06d185ff0d701e624dedb652bba812680f3936e2d57af4c5e713458e85923124

Analysis

max time kernel
93s
max time network
147s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
11/09/2024, 07:23

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

d9de0f6db4345dbba68d7a56d8a41ef0_JaffaCakes118.apk
Size

1.7MB
MD5

d9de0f6db4345dbba68d7a56d8a41ef0
SHA1

6358e951ab93ac8bf8553476dc509a1acbeb1ab0
SHA256

06d185ff0d701e624dedb652bba812680f3936e2d57af4c5e713458e85923124
SHA512

21f99e5a3ac8757c0a36e2cbfb887308e5ceeef50186612482b60a3f7c6adc9328a79d557f20dfb676a9de59bf478e58c3202342d5408236c1bb3acc477b46d2
SSDEEP

24576:tsUoCQp92ZDSQqmtJyjNGijUEIa/gzUHdiTTT5Rpnnrq2vi4NQYlDT5JnBWSExoL:qzgV9JyjNLyzU9Kfpn+wxNJN72D9bMN

Score

8^/10

discovery evasion persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.marvelmedia.smartplay.mys
/system/xbin/su	com.marvelmedia.smartplay.mys

Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.marvelmedia.smartplay.mys

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.marvelmedia.smartplay.mys

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Checks the presence of a debugger
evasion

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.marvelmedia.smartplay.mys

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.marvelmedia.smartplay.mys

com.marvelmedia.smartplay.mys
1⤵
- Checks if the Android device is rooted.
- Acquires the wake lock
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks memory information
PID:4963

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.marvelmedia.smartplay.mys/cache/image_manager_disk_cache/3536503ab72dce0ce8aadb762e936e656a5f83c9bf83333888ca090af9690035.0.tmp

Filesize
37KB

MD5
452ce30ec879c10d9e9d962a8662ddcf

SHA1
45eeea0ebe044cd4e4a21e6fc72a557e6e756743

SHA256
12dca606a254e7aa0c59e84bcb3c39fc02910f8c93a0736782f5467c96e892fe

SHA512
0ecf1b4231ee08225b38e97b5dbdff706f0f4f627b4e46f7d5be7f86739d5a98db9390f43d88f1a559160fd5000082e4d23e023449803a5cef661d7143fb5b01

Download Submit
/data/data/com.marvelmedia.smartplay.mys/cache/image_manager_disk_cache/48044be50f9cd59da53473ac02b698c22bf86f92b62107b7e531c188b69cb0db.0.tmp

Filesize
47KB

MD5
7461307c028f3026b04dff1b6b289ede

SHA1
29df3cc41fac16fef81b7f578b38721366726779

SHA256
409dc49634f41a6a3c61ac0eb18d73bbfa2b94e61d1a88d99d167a6d96582bfd

SHA512
175bb5665c5e3712f3198bca7f119db91ffe401751a2b991915bab6ac3ddcdc6637b3d39fb6ab23f9d95de1a479c2069e209ac7acf5d8c3da44ab8b49d930d15

Download Submit
/data/data/com.marvelmedia.smartplay.mys/cache/image_manager_disk_cache/journal

Filesize
397B

MD5
5f6422fc771375049033c88ffce3b367

SHA1
a4d73f1ea46099c19873b5982c5d77c4f2554c15

SHA256
eb222bf7a12fbe0b1d6ade662448657342ecbb584202e5c9e470d0b839d7d103

SHA512
27d3e1bb1eb46ec12e5b658bb55bd117c450af415c5f111d385e05ae5df629db9c36776bbd550904be28ba0952788d39bb071eb69b9e56cd9a6f686851f03407

Download Submit
/data/data/com.marvelmedia.smartplay.mys/cache/image_manager_disk_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de5f2c7a8a0b61bbe4ba309f4eee753a

SHA1
5dc0520a88facf4f87d601e626fdc591c91aad1b

SHA256
1fb930d9e41e6bd748c4181c424691cffb0ab49e6c1050ad24a54c7ac11ae2c1

SHA512
22032abe0a1c4bb780381172bd9d6ded7b6c03586741b4297b8f5f3dbec4f5ebb3ac01c36773fb1d4c5d38fc90553e4ab0196acf7e0b27d9d224e34286148a73

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c2982bd87c13b2249517bad0b98940af

SHA1
b0a49b3d3db904a88fddb14f006e87b7afed4665

SHA256
3f58c58f49ff7a8f1b5b200aa37c6774f6333e769629cb0087562e17df43c5e1

SHA512
e51e5258662c9339de779d9d4c5c5fb0182966d184392d52a5c34630bfc2914804ba58fde9b940ec825157d83ad1012b1d6d9c2f32b25a8a188661767626a71e

