29f020ec8c79c59935d42ca47d7303227

SHA256
e468a7bbe25b6ab1906580fdfb5c558fcbd532f15b5d3ab743a120c62dd4a70e

SHA512
c6cad483aedd6cf9f91bf34e84087d8147c230c1b3ce8cc0d699e7bf1d2f61358514a38283977496a657b140494e39a1724f1ca15ca30dd2c43c6ffce4dbb78b

Download Submit
/data/data/com.aitype.android.emojinew/no_backup/com.google.InstanceId.properties

Filesize
2KB

MD5
bb5f3a7540f927168d57af0001a59865

SHA1
9ddd00898ea2b6156b2eee1113191c2745e5bea2

SHA256
289fb5c735c885e6b9410a3ba5f9ea7ed7292cafd4b29e2000f0345b9b7382ca

SHA512
b2958343a71a09b53987c8634581a9665e3709c9dfca798d469a8d5a538e647d01de85026d861dd5c859376c3035bb242ca415ba9cd5393ea5508643b096b4cb

Download Submit