6c1ed3134c385262ae707eca8949fbc2b4a37c87907648f08e550f473f5156ba | Triage

Sharing

General

Target

ea8648ffcd4b1690907df7cc0ca96bfa_JaffaCakes118
Size

19.4MB
Sample

240919-ea23hsyhqh
MD5

ea8648ffcd4b1690907df7cc0ca96bfa
SHA1

0c6d517c6b9df2be5f1bf17e1b73df0a96362b9c
SHA256

6c1ed3134c385262ae707eca8949fbc2b4a37c87907648f08e550f473f5156ba
SHA512

1d63ee4903a54939716178b10ef6cfc8fff012d8b892aa0498ab5498284686a5cccbd797b61c8acafb9feba6b9e788530e22f94b22b2c9381ce17e720823d375
SSDEEP

393216:dDjTW7nQys6Ua6EHRs8NUCsCXbUZTGJ7uEEGawpG+MYIhGbkwSE4:dDjq73FxtvXbUZSBdGBhKkww

Score

6^/10

android discovery persistence

Malware Config

Targets

- Target
  
  ea8648ffcd4b1690907df7cc0ca96bfa_JaffaCakes118
- Size
  
  19.4MB
- MD5
  
  ea8648ffcd4b1690907df7cc0ca96bfa
- SHA1
  
  0c6d517c6b9df2be5f1bf17e1b73df0a96362b9c
- SHA256
  
  6c1ed3134c385262ae707eca8949fbc2b4a37c87907648f08e550f473f5156ba
- SHA512
  
  1d63ee4903a54939716178b10ef6cfc8fff012d8b892aa0498ab5498284686a5cccbd797b61c8acafb9feba6b9e788530e22f94b22b2c9381ce17e720823d375
- SSDEEP
  
  393216:dDjTW7nQys6Ua6EHRs8NUCsCXbUZTGJ7uEEGawpG+MYIhGbkwSE4:dDjq73FxtvXbUZSBdGBhKkww
Score

1^/10
behavioral1
- Target
  
  cha.so
- Size
  
  76KB
- MD5
  
  d48d1590f246947f64581b37bd6b2b92
- SHA1
  
  1e6ce734ff1b1ffe27e8e8a8894a621eb4c7487e
- SHA256
  
  a9d29004ce7b52c1c27dd431cfbcb45c36ed5a9cc7287bb3247160c9114a8286
- SHA512
  
  fe170c67b1ca7555cd66c39bfab222f842777364a762241d43f1970ca0323784568c1bb7da3d15a888cfbeab0c538b856a8c0f52ccc9520605b5176495266ef7
- SSDEEP
  
  1536:pLUD/U74EXKlo5Mlbqok+0rDHZIbNzKJ5W0wcd1F:pL6/U0IKlYMsok+0PHZIhmXW0jd1F
Score

6^/10

discovery persistence
- Queries information about active data network
  discovery
- Reads information about phone network operator.
  discovery
behavioral2 behavioral3 behavioral4
- Target
  
  com.so
- Size
  
  68KB
- MD5
  
  0f689657830d2c3eca6908c25acbee09
- SHA1
  
  e41edfa1e68582d3f16ad7104e48dbef16d16a01
- SHA256
  
  fcd81e4b828a740a5cf433da4751430557b0cc85f763fe733eba257d1da9bca4
- SHA512
  
  27ed176fb83cc5ca19ae47ed3e025f37060395457a5b9519416f8b5978ca71666bf0e292c060c5461264cd45cb540a3e5206a028baefe9d5af346cb10805725a
- SSDEEP
  
  1536:bqgD9CJODT2mjeIGjY+1BrLYnsboZ5ViTmWpM7awqflfo7zjWlhhRA3I:bJ93DjhGM+rYns0ZKlwMA7zjWjhe3I
Score

1^/10
behavioral5 behavioral6 behavioral7
- Target
  
  com42.so
- Size
  
  65KB
- MD5
  
  15c846053ff3ec046d49b5ab590414e1
- SHA1
  
  732f486e3e447c8485f93ca12b9af9ad19ded3c6
- SHA256
  
  ff4c38d800c6408f08d29a0197157537090adda942c6eb4fa2726ebfef4f4c2e
- SHA512
  
  321e856b2cfefcb7a67663bb534dd5d41735ff1399e449b73b3dee953f04b49ab1de89bbe4ab33195f56d9207329fcc7d55bd7f03c0a2fb06a5305395e3885b4
- SSDEEP
  
  1536:bqngU0IxjWCOZZl1NmqJzRMaHPEqxQbOmt/mnw0STWIhJ904z:bw0RJZJiaH7mOmt/mFSSi
Score

1^/10
behavioral10 behavioral8 behavioral9

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence

behavioral3

discoverypersistence

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10