1d91ecfc3e8c075e3f76098184b615e816010fc33d15c18730355b1e858d9544

Analysis

max time kernel
63s
max time network
155s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
13/09/2024, 12:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

de49239e19d97043dce57d7c4e5cca51_JaffaCakes118.apk
Size

91KB
MD5

de49239e19d97043dce57d7c4e5cca51
SHA1

a124633dc43a56ebd0b545652a2b202bde32313d
SHA256

1d91ecfc3e8c075e3f76098184b615e816010fc33d15c18730355b1e858d9544
SHA512

b665d77721d8ed59bb3eebc540ad691e1c01b71c8efc07f1c536b69b7e939d7190c039a9ec4d6d654adffe8b03f70aa9fcbdcd28f1cd1fd805464fbe828e9bc7
SSDEEP

1536:0+APJsFsfBxZegM77K/qX5JsSuvOpAGmrOPB13d05l3dDJnAaR+cdo9WYQo0Wc:sPGUpkPusAmPBZa5l3AtcdPo0D

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.example.yclient/app_sim_index/appmgr.jar	5049	com.example.yclient

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.example.yclient

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.example.yclient

com.example.yclient
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5049

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.example.yclient/app_TYPE_JAR/tencent.jar

Filesize
49KB

MD5
aea7593768fda53588a0d2fe50a01b72

SHA1
39d60950aa9ce55646feeb5c31f3fad6679fc3a4

SHA256
6edb818bc4e1070c9c91546540a6c39acb83a3ea40b4e7e0d36aaef692391471

SHA512
c5315d5c42526f20f00d4f8f89ff3bb74f1f6f0aabb894b1c93b2d5e2b2dff932534ec5396c96e1cf6880f5557acdd0f1a94c5a0e4ab98dde6468aff872d611c

Download Submit
/data/data/com.example.yclient/app_sim_index/appmgr.jar

Filesize
49KB

MD5
9bdebf35b1fbad5e4eafef9c1666ec0a

SHA1
0ab1157124f668e073350d5b498393f88e1e4172

SHA256
200917eb46c09227b0cffb57b2f8aebfdab1c1401b84668d32f434bf2cf2e744

SHA512
153cbd2d2cc2fa28191ae2e4de52862551836b7853f916bc4a0641f612e58a971e095fcd1c2b8ecb9ac97589ac0a3770d544174c0da4a8534453291ba44b8855

Download Submit
/data/data/com.example.yclient/app_sim_index/oat/appmgr.jar.cur.prof

Filesize
167B

MD5
0fdbeed9e0194c8dc3e8e2a2e67d8aa8

SHA1
9b3347855574742b4c31b3f8de512a35a4abaad1

SHA256
66c20512c16d2d582d782a2428db16f91ed75a2e76ebd496e2465bdf58720ffd

SHA512
9a24a1985bb1c17cd94ce50dd033ce8b48cff0d1d8045c0733cffab296dcc26389fb007b371debb2a01caee4911904bea1bf3dab71dd4434112b2ae376b19b16

Download Submit
/data/data/com.example.yclient/service/smsrpt.i

Filesize
245B

MD5
8ddc2fbdd33be024b9d9f55a31745081

SHA1
2829d7f60e2d081301190e135db99227c9a326b5

SHA256
c57fd3f9458036c2b26edb96d51b5c7a5feb1e1413c06a9f891cc1d3156458d4

SHA512
363dab521044ddfb4847ed5ae62cdbca291653d8f44fc8cc058cd3dc02c2229216f6371811997de4842b11cc8dde58999ef5adf6da7e2a7635bb6e3c8a1699c4

Download Submit
/data/user/0/com.example.yclient/app_sim_index/appmgr.jar

Filesize
101KB

MD5
22d6605a6523acaa8fb797c7adfedabb

SHA1
4d4938b78fb65771f8e79fb4d014a4d2fcbda805

SHA256
86a2be063818643b1455b6e203f9fc92d431e0c659494f95702536cb846965a0

SHA512
c8b40f861fddc0043024c02a30949ce6d8b1fa526222ffec27dcf98d2fc13395b9dd1214e8c16b0520e6e272484bd2b53eaba5ce0634930212e62f12f351b760

Download Submit