26435dfe555403eaa8b090b33cba60bde64231ef48ab2505a150fc710996859b | Triage

Sharing

General

Target

eac93e3dca82143ec3fa47cd80bb1265_JaffaCakes118
Size

20.7MB
Sample

240919-hjlnnswakg
MD5

eac93e3dca82143ec3fa47cd80bb1265
SHA1

707a57242a14a7390c34d4fc1395f4384c8703bc
SHA256

26435dfe555403eaa8b090b33cba60bde64231ef48ab2505a150fc710996859b
SHA512

18c70a8b0cc59ea4495574699085caa289ee96162c43c1e8b589d4e5a1c5275b1ad9e6b905a17aa1364088b2c201eafabd3b2cf9d9b8250f8ed0f7635d6d14be
SSDEEP

393216:EpNJY8HxDP+iVOcBqyDfh326A2b0S5suGenuqZKbArnCONTxWa9arGyLb0rquoT/:EeqPngyTh8Q0QnVtrn2LioT/nOmTx

Score

7^/10

android discovery evasion impact persistence

Malware Config

Targets

- Target
  
  eac93e3dca82143ec3fa47cd80bb1265_JaffaCakes118
- Size
  
  20.7MB
- MD5
  
  eac93e3dca82143ec3fa47cd80bb1265
- SHA1
  
  707a57242a14a7390c34d4fc1395f4384c8703bc
- SHA256
  
  26435dfe555403eaa8b090b33cba60bde64231ef48ab2505a150fc710996859b
- SHA512
  
  18c70a8b0cc59ea4495574699085caa289ee96162c43c1e8b589d4e5a1c5275b1ad9e6b905a17aa1364088b2c201eafabd3b2cf9d9b8250f8ed0f7635d6d14be
- SSDEEP
  
  393216:EpNJY8HxDP+iVOcBqyDfh326A2b0S5suGenuqZKbArnCONTxWa9arGyLb0rquoT/:EeqPngyTh8Q0QnVtrn2LioT/nOmTx
Score

7^/10

discovery evasion impact persistence
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
behavioral1
- Target
  
  patch
- Size
  
  14KB
- MD5
  
  ddfd25a04d139dd2d6221a0d3a22a1a6
- SHA1
  
  b1d65132010f3a0aa8834716b79d265eeda883d3
- SHA256
  
  97611a4a69dd8f5728509eea59afe20e2c4e8781188590b6b484d8afb69c5960
- SHA512
  
  ab32c37edbbbfb71f34b8f623e6083968f65d53e5d45991638e667a45245d0332e83a5ec795c66682784dbe4a3018cf185b53657ab0fee38c538628d1ad9e7fe
- SSDEEP
  
  384:/QH2gVJwdJJxhrHeyeXojPUsIS+KF+/Wr3wl4uFOiZrgr3:jgzw7PhasUsnElFBZrk3
Score

1^/10
behavioral2 behavioral3 behavioral4

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Foreground Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Foreground Persistence

Credential Access

Discovery

Process Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence

behavioral2

behavioral3

behavioral4