f9412c8d7e238f2856f0a7654a967b671ec08467bb7eeaf1039de038a016a601 | Triage

Sharing

General

Target

eabc46e347a709f4f4932b4de612cde1_JaffaCakes118
Size

22.0MB
Sample

240919-gxwkcsvana
MD5

eabc46e347a709f4f4932b4de612cde1
SHA1

3334db25bb9c389edf043843d5c052ba1cbff063
SHA256

f9412c8d7e238f2856f0a7654a967b671ec08467bb7eeaf1039de038a016a601
SHA512

c94a86bf8812bf966bad553cdf833f4abc8cd7083ec6fd67a3f0c66e6bc1a7af30b28c17b74b2073d0d101c689053b5cd2c6f44362ac5678caf3ca49eaf1885d
SSDEEP

393216:Hm88F6smHKcSCgqPd2ILAry5cYEhhrGp/MZFPA0DzVizw1wUIgP+12:GV6IcLPeydEhMpk/Px1izw1wUIgP+12

Score

7^/10

android discovery evasion impact persistence

Malware Config

Targets

- Target
  
  eabc46e347a709f4f4932b4de612cde1_JaffaCakes118
- Size
  
  22.0MB
- MD5
  
  eabc46e347a709f4f4932b4de612cde1
- SHA1
  
  3334db25bb9c389edf043843d5c052ba1cbff063
- SHA256
  
  f9412c8d7e238f2856f0a7654a967b671ec08467bb7eeaf1039de038a016a601
- SHA512
  
  c94a86bf8812bf966bad553cdf833f4abc8cd7083ec6fd67a3f0c66e6bc1a7af30b28c17b74b2073d0d101c689053b5cd2c6f44362ac5678caf3ca49eaf1885d
- SSDEEP
  
  393216:Hm88F6smHKcSCgqPd2ILAry5cYEhhrGp/MZFPA0DzVizw1wUIgP+12:GV6IcLPeydEhMpk/Px1izw1wUIgP+12
Score

7^/10

discovery evasion impact persistence
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
behavioral1 behavioral2
- Target
  
  skin_vip.skin
- Size
  
  1.5MB
- MD5
  
  2893b29496e2ad82d5444d6f8033f135
- SHA1
  
  29b12b8553080fa5e4b3b2f0d729d57e5e2aa115
- SHA256
  
  474d6f207fcfd83d2f7be545aad9f46cba3d0fa3dec7168267f8b457ddcbd864
- SHA512
  
  96b87cf73c6aa785f55a15206acb9e267dc239695edf003a379344909a6d8eb3a3e7a4fef3012d62cca71781f1d7b32bfb5f8311279265c3f99236a2a2406fad
- SSDEEP
  
  24576:UmZbBIKHYaTyXdLzafkGZLCRE7sEFtl1JFTPmUL3ziNDJdXGDQ9Hu13LNEw:UmZV4aTyXhBGZLHblvFdL3GvRGDQBu1v
Score

1^/10
behavioral3 behavioral4 behavioral5

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Process Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence

behavioral2

discoveryevasionpersistence

behavioral3

behavioral4

behavioral5