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a26fcc902191ad7c6ccc9d745c412d4b

SHA1
504a6e8ef70f2f4de9f2ed4a387d2549a0d8f1b8

SHA256
9be435a895206cee35cde1282ce3054ca411907f309412cb4e04f49519c0cb89

SHA512
568687882f5039e6c4645ebb19dfe8305e09f89010dca34d2ddab87717855e8370a184f4b1f9193f739dc28e4ffbce9523314edf7a8c430d4c1363a6a8b270b5

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d93e4b0a1211abe578ff608d33ae38e6

SHA1
0b11b7ea0d16a4c969c9cac750521e57f38accd9

SHA256
226a81958bbd6810da9ec610e905ee6cb15096ccf1a345c2cf14d2efcd441399

SHA512
2ad394111b6f9711abd9f57627352984b2f81bdfd39e17dceeec69c9d88e0d63d1a67b6d19992296c6bc706b68c47f1a701c181d7d93f66ec955b27ae90e2e38

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
b4d7041a721113b68837b6eff105084e

SHA1
a878fffa7e914be36901d33ee841356cfa0f256f

SHA256
02f2087beeee3d3865462b03a2b16adac62364b31882e6f5df11103f32602282

SHA512
17c265ee5c87531f496e1cd15d80ddd1a0bb4c7dcd905deb2fa158f550fe3a2a74667384080353ee4e96d308ab0fe82120035e9b7b9c16ba86a0963f39a90941

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
eabb7d3bd17290f120e3fd9de81a8f94

SHA1
405b31c905aab57b77564e6b18cb4f8d049b1e64

SHA256
e46edddfc619cda940c523caf50d9059e2cadceab29b029bd2572633f10fe92a

SHA512
ad070f91db5e7696abf3dc103fb63ea18e1ffee84d5fc9d937d8f7b88eb41d5172d5da842ef28358080dc0a45f38c407568ad99346a0d622bf019481b2652b10

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
4337e044b6e8e8b63260271010a5c5e8

SHA1
43bf3bd79037f07c212574f5c3fe1edbe19f1d48

SHA256
5a7d22b15b3a929318ee60899c06972386247a8feb39cf5b8f474424861f879d

SHA512
c3c6331452fa37df85c20d65fcd7b7a4c1c713c4080fe9b66a04f900cd3bf6d6635ceef1467e0a33a82c6aed0d9708e1d01dca97ecc98495bb91a0a762ebd709

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
eeae52ed907a476e4dc294453ebeda88

SHA1
2ee79842c1f0e4648f4969a6a60531429415b548

SHA256
b4cb481864a52717f24063bd458f7e39c03923c0073a65dee95445a5d1d3c264

SHA512
b0595dd82fc7ef6f4727ea52b7a91e288ce04fe95ad460a3404ee60dcc91c3990262b635e620ca41a266bd6e344e4373f3f7a3c250741490b552d02f6565f9bc

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
548834083da75e6f34c5860dbe88a590

SHA1
be1951d7cd8dd7b738527c228a38d12fec731b62

SHA256
f0978e7cb99a15bc260196a598224572c4fa43e36ca6d0819d3a9d54526c9165

SHA512
4823d7dd244daccab3ffc794c44a6fd3349e66c3ec8363a51ef788e7971a8d364dd431cdd656556be0f8cbca448dafbebccfffd2578491e363d7eb0eb58c4e2d

Download Submit
/data/data/com.marvelmedia.smartplay.mys/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
f9d2c6d9eba941027104ec40fd849e9b

SHA1
969a3c53bfc4f3d459dc87acf4596bcfdd3c94ae

SHA256
c40ebc754698818ce67024d98adfdf96ba3fcab37e1cb6b2efd72e5ee4eb76d6

SHA512
5ec9254451bb0234893a560bc9ad51d73b8cb5a4429e0dc798853ceb45f9f1bf8205b55dbf1d9fa144494ebbfafadfc48d8122c5cb4d6ba754242419b7c11450

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/66E1458701C7-0001-1363-AD177879171DBeginSession.cls_temp

Filesize
79B

MD5
9c7b6b88c4bf5b5cbb820dff472dbd4d

SHA1
3b13a188c4665cb3ac383f00e1f3b1ac2174f66e

SHA256
2e501184917899908f63c7c237a233763797bf6fecf190ab1125babf43ee53d8

SHA512
f23abf383e30ee4a2be373426b0ff739f1432d6e0c27fbd068f667420a75c5b92d57e70524c7d613abf6b2e8863399ede0574271cf8c2cbd9504fdfc1de5ef78

