4d3f473c865461577b0aa04574d40a3f013027e6fcb4020404ffca4eb733f7b0 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

e0784c6cda...18.apk

android-9-x86

8

e0784c6cda...18.apk

android-13-x64

8

Sharing

General

Target

e0784c6cda741613f13fcd47273f17ba_JaffaCakes118
Size

12.5MB
Sample

240914-ss47gs1fjg
MD5

e0784c6cda741613f13fcd47273f17ba
SHA1

cd47c1e6cf25dd030d52f8fb0a3034eb220feb8c
SHA256

4d3f473c865461577b0aa04574d40a3f013027e6fcb4020404ffca4eb733f7b0
SHA512

709cd234bbf6c0fce19dff6fcfdf1a823c2e5850422537197384253a82458b120ccf884398512092c6c95517bc45dac85895a752b858f90b0bd97759e75c76c7
SSDEEP

393216:9tBA83FiiLiEcuRemMAzmAwbS85cZo5e/dq8pVoQmEqpxC62bt:ne8MqcVmsA385cD/dq4WQsC62R

Score

8^/10

android discovery evasion impact persistence upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

e0784c6cda741613f13fcd47273f17ba_JaffaCakes118.apk

Resource

android-x86-arm-20240624-en

discovery evasion impact persistence

android-9-x86

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

e0784c6cda741613f13fcd47273f17ba_JaffaCakes118.apk

Resource

android-33-x64-arm64-20240624-en

android-13-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  e0784c6cda741613f13fcd47273f17ba_JaffaCakes118
- Size
  
  12.5MB
- MD5
  
  e0784c6cda741613f13fcd47273f17ba
- SHA1
  
  cd47c1e6cf25dd030d52f8fb0a3034eb220feb8c
- SHA256
  
  4d3f473c865461577b0aa04574d40a3f013027e6fcb4020404ffca4eb733f7b0
- SHA512
  
  709cd234bbf6c0fce19dff6fcfdf1a823c2e5850422537197384253a82458b120ccf884398512092c6c95517bc45dac85895a752b858f90b0bd97759e75c76c7
- SSDEEP
  
  393216:9tBA83FiiLiEcuRemMAzmAwbS85cZo5e/dq8pVoQmEqpxC62bt:ne8MqcVmsA385cD/dq4WQsC62R
Score

8^/10

discovery evasion impact persistence
- Checks if the Android device is rooted.
  evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence

behavioral2

© 2018-2024

Terms | Privacy