439c29e0e8fe92d6cee46b6673a35f3a647736f1dd31ef280f0081e9e0c5ca35 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ea2f92ce8f8db04628216e8056cd0aed_JaffaCakes118
Size

6.5MB
Sample

240918-3m252szapk
MD5

ea2f92ce8f8db04628216e8056cd0aed
SHA1

2b97d1cb98c48ed2b0aab22fb7b8a338bd2fab14
SHA256

439c29e0e8fe92d6cee46b6673a35f3a647736f1dd31ef280f0081e9e0c5ca35
SHA512

39deb33b65cec78825f414872854b9be507da6ae0da349e648a39e30f582111d86f2cac467c1aaaa0f6e6abf02d7196078856a5b83b2aa69766690bb84c1baad
SSDEEP

196608:WOJ7I/u9f4NiFV2zrcn+s2V4Xk/8JIJXql07bOT1ZuE:LJQJ22zAn9Xk0JIxQ0y1

Score

8^/10

android discovery evasion impact persistence

Malware Config

Targets

- Target
  
  ea2f92ce8f8db04628216e8056cd0aed_JaffaCakes118
- Size
  
  6.5MB
- MD5
  
  ea2f92ce8f8db04628216e8056cd0aed
- SHA1
  
  2b97d1cb98c48ed2b0aab22fb7b8a338bd2fab14
- SHA256
  
  439c29e0e8fe92d6cee46b6673a35f3a647736f1dd31ef280f0081e9e0c5ca35
- SHA512
  
  39deb33b65cec78825f414872854b9be507da6ae0da349e648a39e30f582111d86f2cac467c1aaaa0f6e6abf02d7196078856a5b83b2aa69766690bb84c1baad
- SSDEEP
  
  196608:WOJ7I/u9f4NiFV2zrcn+s2V4Xk/8JIJXql07bOT1ZuE:LJQJ22zAn9Xk0JIxQ0y1
Score

8^/10

discovery evasion impact persistence
- Checks if the Android device is rooted.
  evasion
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence