e254b52940f712001a328f74d8dec33390e08de03052a7de9f46ca2e793ddde2

Analysis

max time kernel
11s
max time network
159s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
21-09-2024 22:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f0b90e84a02ce153066b4c89e6a658c5_JaffaCakes118.apk
Size

18.5MB
MD5

f0b90e84a02ce153066b4c89e6a658c5
SHA1

7c2de191eb4cfb34f1e3135dc527a7b47eaa0066
SHA256

e254b52940f712001a328f74d8dec33390e08de03052a7de9f46ca2e793ddde2
SHA512

e8cf1134b79dabe124fb63adca39910ee2f5aaff349c17ed1cc4ec4f0a7ee7d07797292e68a82a0eb4818cf87fe2d3a2b5ab5b834d8d97d38ad132db23cd366f
SSDEEP

393216:eEbFN32MIs+cLILJJqsr6pKOLtEa4T36VfyJRBfFBNb:pL2MXMJz6CtTOy/BfF7

Score

8^/10

discovery evasion impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/bin/su	com.cubic.autohome

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.cubic.autohome

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.cubic.autohome

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.cubic.autohome

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.cubic.autohome

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.cubic.autohome

com.cubic.autohome
1⤵
- Checks if the Android device is rooted.
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Uses Crypto APIs (Might try to encrypt user data)
- Checks memory information
PID:4492

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.cubic.autohome/databases/ahome_statistics.db

Filesize
28KB

MD5
cb99f7f0a902443a66b5c6248df1a7f7

SHA1
ec0585f382fb41da7120bc0f86888e7ab8a6d993

SHA256
0c26ba7a5c609ee8007a0139c2c516817b30a94f0798f47a062ccc6f60f4b102

SHA512
90e079ae4a410f7b2cf0fa005f9bf8f671050ade2780cafca7d63a9c02abb666ef1f9d8fe50e19185f6ecbe67a68abe00bd6190e52453da4f3676e8b6def6e16

Download Submit
/data/data/com.cubic.autohome/databases/ahome_statistics.db

Filesize
12KB

MD5
48f80a0fef2c74eeb18023d50ab5b008

SHA1
4d7142b452faf5c0dd26536bfa051c822e108646

SHA256
7d422c5880986868d469e59571d2dd17946dc9c822807b599a8ce4680c9e1d65

SHA512
91683d08544f65df99e513bee663dd230c54c4b402c27d858118cd7cec5f869eb140333484f5997676336b865f2b5188dd3ccc4ccbbca1b51efaceb9ae1801c4

Download Submit
/data/data/com.cubic.autohome/databases/ahome_statistics.db-journal

Filesize
8KB

MD5
2b328663010948a8bfde412fa02b5abc

SHA1
cc72308a7742bcd9b50e79389450dacc8bf8e877

SHA256
b14a092bb848e0e744733d43e1306928c2852f07afa3e24dbb00a29edfad1690

SHA512
9dffebce70ebc2b1ed245d6a85c98ad065323e40f86fa63fccee32d632030aadf9ab3e1219407a10f49b7d24ac3d4d6765990606a23c53dd26b16ebc50c258f1

Download Submit
/data/user/0/com.cubic.autohome/cache/pdatas/pdata

Filesize
23KB

MD5
a2fcac5a6f1ab71b3b77120e56f3b05d

SHA1
78e3a93b491790c3b3b711181a8108e847f14fc1

SHA256
2d7198de4a2091460221781e976d770420eedbd74319d3e6e05a41f389fdbddd

SHA512
17998b6c96dcc44ab59fb12bc0f568362e7d998794c9e196d7581a37b408794742cbe8d9edf8810b376ec947ef7e2d010d0f7c304389cf92883a62000d3e7e79

Download Submit
/data/user/0/com.cubic.autohome/databases/advertinfo.db

Filesize
20KB

MD5
598a35f3ed00bb772aafc0e8d6139c62

SHA1
330b838c80c2576386b1935b28a397bc33707649

SHA256
74eee6f8727a4c017bf4776e744afeffb1f7a693ff12f155ec037b07ec122050

SHA512
6d4c956d57b29dc4a6b83074b60bb65ce3ad02d2ba8ee94eb3ec06b49def02721ef94b56feb8908b9597d75599b7b18b9fcb94f1915e95ab704329427ca83e07

Download Submit
/data/user/0/com.cubic.autohome/databases/advertinfo.db-journal

Filesize
512B

MD5
d605cebfc808a0105592fb5f29369f73

SHA1
30b9f1150c7a59d6492e6be0d4bba3c9965a4273

SHA256
ee81790bb8cf3c7268ef32af10d195df78db8c1911fad3d346dcee0e1d306cec

SHA512
7b2de1627614993518359fbe7e1b088607719d348e9fa7807678cb1be05fa86537439aea74e35e9f104c984749c060f3d5394da790c7cac024f657dbd6863881