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/66E1458701C7-0001-1363-AD177879171DSessionApp.cls_temp

Filesize
123B

MD5
762955a7e9262158f09b8f70e0e57751

SHA1
5e7af4a6120008095c50d491b45988984a345c7b

SHA256
7ba664da732a934423dab319049110c495f7ae4b71fc9f3ff3ec865ecb38e7bd

SHA512
829280207971070fffc3bd38f33e16d9d1234d286a7043e218925f70ef4104405402e0cc4ea7fa7aa054dc5d94646a65a7c5dd030fe4b38e5f998aa008e6d4f2

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/66E1458701C7-0001-1363-AD177879171DSessionDevice.cls_temp

Filesize
131B

MD5
e1161368c56040ad5d93f8789a0806ca

SHA1
8a79641dd8b28c04a5616318af3548481ea83da6

SHA256
fb44af12853202f4b605c0453f5cc5401d64cde1f2a299a3bbd82079448e2bb9

SHA512
e62ab9b619838a987996506b78126da76f8e70e63f372113d9a72e6e6875e29265f657cfdea2cb5a3b56b61f2e9bf3d645c195c3da8908fa9e5485f5381be2c3

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/66E1458701C7-0001-1363-AD177879171DSessionOS.cls_temp

Filesize
15B

MD5
2566d27ce8c28d8961f082c375d7535e

SHA1
92fe585b1a2c9c523d2fa1f65ab5c1b6a1a6edaf

SHA256
5acdb54ddba2e264f6822fbdbc4e9b5158f57d43785c2f01d981956b18f7a90a

SHA512
1c70679bbd25a57f9ac02083d5af0fe72b1417cf3070a195497f03d6f492e87b1ed3f570de7ea7c814c995a1530e32610d9570f31a480648f4062e8d3287be8f

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/66E1458701C7-0001-1363-AD177879171Duser.meta

Filesize
49B

MD5
d7c7197a38e95d2fc467773f38347709

SHA1
ec83c6e7e74b04cf78d8be2093b3be97e0ac6704

SHA256
51c0202af4864ef99a444deaa99a4608618cc4f528e745fcbe53d823ab7b2d53

SHA512
731be60aa73fc66981feacf4c4fe004cea1b3f879b46b9ca604c81f64e21e6e80687545a27a743f95b7a62c88b17523b3dcdb5829f568a8e49190c67f73d4542

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
527B

MD5
006f262b099c1f1c1b5bcaf2a77274a5

SHA1
e0442963d179951672581494c230d2dfc841d5a9

SHA256
525d720d4cfec8c611ef800786b50ae447e2a940e4c0aa859b281d87cabf68d0

SHA512
91546694daccf644711a13e768af7f1bc740c2d0882581198240d3a7b24d94dfef4a0721b485f4701abc5818d4038619667ac9884ac02f0b6b1426ace2fd6752

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
3KB

MD5
1d6577c84fbf1f09d79db42aee14098e

SHA1
403e065791dd7130d660622ab966facebe6adefb

SHA256
67d6977858523dbefda8c4bbbf2f59503383f3a88e99eac3c70e24b48287bc23

SHA512
2017f5828200b2b9956997365d09aac8290090563e3be07afd27f544cdc79a9a0ee1656b60d9e843c3c4cb34c36c4cec2e8495e65fcf55a44c3fa0be2fd68890

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
1KB

MD5
16fa580ac8fce8963c281ec15f874e9a

SHA1
d41bc209b6ee25fc017885a2f86c0039373ec5bd

SHA256
29d44f2fd73de506e56387f13e5e8292a923c89e7650993cd2c8496c1f81fb95

SHA512
3a15e52913b38fd1a99c0cfc034dfb39b8af1aa1d7d728276a2667ffdff201637f81e1e37bbe89ec166c9d2cf651f2704f4894c7027a20847b9b96ff9834e802

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_a336e534-8ed6-438b-9bac-182c965e1fc3_1726039439635.tap

Filesize
584B

MD5
28c4a2efa7f3359abf93dd612b8b2cb1

SHA1
9bf2103ee7a761eacf4240e238952aa77415b222

SHA256
aa7db6d54df82c2152cab804eb78389787364e2b2838c71076117c5cad62082c

SHA512
6b076c49d66052988d627cec8faf25fd611b7c23feb8ea1f96ce3c1a2592d57e77d8a05fb364683b62f8e07db958bf5183a016a322cf9e8a6bf198ddacae9b86

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_a3694a10-a7b7-4747-9030-7416301763f3_1726039433084.tap

Filesize
406B

MD5
6348a3cd51155be3b959ec65f1bff28e

SHA1
31dd98b5d27d7344c4052617846aca7e6527bb11

SHA256
8b3d60ef60a67905eac871fc0773391a1657b4c07dc6e8459c6fccc7cb129871

SHA512
6e17ae8a91f569204590f44c984106e81b7d56797826cd7743d0e0fe64e94f268b8a09aa9dfed9396ca2311022d8fe9841aa3058a008c52fba88e79f82db62eb

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.YFlurrySenderIndex.info.AnalyticsData_8JPQM95KDW4P94D644QF_229

Filesize
88B

MD5
a98a441148ccbcfbd3f10482b6390350

SHA1
cb3e99207b40bd25848327d19a4a922b72b7cd95

SHA256
7ca28c248e05d08084ca0ae7f7ec4a5fc48c849fdbb817f4a385b98823994b93

SHA512
3ff498c2372c655df6bcea82effccb72b67d5b2042861aaa0954a4f3324ec2614eedd1d008853fd68e53a345b4b686f568dacbbe3b3b0a5ce648b8955abf0046

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.YFlurrySenderIndex.info.AnalyticsData_8JPQM95KDW4P94D644QF_229

Filesize
88B

MD5
e8b223be0590b31ed4d2edb1d747bc60

SHA1
4e9426c25ce2ad0451d14c8b9c4c201aa7fa6e3b

SHA256
ba720e89914a7decef778dcad6a1ee12cb73ee5a36b86c4a640532852747b28c

SHA512
ae7b09c1e527aceb1344030399edc48a38388e3c5f63617cddcaa88fd3d9a9488601a7fc034edddca6bba41a5ab32438d0f0d4a78893657de1f8f19371440db8

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.YFlurrySenderIndex.info.AnalyticsMain

Filesize
72B

MD5
fbe3f6280cb089562569052abd09f216

SHA1
d209e6bc02e3659091a8b16c1c5b24718b4f26db

SHA256
3786611b04b2fab4b72e34051efc567b14f6a1526640389238b00ef57a8e7002

SHA512
f76b96e8febe673ee7a36472475523496a760a2bf62ae3a553aecdc5e79fa0c319fa9c3841c7453f46caf9f1a13f9728db6ce79d1f0b8d076fdae550ea9496b2

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.yflurrydatasenderblock.5914b6b8-6bfa-4539-b2b4-268d39414412

Filesize
559B

MD5
abd7535be4b2fe1fd85da5b2ec44456b

SHA1
e653e1f2a0e34de1dc00f0dc9f706c0354ed9f9e

SHA256
bd7a355499e02bffbd15dff44d0e98fe176dad3dcea83bf418a77f0c73cfd5a8

SHA512
a074affe79ff283d32fb8c2c7f370869d00384011070919b3bb5e7fdc353228752f4c43ee2825486f8cf3ffcf984cfd38c86d0cd1bf1412582e2fc169af96621

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.yflurrydatasenderblock.6fcbf8b2-2551-4b5e-9e63-5b4544d2a7d2

Filesize
309B

MD5
e81571f3521592a711a31af1e4069b56

SHA1
7f3493e1cf9ff84dfa78f08c00acb47693b4af2a

SHA256
ebeffe05cc9dad0344d55f2bbc82df1ad775275057fb3a317149130006ed46b7

SHA512
7c9ad4091e46cbff355852ff71833a31e188ee09e734a20f0c1745d9f9b9cd5b204be467582c688729bfefc88ba849f4ab3816821029671e2753b363b34a4d3b

Download Submit
/data/data/com.marvelmedia.smartplay.mys/files/.yflurryreport.-29e6a080d3e47d75

Filesize
332B

MD5
023262f80a6fa9c410da3b5ab27397a4

SHA1
f10d21a21b3d564c3099b93d547a39577f71c4cd

SHA256
6bdefab3788fd86061aadf9cb00f7b4f733d1aeb7e98397d024e847aca9a7aa9

SHA512
fc1054b23e4674cf4c02d7c6e58dd95aa58652a89f71c1bc17c7f2d80f666be3d5e5986b9dd9b69373d2d9e5caf957890a2699f7953ec224bd8e9be3880770b5

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads