5bc5913de2ca58bd447cc620ad00a3b748dc1c0c3c2cfa8cdd0914e1417f33d4

Analysis

max time kernel
128s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
14/09/2024, 14:58

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

e06d475deccd34788387e634eb71c7a9_JaffaCakes118.apk
Size

5.8MB
MD5

e06d475deccd34788387e634eb71c7a9
SHA1

cf8051bd22ec52770c8df192af1146757fdf2014
SHA256

5bc5913de2ca58bd447cc620ad00a3b748dc1c0c3c2cfa8cdd0914e1417f33d4
SHA512

0412e0a2d4913ac2d91ab7c3c72a94d525de4e6a54c0cb7b7c14578c8b10f344ed0e3c9f00573e556ea840cfcfac57c5b8c502796e5646c256c28c98ef803c97
SSDEEP

98304:K9VNjq83GY5TBzb7X+TFkJovUJjeKbjHbyBnbnyGJDEvNDse/l6wxQUpvM:oZq8f5TBT+TFxvUJjeKbjmnbnBJAMwx6

Score

7^/10

banker discovery

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	perceptinfo.com.easestock:push

Queries information about active data network 1 TTPs 2 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	perceptinfo.com.easestock
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	perceptinfo.com.easestock:push

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	perceptinfo.com.easestock:push

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

perceptinfo.com.easestock
1⤵
- Queries information about active data network
PID:4249

perceptinfo.com.easestock:push
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
PID:4287

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
511ef54cf97f5650b15db7fe7ae591a5

SHA1
2eb1da047cfaf3d5659b3e3788b0d479d63d8fc4

SHA256
38ef0828a4c1a36cf59ec3c92cea078f4126a6b8caf1405bf7bd259065d9246f

SHA512
2cfbe0ebbb20db4ae37233acadb737b2c8814aeed8fe4f7631ebda5abc5f219395d9317b28c579f5ba4f6c8cb2dff7a2ec38baf61802097073862e76fbfe371f

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
1a5dd21bc2635fa42b7047a7ae98a3a0

SHA1
f137cf5ea31c75fc18a75cac071945fbaab8c9cc

SHA256
2b283f5e24ab3efda286c3f8e6cd7522c3f7dd14f488cb646ace361f1cb1d997

SHA512
168556a8043fb3d9e4af53d9b8ef28ede33e0b4169932fe4cf85e27ed3f38188bbde58b014fb6e5dcb9e08d15a3c0cd84e2fa4042165e14902f57285d73ea010

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
381B

MD5
43af3ef774a7bd1e401048af8030dadb

SHA1
1f63ec89a251e7c0d3d57347097b7d31d9069ef6

SHA256
a83943cb6c55f715bd51859e83c3bf560b7c1e0c15472f3c1c516bf38a63d365

SHA512
b656cbcd99cc2da8265468a3375744c8fe52cea6ffd7b9fb68311ac2e84ca042048d430aaf34eaf9feacb84521f3ac159a14f5605b4154df6a358aeb8ca65ec7

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads