b387b52822498da152a9b033ead555d6ba808a0e5abbbece17fe9c948ee5fdac

Analysis

max time kernel
108s
max time network
144s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
20-09-2024 05:59

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ecf9cc4375e44bef1a8a0782fa9a8394_JaffaCakes118.apk
Size

4.0MB
MD5

ecf9cc4375e44bef1a8a0782fa9a8394
SHA1

3243c3e27ca02a1fcc6c47b6929b0f220a2662e2
SHA256

b387b52822498da152a9b033ead555d6ba808a0e5abbbece17fe9c948ee5fdac
SHA512

2ed870f49197cf205426c7ff22fb723dbc1938ec6b02067e1551cf692017ec9ad8b333d9fc0c0d797e34e4d2bddbdf140b791f1c3cb6b0582719e51a48b2277c
SSDEEP

98304:myUDelGW/XW+E4e0r/5rhbK6rf9sgizuQF:myUip/WD4eA5rY6rfKruC

Score

7^/10

collection discovery evasion execution persistence

Malware Config

Signatures

Requests cell location 2 TTPs 1 IoCs

Uses Android APIs to to get current cell location.

collection discovery evasion

Location Tracking

T1430

Geofencing

T1627.001

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.galleryonline.com

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.galleryonline.com

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	com.galleryonline.com

com.galleryonline.com
1⤵
- Requests cell location
- Acquires the wake lock
- Schedules tasks to execute at a specified time
PID:4478

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Execution Guardrails

T1627

Geofencing

T1627.001

Credential Access

Discovery

Location Tracking

T1430

Lateral Movement

Collection

Location Tracking

T1430

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.galleryonline.com/databases/__pushe_base_lib_db

Filesize
24KB

MD5
667affd7eeeba1d98d205531b257619e

SHA1
bfde1683bdde323c646466d0b245690c1b853480

SHA256
89107dde48c174b4574c5b85d21f2adb038a64c6d81c9ec6d0cf87d194a1336f

SHA512
aa848935570063ac7e1ac44a4620f4937f80d222e70de80864b4586e27b0e6057176fca6dc3e2ea83a1478403defd057066ab0e15b6bc8c70f53ce2515c93679

Download Submit
/data/user/0/com.galleryonline.com/databases/__pushe_base_lib_db-journal

Filesize
512B

MD5
13ea4a195f4037c88d94563e4ae8d876

SHA1
fcca261e1d9c15685907b202ea5869e8445d023d

SHA256
89d1cd104491bb355a602a1c053550e700e5c672aafa9cdd665954e186cbcbd5

SHA512
15b1b5b5a57157eda7c1b137e4363affa2f577c91458fd35515785f6b6111a756e47c274cb1734ec37974a00c2a2783e616253bd64f8cf4568080395d6799957

Download Submit
/data/user/0/com.galleryonline.com/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
d0936c13ba835d01394137ce8679f76e

SHA1
6686ba71156eb56590cfd6f36bd2a6a8c4c0a836

SHA256
4fab343583976e41e05bd191252e4c513637e2e86b1c30fcc1a269c1a5d69d70

SHA512
9857458dcc7bb50a447a4d1e144d391d1d63f9518f4c575313034dfe33145604343c5b323f3a35fecd161448dbac81abf516ed81facad7c41b5181b3f3bb9dc2

Download Submit
/data/user/0/com.galleryonline.com/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
06234b0dc3fed79078b7adac693b6251

SHA1
cf9c044683dcbba1eeda92d5887af0b51a25df73

SHA256
8c7eee40bc77c72389aef8f8401bd91885504b2b8423f85e53b53c0f1feccc65

SHA512
0ea716cad841bf185eb288c6810b3d73373d6aec599428d2a790d96aab87cecdaedf7dacd259becba09592a8e4ad1062568058caec0d1c4a073126f23c7b580a

Download Submit
/data/user/0/com.galleryonline.com/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
b5a977efcb7460690dc02c5396c7d757

SHA1
2d323e9f97f95618592d8ad61bcbd7253f4089fc

SHA256
a5bfa576f74720ad6afce0a8af9838aa54c9617308b54d0b1bd122d4e577b933

SHA512
dbeb34f9977ea69b88112c4f6f07b1eba4613d235fd3828eb6ec62b70021edb9aec775bbfdabdac745a4d837426adf1243d6dd5eaa55dd31829604423667003c

Download Submit
/data/user/0/com.galleryonline.com/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
5cd6dae344659fe4fca2b4ef9944148f

SHA1
55efad04133ece8c948697a902e999c9abb54f22

SHA256
302ddbd7574f31f38ad11dd1f5a66560a7b298720b487e6dd97e95dc240e00ef

SHA512
9b37c3b1af18479af59cf2ff4d7c4767751bac48ed5ef612a01a900a52f9e30d3f8f88c67d8e6f34a35f5a7d7f44d5d9ef0bc668140ed8a740d76122bdd6e7b1

Download Submit
/data/user/0/com.galleryonline.com/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
e2654d8b51b180d60f8308a55ce15d8f

SHA1
6b88c2e971a42bc5ead60edccab58932c77bdc81

SHA256
1a6723299ec31f3702090fac43ce7b53d906094fd7fd905f4d5bfb186ddae497

SHA512
c4c3863c2db3a4c82883b4ca67171c75f6e0cf60d84f9877421a0ef6bc19fa3dcf5261c7af368d30f4b4e0956025553aee6ec931f9ad826111717aaef8c0bf58

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db

Filesize
16KB

MD5
317cd236b5c93d2942d5bc64b2f778f8

SHA1
5d310a13fd55f7ebbea759e8bbd42a70066df62a

SHA256
fc6cd5e06db665b14fd4293b7b06da1fd65733b03c6c6d950abac75befddb21a

SHA512
c70388d71543bba9631b595985fadb28648779e673dfdb099ea240c9f3c89a81198d36233dac846f8958e6c6a2a2e0330de452b1be6c2ac9a99661146efd2510

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db

Filesize
16KB

MD5
9d3bb7d33149f4b038826ed637e46b72

SHA1
7817fb99c666ac1bd1c09163ed8a278d0bdea293

SHA256
7aa49e036556848b0d006c4d31a338edbd28bf7cff600192b51ee1895aa05f3e

SHA512
5ca068b17cda46307c8f9e55448b0e404e5705c2fb6debf6e0a53a0b0616256596a5a4e4709a10028e5916b6ef39775b5360daa8309fc2d0b5f24166d0227ba9

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db

Filesize
16KB

MD5
114922f416dcc9109862429d0338360e

SHA1
40bf8d6043851ef8331b8c22a56f832a4dd20c50

SHA256
1f6024e8aea5b90584951e658857319a7fab17d240a31f032a3e0c6988ffd25f

SHA512
b92ee8cf04897db0ff85640c2d5012828ce20a9ca0d271aeb07a9a0bd29e8ff7423feb93012e396567f2410fe9e863a92d2ab724ddd443b8d7a152ac401b8418

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db

Filesize
16KB

MD5
f61867bc65337b3e6d95c6fc8a08828a

SHA1
6f11e1fe1fcdb2861a11c7b56535bdfb50f1b0ab

SHA256
40eb89ebb0f28e65b612b5adcd8c71688f83249e4bb5f7265f11ffebd0954b9d

SHA512
3018911c8a53adca05406d7c366567d2d5d95ac39d1e59e4e810f4da6a8d91c8d1715a3af0cfca34e995f666589779355f464c109cdccca278130e624836c81e

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db

Filesize
16KB

MD5
47080e3bfcf2db9b8620f2faf6c5857a

SHA1
6f63c1851255e0fa99567f047382074b086d38bc

SHA256
dc4f8a73f49d2a6b41ff425fd08b85c1eba5280c438a1a1ff9832e91dfa56cbb

SHA512
e757043d82798926a5ddd716457accf6616894ad1ad79ec832293a1f662910b663239f899bf05a5c8d90fed5bcb093c5529e5bc842fe9003c1d5902f9ed84473

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db

Filesize
16KB

MD5
324de151d4e65fb11f4e95ac5620e472

SHA1
dac92335187291e6e336e68549fe51f307c746d0

SHA256
226c2e502c388ee68b0e34a9406550c4c13d7b25c1af5fde1f78b31ac8ab91de

SHA512
0163811477d0c4bd80e289bcaed3d7180afea752e6a30117fab034d8bdfb36e1ea2cf0c897f3c6e77ed3b193b5493d4e7056d510393d7c8430f94ffad2b50676

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
424165693602dc02ebf961611adb0503

SHA1
86a4dd505ac85fdae3ee90b1165b258e1bd70455

SHA256
c11c27cd55870b67754ea6f99267b89c5dec2cfb634ac0451d2b5df2d8c8eba1

SHA512
a3e5bc2acfb234651086ae566fab065bc72fe9a1566db2b5b3ed9081ab85f454854c986efcd80dd98e589cd23082fd2033f0ba8210c6a2dcb1fb45d14711924d

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
6514ab0753fbed41e69015c99d3f86dc

SHA1
d1a2792721112d7c9a59de600f9eb489a6e14915

SHA256
ada2807f1f8578e8f5bcd21416fa233e15da70582cfb94984cee7e80a1d6dc56

SHA512
f4711c3bcdc209775f0cfe7d0d73d51104d0e6c4811deb06c487334c6ee0287a71b45c083177826451e02b3086bac6cbcdde9e16910964f0854b15af2af91a5d

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db-journal

Filesize
512B

MD5
a057468148473c03b047ee0188f4c340

SHA1
a1a97aa95be432fa6f90f01139ef5ecd83f08d76

SHA256
2944311156000ad38999c3d6076728bf2756201af8c7e5bf28fe0233061691bc

SHA512
6c0902474f3f174ec12bfb4bead488baebecfaf788cce37d8cf2ed2248abb53e58087e9de5ec41281e6944dab1ce7c98d786debbcf0ee8408c893d16a66a5722

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
1be1da28af00f5d78362d7f9c121d8de

SHA1
5f7702138549e6b3dc0704b603288c736c042b61

SHA256
d9535135cbc52d48f7a09654b25bbffb71160392c39c5a30f47a5fef41aabe8b

SHA512
a7dabb3ad23cf0b58ea87304d03ddee50899f6825112d3ab058e17c36a387cd37b7a9f9b0990fad2a9e413531848d15c6b059032b776d56427533310525b6ad9

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
e52a780d1dfde1191142ebb26ed8c30d

SHA1
a54a5e057d6d8ab28c783997e4c79bf5488f7d82

SHA256
ac16a612db317507e6d10da7681ea80d85c86e0d6a4e30f8daa008ab27e11f0e

SHA512
1e9aa9d402ae37662f3d021c69a236877f923e91053bc2677887939615708f2fe673b756c0430e6032db88c91a5a4d0f5e2e20fe3befa9601e1007ee965f03aa

Download Submit
/data/user/0/com.galleryonline.com/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
aae7839b0092b07d16c758d2a7509189

SHA1
2fad56d817c10bf1a16f09cbca163a6e21b2dfc0

SHA256
9d0242acf0ad637e35395d9d619d430f45aa08b54cd4f9737dbbdfdea1abc8b1

SHA512
b7fb84d128aa306e33f56acddc284630020887a5452bbf1b2ecec3482ca55b5026ba83f051caf63a2a844a95ac73f9dac73327bf11d51cf1464a9008a22b5ff8

Download Submit
/data/user/0/com.galleryonline.com/files/likes.db

Filesize
8KB

MD5
cd318c2aad286d021b7930f9f14b2811

SHA1
933244ef0f3225c9ddb15ae2845575a5c50a1d8d

SHA256
30d9db059d9b4be7a221ba0d3d9345dcb4e46668bc6075b7456cf20ac99e379e

SHA512
15843719d5c48c0984dabc9f2cca9a3dd42afa068a71d05a9d6dc705591ec678fcc6ec3b2cbc1b3f4b86cc73cf10b54ae106b9e934c7bae0d518c83279499752

Download Submit
/data/user/0/com.galleryonline.com/files/unsent_requests

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads