31b89114beb49a49581fc02ff0380e3b66336a29e3d674e594099470acd481c6

Analysis

max time kernel
3s
max time network
132s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
14-09-2024 20:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e0ef794aaa41ac9458b0da8f1802d6a7_JaffaCakes118.apk
Size

16.3MB
MD5

e0ef794aaa41ac9458b0da8f1802d6a7
SHA1

3c18e95e4dc5dd357c769ee9f944e3547a6c7afe
SHA256

31b89114beb49a49581fc02ff0380e3b66336a29e3d674e594099470acd481c6
SHA512

709395dd7540bccb1ce943946745f5508d3233084e7f0309aa37e9d2a819e033f9fee910e56e618cb9cc3d9789343a20ad6f7a453deddf8985ac80e9c59246a0
SSDEEP

393216:nboL38VG+eAMqBOAd8U8b4u/pIVy0axEN2BiPKPyO1Oyn7W:ncL38VG/GV8b4apH0aK2gPgyR0W

Score

6^/10

discovery

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.sportstar.xingdong

com.sportstar.xingdong
1⤵
- Queries information about active data network
PID:4254
- chmod 755 /data/user/0/com.sportstar.xingdong/.jiagu/libjiagu.so
  2⤵
  PID:4278
- /system/bin/dex2oat --instruction-set=x86 --dex-file=/data/data/com.sportstar.xingdong/.jiagu/classes.dex --dex-file=/data/data/com.sportstar.xingdong/.jiagu/classes.dex:classes2.dex --oat-file=/data/data/com.sportstar.xingdong/.jiagu/oat/x86/classes.odex --inline-max-code-units=0 --compiler-filter=speed
  2⤵
  PID:4300

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.sportstar.xingdong/.jiagu/classes.dex

Filesize
4.5MB

MD5
f2619404fa2e7564acd704e5594cf89b

SHA1
9f5453896ea4291fe05c40806cd2c4a31487ebf0

SHA256
078c174c77a2924de62632ef60d303e0fb06c9070d7b3ed706486a58f8f7ba12

SHA512
5b3d075b4522cd205bb3ddecd5c390afdcee34aa5daa8838596882b208f62991b02a6208d7c5a1b9143b5ca0043cef914e836781ccdc14b7fbbadb082c244e0d

Download Submit
/data/data/com.sportstar.xingdong/.jiagu/libjiagu.so

Filesize
351KB

MD5
6525dc34d4a2656b93c41bc4223fddd2

SHA1
5c2333cb8ad87abc747d13d6352d5f19dc18997b

SHA256
744cdb26f7cf86d52fa8b214813a346952fc7476826400b85a3db96356f5047c

SHA512
b98dc08115cdefc31b2c0679d046a34e788936f985bcd70bb789b1828dcd59d949b023388a3b56ef017bafac31e79c12ebd6f6b623f01a38ea0e6e04a9fd1fc8

Download Submit