Download Submit
/data/user/0/com.cubic.autohome/databases/advertinfo.db-journal

Filesize
8KB

MD5
40ae4c3d1047c5ff61fead2d93e092ed

SHA1
b46ef30d32bdd847560b90fe82aedfb69ce2893d

SHA256
f25a63655ac1b1570c7e6b8e2f8ac48e918a512aa6afa40998a4dc1c5a034108

SHA512
7e01772b91d76d972e689c4e74ae0872ac35a85fb7ae7402285850a32933d51498dd19f6acc7fdb4766434532ae87b234ca1eeb3607f816b98edd5d6ede5d51a

Download Submit
/data/user/0/com.cubic.autohome/databases/advertinfo.db-journal

Filesize
8KB

MD5
bdc505794966cdeb74e13ef8a4f4bdf9

SHA1
30a3f96950b2565d85ad601bc7d75ffb1784c4b4

SHA256
49710143bd5c150f2af63c6a820e5e7b7cba0801050594d46ab284832f383cd0

SHA512
63d883002bdf0824d2d3c93aa197abfc6e0a0466ecab3b98c3639dd6be7ce622986e12a94f0fedfab287ca24e277b92f2d01daafcd5a7c575acf10d7a7713022

Download Submit
/data/user/0/com.cubic.autohome/databases/ahome_plugin.db

Filesize
136KB

MD5
204d94c2a7541ed6002a5b2173e662e5

SHA1
51739f253807456cb6187230ae14de6e734b8641

SHA256
748ae2686326cb9a6d82e741f42ab2f72e1067bfb4cec298d45482cad488b39e

SHA512
a87139730368067a4dc33d9e332d3b33df634e09b21bf5304bf8d84826d3f4014c9f5d8f5afdc0d4d66c3dab434333cd9f2099aadbfafed084b04393b0eae526

Download Submit
/data/user/0/com.cubic.autohome/databases/ahome_plugin.db-journal

Filesize
512B

MD5
f2d2eb55420797d02ffdb7b2f42f8543

SHA1
433c61c8f316fb8a257dfec11eaea2545a4585bc

SHA256
2697329befd554b61c9dcd10864f14f03a1334b7403d157050dead9e70947997

SHA512
8a2803ae0cf8c1cddbbf9f3fb9d1ab055663b8ca7400580e44b41b9f9a92800a0220435d59ecdc743cec6468833c19877a233a4eb2c3aac74d03445dc498bb0e

Download Submit
/data/user/0/com.cubic.autohome/databases/ahome_plugin.db-journal

Filesize
8KB

MD5
29db2c64ceb366ffc75185fe293c92d9

SHA1
6e591aac3ef101e56fe5cff03cb0b09819116f3e

SHA256
b1c0988f38737f649d9cf9dc1754467d759cc7af5009f7a682aee01acf055356

SHA512
0ebc095d7190b006a6ef20b389bc7980545456765a34613aa582285f4c6955d0f933fb00ac79136c498b0a2996d1f6d376a4ef2b20999bcb4be082fea9dde65f

Download Submit
/data/user/0/com.cubic.autohome/databases/ahome_plugin.db-journal

Filesize
8KB

MD5
7a88f675a3e1f068e35308ba3b4337d2

SHA1
2b6fcc2f8d530369e7f31cbe5a4ecb6c432578ee

SHA256
1d5dda7a98316570cd5d3c17b1f327e8e656c620a0b95442d815c3a8ec95368e

SHA512
ee891a5ba01d87f3fe83d67347fbc8e7fc35b4280cc21e8ab02fc4ab8bffd65310b8815b702d2d73409c81d6df53856c2ac5d1367503feb9ba2b18daeb63240c

Download Submit
/data/user/0/com.cubic.autohome/databases/ahome_plugin.db-journal

Filesize
8KB

MD5
675df8662d5c76bdaa78e7c02de440b9

SHA1
e2af62242f80d9fe82417a959ac3dc50ee6589e9

SHA256
132b9d2b98b240d494f036d0636ad414aaf095a2b9a3ea9069a55d5e3bfaed4a

SHA512
98da914012decb95a3f7100b896276d3ddc0739f35620e5f65412feb97208111ce18d6951c493d8dc45b5188b129e4975efda58be39870e1508a8ec266571e3e

Download Submit
/data/user/0/com.cubic.autohome/databases/ahome_plugin.db-journal

