ec173967311c52caf887ee30e5a2c280cce54368e3e3987c8781c91dbd0fa58c | Triage

Sharing

General

Target

ea8e7a83350543c1de3e85b95fd4d4bd_JaffaCakes118
Size

21.5MB
Sample

240919-eps36azgjh
MD5

ea8e7a83350543c1de3e85b95fd4d4bd
SHA1

52f286b4a0369ea6503f33b3b8ff800e27d0beaf
SHA256

ec173967311c52caf887ee30e5a2c280cce54368e3e3987c8781c91dbd0fa58c
SHA512

9b882840fe6c977d55f58a97864552a3559488e3877a8fd5352258cb25f882a7dd15ad136b492073d136ddbecae6917db175e4e09e408f70c7c6df04fcbcf2d9
SSDEEP

393216:HecnlMp17ekSB6YJczlaW6QKJ8W9M9jm7vANRj5UFTxcop1XOL6jYaI8qkj:VlMp1az6YJDCW9M9jm7MR9U5moKL8ZB

Score

8^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  ea8e7a83350543c1de3e85b95fd4d4bd_JaffaCakes118
- Size
  
  21.5MB
- MD5
  
  ea8e7a83350543c1de3e85b95fd4d4bd
- SHA1
  
  52f286b4a0369ea6503f33b3b8ff800e27d0beaf
- SHA256
  
  ec173967311c52caf887ee30e5a2c280cce54368e3e3987c8781c91dbd0fa58c
- SHA512
  
  9b882840fe6c977d55f58a97864552a3559488e3877a8fd5352258cb25f882a7dd15ad136b492073d136ddbecae6917db175e4e09e408f70c7c6df04fcbcf2d9
- SSDEEP
  
  393216:HecnlMp17ekSB6YJczlaW6QKJ8W9M9jm7vANRj5UFTxcop1XOL6jYaI8qkj:VlMp1az6YJDCW9M9jm7MR9U5moKL8ZB
Score

8^/10

discovery evasion persistence
- Checks if the Android device is rooted.
  evasion
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence