Overview

overview

7

Static

static

6

dcb5bde42c...18.apk

android-9-x86

7

UPPayPluginEx.apk

android-9-x86

1

UPPayPluginEx.apk

android-10-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    dcb5bde42c8c509594f8b3a1b50c1f22_JaffaCakes118

  • Size

    6.0MB

  • Sample

    240912-v2957svhrk

  • MD5

    dcb5bde42c8c509594f8b3a1b50c1f22

  • SHA1

    95c6294360e9ccd1dd193742eb6d51b259a2f9af

  • SHA256

    99bbd74df6eb766f2497a5caefa0e550dd6c13b36dbf09110abe40e8b48b0182

  • SHA512

    18fcc4da9300aa932b4baca04fa683b9767fad1aff8754472937fd45344bd31755089a7d2f1b11c1141900297fc64ec7ac9e0954a571d9aadec3924a90068233

  • SSDEEP

    98304:aPsapO2UwOQnrBHcHnMfNThiHH0SdpzM11G785kvFXl6BFP7TDNI0PPduEihde90:GUwOQreHMJhitStGF1yFPzeoP0PjJJ0A

Score
7/10
androidbankercollectiondiscoveryimpactpersistence

Malware Config

Targets

    • Target

      dcb5bde42c8c509594f8b3a1b50c1f22_JaffaCakes118

    • Size

      6.0MB

    • MD5

      dcb5bde42c8c509594f8b3a1b50c1f22

    • SHA1

      95c6294360e9ccd1dd193742eb6d51b259a2f9af

    • SHA256

      99bbd74df6eb766f2497a5caefa0e550dd6c13b36dbf09110abe40e8b48b0182

    • SHA512

      18fcc4da9300aa932b4baca04fa683b9767fad1aff8754472937fd45344bd31755089a7d2f1b11c1141900297fc64ec7ac9e0954a571d9aadec3924a90068233

    • SSDEEP

      98304:aPsapO2UwOQnrBHcHnMfNThiHH0SdpzM11G785kvFXl6BFP7TDNI0PPduEihde90:GUwOQreHMJhitStGF1yFPzeoP0PjJJ0A

    Score
    7/10
    bankercollectiondiscoveryimpactpersistence

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      bankerdiscovery

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

      discovery

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

      discovery

    • Queries the phone number (MSISDN for GSM devices)

      discovery

    • Requests cell location

      Uses Android APIs to to get current cell information.

      collectiondiscovery

    • Queries information about active data network

      discovery

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery

    • Reads information about phone network operator.

      discovery
    behavioral1

    • Target

      UPPayPluginEx.apk

    • Size

      683KB

    • MD5

      a87375dfab53addcf98dfd722703527b

    • SHA1

      a4a2b21379e420f0e95921dac28d28816c268815

    • SHA256

      cefd4929c45affc9560f8ca9ff00a1ff702dcb256111e8d70d315e22a4e0030a

    • SHA512

      0f7b1373bb241bb7f84e8122033782e20da691fbdbad0cfa596173fbcbf8097c64eb0306890953f348a17e162f3dfbc16f2e1cb56c43f49880d07beec215668b

    • SSDEEP

      12288:0KeuG5BeFpMfUppppppcyR1RZ5qjwRTgp2C81bnF/VXMCq27izoDvd04LEiGxh8A:0KhGDuiMppppppzZQjzvo55WzM2eEDhv

    Score
    1/10
    behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks