3536b711dfea2d1500ffddcb26d38544face161e623c09f50d58d6ad6e985093

Analysis

max time kernel
128s
max time network
159s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
11/09/2024, 05:32

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

d9b4b799efd041e06b1f845956363f12_JaffaCakes118.apk
Size

11.6MB
MD5

d9b4b799efd041e06b1f845956363f12
SHA1

82150261b44cca1600086bd70f04bffbd6732beb
SHA256

3536b711dfea2d1500ffddcb26d38544face161e623c09f50d58d6ad6e985093
SHA512

186ef8ffb3513ad83fce78fa5f19c4838f18423ec0f78d8d0339e67c7332e83815db28f7b7fb800ebc7ef341da7456c557c2ae829d2951f0798a4edf7492c105
SSDEEP

196608:JDtDvvSzkP/8NsB/OAOonMuLWPm3NGUSDxyKmQR/nS+Sxk1nCJ5Q/+bVSy1FcJ:dtDvl/KshOAO30S+NGUcoQJVg5Q+bVSb

Score

7^/10

banker collection discovery

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Reads the content of photos stored on the user's device. 1 TTPs 1 IoCs

collection

Data from Local System

T1533

description	ioc	Process
URI accessed for read	content://media/external/images/media	com.frostwire.android

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.frostwire.android

com.frostwire.android
1⤵
- Reads the content of photos stored on the user's device.
- Queries information about active data network
PID:4446

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Data from Local System

T1533

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.frostwire.android/databases/applications.db

Filesize
52KB

MD5
3f593e848857cba802bd588ad606d3f1

SHA1
b0987cbffd45c4ab1c7bc7c93c93fb356cb6653c

SHA256
6a0fa220471f8b192bcf49f75f84330fa9fad42e4d27e8de26cf0f87a714bee2

SHA512
7e934bbef0cf4c85874df9c4c29aff0e0a05e4f5e4f2661c0f5d439b93a312b30e96f2f966ab7b080426746260cac1bb1927cffdcc016e6f72d96bfc43132241

Download Submit
/data/user/0/com.frostwire.android/databases/applications.db-journal

Filesize
8KB

MD5
ea7ba1dbfb3f45133b533af40aef78e6

SHA1
8022b050bc9cc11cc5b67343b37f8dfce6c4ac5d

SHA256
92567fe35f03c6bbfa8500f401cb205966c13512ff37abefef12787caa80f070

SHA512
756808fc1d34d8fc918b30834a8761d85fe180c6becc76112c6b12dd620be7177b588817c6c3a9f3a6ad898e5fe592d7703e9dfaba0198412a4bd2ffc76391b0

Download Submit
/data/user/0/com.frostwire.android/databases/applications.db-journal

Filesize
8KB

MD5
46a9b321c869186296c2a8e0c3b89900

SHA1
ed745fa85a0d9c56fd123e8fa04547fbc315871b

SHA256
1edfe0938bf109d5f993324de06337dad4d6da8b9825c662fc2bd90e91f1ad30

SHA512
64ba849c5d33f6ea0a8af6f07741e8a08a3f41ab6d003c5b3a02d72376373c3dff3ec7c742a1271511c4c8421b415e67a9979335282945bcc872337df1e762d9

Download Submit
/data/user/0/com.frostwire.android/databases/applications.db-journal

Filesize
12KB

MD5
5159b69c38f7a4e36bbe7cf36c72846d

SHA1
748817c08a8c048ae612c7ee8b5d9371067c657f

SHA256
ca70390c7484a90d5121b3222ed49f5a20449b458469988ff197fa9403161d98

SHA512
ed0e07c0b6ca44fd4668a95256650d0dfe315aef9f49e432ce46da4b34e06620e7e2802bd9204ed7a938607b32e634b6b43ba555f4b596ad3e32dc7ec748e9be

Download Submit
/data/user/0/com.frostwire.android/databases/applications.db-journal

Filesize
12KB

MD5
029337d26b84161e5d002d043b79e427

SHA1
ec0f4d97ca236f25cc83f5c4bf1d4967722450df

SHA256
1f6f641d85fb5c0feff7a7fd0616a17afa8e5c9cdbda7b0085430ae717fb5158

SHA512
9b0d81a6ef65bc8e62ef1c4f914949842f57a89e454461fdaae5c410fece9e9a849306f7c5054f121398e2eb644996a0a21a4812a2340a149c228af980f02560

Download Submit
/data/user/0/com.frostwire.android/databases/applications.db-journal

Filesize
16KB

MD5
d4bc6022fe67a5d221ea1a26a0c2a11c

SHA1
61fbd41aa6a6a9facb1712aed9a9d61aaa729f28

SHA256
00b1f7ed96638dda8cb8ea378e39f9b7061b412d9aac02ee0d8adcbc79c7d051

SHA512
89b63a3cf1e00bd62ffe5d2ae300bb3e17ed546117424db4eb5dc7a20be4c4e473e2c12f3fc5f0666b5fe86a7efe45aa61702d0d6735c2b77c3c75da2f757d38

Download Submit
/data/user/0/com.frostwire.android/databases/applications.db-journal

Filesize
512B

MD5
0b362127de8473caadd2014b81cf8bc8

SHA1
e700e573dfd1934882a69ed18d55784a6a6bf714

SHA256
1f0f2bd336dd98231d9772cdc81f56789fb9367eca8fff193bc1d6a68a4bc51d

SHA512
71938cc79a8d82ae866c42fed5c3e360bf973a6323b73c6ff1ad5da95c50c5cc33a289f533bfaa88be708249be154ea3d7a105f4fccfee3014cdc460f8e4bc40

Download Submit
/data/user/0/com.frostwire.android/databases/documents.db

Filesize
20KB

MD5
945d050d230283b759e0887258087e14

SHA1
552bcf846b8d471092e44157fa70ab279e0ac2b9

SHA256
ce12b05e14230407554f4c2be25e6d479af961041b4eb56489b550023a8226a4

SHA512
b43295c921a64c95a0d8caacfbcc1f412c3f9a473d643d1a4bcebc4ad83f483d141c39a9d6c15b33450237e51c32d1c26702a69718fa1d177c6328012ecb3d56

Download Submit
/data/user/0/com.frostwire.android/databases/documents.db-journal

Filesize
512B

MD5
f4fa91c1e43e7d01386825e6e8ed10ad

SHA1
3b7711ddbe093fdc2849debe5a882441767cd768

SHA256
7205adce0cb20fe608b393e684edd96417682c7e6c54a010890152af7174d2b5

SHA512
ef6bc7dad2ca48d154562dbeee60aad917d966f3b26d1fe5792860f149fbddadbdf3b1cceef077c86aa06b92a207b921137a966a3f412f74dd33f5f7b8a6c9e8

Download Submit
/data/user/0/com.frostwire.android/databases/documents.db-journal

Filesize
8KB

MD5
ba5d49371e84c0b93d9fe64c0561bb95

SHA1
690c0784893146141439dd4a0d65bc0f72f4f55d

SHA256
a3d5f21bc315e68402425c051551218132dcb9c41aa379b59608d60e44762e19

SHA512
cede58a03944bbc255d1d8ae36ed7cf3527f202d56857aeccb561287fd12513e9de763d7593c619e871de64e8ac7949d68b9803e638fe9d004c9284864b3739a

Download Submit
/data/user/0/com.frostwire.android/databases/documents.db-journal

Filesize
8KB

MD5
12fce1f93df4a549ff95e4ede71c4d3f

SHA1
a023f1f0fefb43013ecaa1a5715d8fcb7eb1fa3e

SHA256
28d08df0947ee41e9be1340d84e9b15f9f0bbd5cd20cf2c3bb724ad8c96a9f58

SHA512
06ef8a34fab5b4c19e887ea1f848c06bbe934802664c67cc5b7b2a63b7867726c5f1fbb4b5d289fef71e487ed08612b828a2de5cd9a6df0f68462dc56fff9caf

Download Submit
/storage/emulated/0/Android/data/com.frostwire.android/cache/http/257acef956bb7cd4282631f21ad0d92f.0.tmp (deleted)

Filesize
418B

MD5
f7223d2b1bb35425be6fa8f715d8d7b9

SHA1
615b81f310452ed198a1752887ad743566282928

SHA256
03c5b8bcfac60725a886f3ac55047ce21b2e1902ea6ccd00b872797239323c5c

SHA512
d94e2a34529533304b01708d6268846804d98afe0a46c58da6eae61af5d53e9e8117add52806316ed67ad992af9eae795d3eb7456dabea5207700075278bf11f

Download Submit
/storage/emulated/0/Android/data/com.frostwire.android/cache/http/257acef956bb7cd4282631f21ad0d92f.1.tmp (deleted)

Filesize
631B

MD5
50e18db01779631393944118c19e23f8

SHA1
16af04a2f20d6815c7118a9ebc4e4cd94c978ea8

SHA256
1a4531f4b96ac4a4325c507a6a940fd0d21445ef84869019a39fc2bc7a7fee9b

SHA512
c5231de972f7fd5de10d9c2c4d286fdc3a024d5830ff63c4189c21d21a51f69604622045d4f7f281388c2415417c09897d365ba593e42f86519567099fba0841

Download Submit
/storage/emulated/0/Android/data/com.frostwire.android/cache/http/journal

Filesize
122B

MD5
994aee76d1ad66f5692180a7f0539bb3

SHA1
d557e71e03e08655a7558c2228903cc061b43640

SHA256
74871cd0f5b8b3ed17d2496b8dd1405c800b1e2eb51b8aa3e7589cdcc0e8cd14

SHA512
bc9f849cbc294ed5da0ca17f56be34c0dcd24e0f3a63cc925bc68277ba790fd5adbcd2cf6657c641f708ad890e31fff3897c79d6e2344b6b3e6140ca7fe488c9

Download Submit
/storage/emulated/0/Android/data/com.frostwire.android/cache/http/journal.tmp (deleted)

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/storage/emulated/0/Android/data/com.frostwire.android/cache/picasso/journal.tmp (deleted)

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/storage/emulated/0/Android/data/com.frostwire.android/files/libtorrent/settings.dat (deleted)

Filesize
561B

MD5
0ab6a19ae2b4a23941972d7db1598e20

SHA1
d914e004d7ca04004d07bbf9f3a53a6512b31e57

SHA256
be5f73457040ea699f1157e2137fb39c2924ef61c6e74bc6f8a28f236066b859

SHA512
5a62055a7e6caf17bb2533f61fa7bf3f9d5c53350a8f718381d5a1996c79d12d11efbcd843756bda5b8817c9ded79c6108e9264f4e201d5a18b070a94f82b7c2

Download Submit