4b8895c2faa57c4b3e806bda8237009176e2c15658c5d34116d248c9f535255e

Analysis

max time kernel
2s
max time network
132s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
14/09/2024, 07:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

dfbc71240bad96780b4cfb45fceaae74_JaffaCakes118.apk
Size

13.4MB
MD5

dfbc71240bad96780b4cfb45fceaae74
SHA1

8131ce4f61552f7c2bc5eaa73b90015f2eab225a
SHA256

4b8895c2faa57c4b3e806bda8237009176e2c15658c5d34116d248c9f535255e
SHA512

5f26244a49e60426d877fca7fe52645c9d526614437efefac37a231c1952a0fedafd5e8f0e83d006b54fd08c690efcaa483acd62ea4705248155c92f98d8a236
SSDEEP

393216:PJPRIAJFeQevaZVNswbzjwExXR2eMAumNP7F:PJWAHZzDzRxM1mNjF

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.zhizun.zhizuntianxia

com.zhizun.zhizuntianxia
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4966

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.zhizun.zhizuntianxia/databases/bugly_db_legu

Filesize
60KB

MD5
13cf847feb6d008ab1211e6c4d004738

SHA1
8f609e9a96fa50fb954cc5a4dd7e14bf4c139852

SHA256
da8f502cf5a8d78ea76fa4230a2fc8b03dc628d8328c084b57b1418ca9900a34

SHA512
f992bc2b577e07ee65a807da26ca970ac7318136700c7fff2cbbf6674fe8553af875cd63d534b8d394aa97197d5556a99fafd7909d062a4b886294d1043ec954

Download Submit
/data/data/com.zhizun.zhizuntianxia/databases/bugly_db_legu-journal

Filesize
12KB

MD5
4f3ea7e0fcf994cb3e8146b01e7dc7d6

SHA1
0a77239373237912aad4dce1fd7abec1531e0ed6

SHA256
d2763b10748cd4d6f4365bf680eddb2a80b251864e9d7c9d283f3de7d51f57b2

SHA512
88b68b1ddd1b180732a14c607f2e19dd4eb7616d634de462e75fee3d96a92471e90c98d0ae292b4d313436c7304b545d846cab2368844a1fa773665827f2346a

Download Submit
/data/data/com.zhizun.zhizuntianxia/databases/bugly_db_legu-journal

Filesize
512B

MD5
a84812b223ee10a79999543559b702e1

SHA1
396533983b075230603e9d059cf18e215559bca6

SHA256
f3f15f076d64692c5283e3d2f7d493ca22bc8edd2095c4458c3bf2f8329c855c

SHA512
10df551c8877de49abdd339e20ab6fd489b89e5de316e385eae46c5814e7a34f41d74c8a3fd2447b8b7eda7e133ab1ec7bbb70b64eb82a75b4c8a2a3b8aa0e40

Download Submit
/data/data/com.zhizun.zhizuntianxia/databases/bugly_db_legu-journal

Filesize
8KB

MD5
593900d31fda46ac49b310c257be56b8

SHA1
5c15beb46ea36b11a8f8a52e07b4796e5214e731

SHA256
fc3c832bed3477d1a98fe70ef1b7fb03cad9867205d732f724008934cb2960de

SHA512
347c4cc653a63eb97e96d5e97bcf094e80b3975a1768b5571a67ebf820d8d3b473876da17531245dbec16acfe39df7cf9e774fa433c50efc29a4706ce663024e

Download Submit
/data/data/com.zhizun.zhizuntianxia/databases/bugly_db_legu-journal

Filesize
8KB

MD5
6e14cfa737119e50fc225a939e4ef8e2

SHA1
2c393f7cfb56aa8ccb12ef43f4eb2306186b77d8

SHA256
0eb7a6cd8a402a01099500827f3ceccd7b9f4bab9f397e2229b823857f2909ce

SHA512
2707cd6bb629705607d6355bd7610deac67f8a0d68defa7579d89c845c5c098700c1329903d3bed96fcb7ad6bc3bf4d71a729a2d352ccbce0c5fc01d0161f766

Download Submit
/data/data/com.zhizun.zhizuntianxia/databases/bugly_db_legu-journal

Filesize
8KB

MD5
4a331eb4a96923d6849194ba49c67946

SHA1
a863dc0df3b24fcf7e6602eeec72f8ac71f0a431

SHA256
baeb51d1c7f7ebf5fc34070712817a929513581f68259159b101e3e76b93ef90

SHA512
2e6d579cb7908eb3d27317d3ba191ea0a30e2e22f358bb1d0456dc080f32acfc6ed68c8f51683fb915a53d53665a2a006836049aba25558a7c63b691f997c6fe

Download Submit
/data/data/com.zhizun.zhizuntianxia/databases/bugly_db_legu-journal

Filesize
12KB

MD5
6826ad28f787ed56bb4d20006604df8b

SHA1
ab96c1bdfda76f0ceb335eacd6d5bfdd4e455daf

SHA256
c8912fef7d43b7876a8377e0136c87c0cf1a4a9d812a3f6d1fb1e98e887742c6

SHA512
bcdb5baa8cd12bc81ff026f8a3fe5533aebadc9b580f89953ed006d7256aa5d0de61adeb5f7830f33efcd47f0d33bdcbb6e4250d8bb01b6c7d8dcb1b3f61d37f

Download Submit