353f16226afa703249ab493c597ba81c31b2c6329433f2dbf786bbe51eb4188c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

e0e740f71d...18.apk

android-9-x86

7

Sharing

General

Target

e0e740f71dfc63a0e65f10400598a275_JaffaCakes118
Size

13.5MB
Sample

240914-ye4xfsseld
MD5

e0e740f71dfc63a0e65f10400598a275
SHA1

146eeab16baa2806bb36ed893dca7dd55dcff94f
SHA256

353f16226afa703249ab493c597ba81c31b2c6329433f2dbf786bbe51eb4188c
SHA512

6887ca2662f074adbc1bbe0f8864f6c88adfe4939026ed83dbf7794cf6dab24fdcfb3870006bbbc6652a90fdda84ddb633f391c77a01aef645e630c1cfddc6b1
SSDEEP

393216:gdGvJwi0xQjzdD+g/+ulN+43THNc/6Mldzqe:QbrWNKg2Qj7NyvPzqe

Score

7^/10

android discovery impact persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e0e740f71dfc63a0e65f10400598a275_JaffaCakes118.apk

Resource

android-x86-arm-20240624-en

discovery impact persistence

android-9-x86

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  e0e740f71dfc63a0e65f10400598a275_JaffaCakes118
- Size
  
  13.5MB
- MD5
  
  e0e740f71dfc63a0e65f10400598a275
- SHA1
  
  146eeab16baa2806bb36ed893dca7dd55dcff94f
- SHA256
  
  353f16226afa703249ab493c597ba81c31b2c6329433f2dbf786bbe51eb4188c
- SHA512
  
  6887ca2662f074adbc1bbe0f8864f6c88adfe4939026ed83dbf7794cf6dab24fdcfb3870006bbbc6652a90fdda84ddb633f391c77a01aef645e630c1cfddc6b1
- SSDEEP
  
  393216:gdGvJwi0xQjzdD+g/+ulN+43THNc/6Mldzqe:QbrWNKg2Qj7NyvPzqe
Score

7^/10

discovery impact persistence
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about the current nearby Wi-Fi networks
  Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
  discovery
- Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Process Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryimpactpersistence

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.