Filesize
12KB

MD5
934a40cbd2b701b0e0836415568da563

SHA1
afd7b10cafb5ae5e69942347e8b65649432dd5ad

SHA256
f87517e470cd69d693605f3a34e426b014b471e1cc1916aa395f994d8e48b5ec

SHA512
8c069ac269cba61ce19bfb1b8792f19d40d726be5ef2c4eb68c6f42e5913ca75e0b767318f1965510cf31b6e514ef88b8a0a81abc68ab0595553936a20efc83b

Download Submit
/data/user/0/com.cubic.autohome/databases/ahome_plugin.db-journal

Filesize
16KB

MD5
91a168e3a394f52459ad1945625b3b41

SHA1
64c24cc5dec089d8acf67de5d327dacdce4b722a

SHA256
a5bc693d2a4f13b6025f4159af888051833b917dc0b2a76b90cec20216ef3577

SHA512
865ce66e669a53299fcb897505d6054c77622ba7ee5fba1fbf40fe2c744c32960232633bdd50692f700162e989f0515173ed344fbe4d4215709109d11522980f

Download Submit
/data/user/0/com.cubic.autohome/databases/dns.db

Filesize
20KB

MD5
3c7aa845dbc0d02f3c84d21cbc25924b

SHA1
b1a52c1fe3e8c2041205f6d2cac611abf7c8130e

SHA256
9f666590efa2853cec1f4e27e3f9216fdfb7f5f2521a4aee52575fe6b3d0bd0d

SHA512
454c5fe3318a7886b364f7033b4e9d2a5767240e092175de22e292e134c299ebb040c407602b54be8a58d950573ea1045fef0ac250118e4486cb593ed8495208

Download Submit
/data/user/0/com.cubic.autohome/databases/dns.db-journal

Filesize
4KB

MD5
dc441dbec0c7963fd5e519a74218be59

SHA1
88854339352eb80690ea97684516c287eecf3147

SHA256
5d0f74a696ae5c320d1b95062e953094ac594b356eb54a01841c82e975190b35

SHA512
e6b2d204131b1e8cf68431033adb71f4c0deebaf3ca1cff9fdd294470aa92fef5b1aae0539d3967d2b2e19724b23767ca2ecd79b681ce7f86b271ce3d571178d

Download Submit
/data/user/0/com.cubic.autohome/databases/dns.db-journal

Filesize
8KB

MD5
db1259aa5c3dc76dbe6e3cce34219d80

SHA1
79c44b39f52d33e6be7d7acbb8c74bce2f091c7c

SHA256
462e2dfd87266b4afd4e4bcd78a8d7d83ba64a3e441ac787f536f7bad294d351

SHA512
63cbf0f80f9406175907094ff49069e07c2f23cadcf53f926c9d9c0c01babf75fa1422198c956a587325e829016202c2e82b60aadc6266e0e8aa5d4f451225d0

Download Submit
/data/user/0/com.cubic.autohome/databases/dns.db-journal

Filesize
512B

MD5
e4bb8cb76c67e36f808405994d3bf317

SHA1
dc69caf7391a127b2177cda8a43409e659973312

SHA256
5dda73a5cefe6a0e67ccebd7a6eabb1a4590632e3aa0697b3e187c5dba64aae1

SHA512
367c81cf85ed6aef6c644a5329be76ea19ff595cc950fb15ec34a52574c8f5541b9f7c9cbc403919a7c4215d94333ba5307bd82acc05e4d5c6d5db78632ccba4

Download Submit
/data/user/0/com.cubic.autohome/databases/dns.db-journal

Filesize
8KB

MD5
3d5d5586ea85f053ac2c1db5ab7076fc

SHA1
b0521793323622ebf2804ca66aac139439daa2fb

SHA256
c116394b158b866803007e95c79b46d54fcbdbc1cf86367a427f81a88ebe103c

SHA512
ed18ab085165ac4a863855e84b2b7f4873f764b8c17c6740a066d7b903fa16dfb0d9dc0c311515953133451692ddaaff6c6a1084ad0870add7f71b1f55bf10d1

Download Submit
/data/user/0/com.cubic.autohome/databases/downloads.db

Filesize
24KB

MD5
77a28c7e330fa5a14874eb35fb85381b

SHA1
575694d96f4f1fd585dd84bb5e051f656dba56cc

SHA256
f509d2950e9d72872ec0ae997debfcf6c5dd69452f80f24117408125be67353d

SHA512
2641302d35acf26f490be9788a2cfc5ae85e8d5e573fba7eca5b9acfaa9ccb6f04b0a218695a454d9849969c1a7ae79e5720c6938294ecc390356c3a9f58ce44

Download Submit
/data/user/0/com.cubic.autohome/databases/downloads.db-journal

Filesize
512B

MD5
4f52e19d5d040b46f3f3c5bf2ca6c41f

SHA1
1bb2de4dda18b8a108d4c834de700fccde9101fb

SHA256
5b4eb32b03d059c5f00df5c28167a1ef1b3139cb45f7a3a662b50b7b0adf59c5

SHA512
c118f833a9d66d713b02fd97b1ef1c3390ffa0045c8644d6faba9a190edf8469d39c3a0f25a6e54e5486c96eb2b5f01f609e408cfb8b72b721f35a7505ecc180

Download Submit
/data/user/0/com.cubic.autohome/databases/downloads.db-journal

Filesize
8KB

MD5
8a84e076d931a9b388824c942e5fde00

SHA1
84b5513aa3604a01f76f1e10d059f8ae7ae9b372

SHA256
42267f81f1f569e8ab3b0771234fbbb1eb0ed95c984de3b2ec580ec47eb5575f

SHA512
26fddff280293d8cee591affc190f8453ba71a63caba53e4a552b05c60531915632b72ed2cde9a49cc4a25678e80b95945d8a31276c703e5d3d5b388c9b5e2e0

Download Submit
/data/user/0/com.cubic.autohome/databases/downloads.db-journal

Filesize
8KB

MD5
73f288d44abcef12e659514a0aa01971

SHA1
a2c591eb413a5cfb7fbd71dda17dd2d2645f021c

SHA256
694fe80485a788dd5ff3908bfbad4c15c169bf89ecb582f7f56b5913a731cff1

SHA512
6cdf93f2d3422e461f6f4f8b85b404e273c2f0996f31c809e0d7519e6136be8fb25919aa905e964edf6d662ea8a5fe8bc18ac4c9567be38dd153bd5b097b1932

Download Submit
/data/user/0/com.cubic.autohome/databases/netDB

Filesize
44KB

MD5
6dfed2a65ab3d94acc27d09fb42c58e9

SHA1
1959eeb401725b194c1e54592ced04aeef28fe3d

SHA256
2653f74ae926121dd3bf5eef69359202d4347cb97022f3b6d56f8ccd8c8eccff

SHA512
48ef058df0517c2b140d418da8c46ce4109f59078f52e687d26f978c6fc82509df051cf6b86ed8ec45ef6f4bf7b887f1f07a789d15ee2136f7c2061757e9c638

Download Submit
/data/user/0/com.cubic.autohome/databases/netDB-journal

Filesize
512B

MD5
853a953576c0c3384b9b9a4365d6281d

SHA1
5b3deb465656481a358d864bae9141fc45320de9

SHA256
ad7297ddbf76f0a9f02ee9749217f3abf03471b7d192aec1a82f5af6fb402b48

SHA512
dcccad4afa0f6120b046e3d5383d80ccdd3b83028f4453736f8b4fe387d2a024fac9f15c06a5ab19379542eefe7f9a645f94f02a0a1935c451c0c6e28ac761e0

Download Submit
/data/user/0/com.cubic.autohome/databases/netDB-journal

Filesize
8KB

MD5
55f47ce39a78947c22260b1b89f957e2

SHA1
8055f6bd7a29a62d64a3d6349a0bbc51bf88c6ed

SHA256
96067393610b7bfb0aa652e3a3e095b9b419bcbc4b2f520ca34b9fc0596e6e35

SHA512
da4c6a7fff9c1b7b2138060a69b721e0c7dff0b52ac862bd8099267cf2d676fe735914f858f5d598ec4ded3a958b2113b59cf5d1c59d373dbfb15d2bcb0d74a8

Download Submit
/data/user/0/com.cubic.autohome/databases/netDB-journal

Filesize
8KB

MD5
659b60769b25bd8dc0c029149d0f3464

SHA1
904514dffa03091f812bd45beda3ee94df5ebcf6

SHA256
ab84f82771baff8276a3c51f2e658af9497bb558ab41b7de038c8e5f9ce23226

SHA512
0accda87906e509dcb4fc65aba168d15bf707aea7e0c1a2336af44a80b4275b07bc964705aaaac2b7a27583f46ecc445babb388beedda3358edede424ff2f9f3

Download Submit
/data/user/0/com.cubic.autohome/databases/netDB-journal

Filesize
24KB

MD5
0d57cd645cfd48c6f4547bca2d307163

SHA1
e47fa496ac8f928749fa11ba87000715db2640e3

SHA256
26a256033fb3d8bcca3ba2aa2c4528f8a9943ce8126b777c233cdc155552ebc8

SHA512
8ad6b4c2c82359d91d8195556d840d62571f543e63dd79256d55cb657c6fc9764576a91b46acdea0e8ae861897dd0aa120f9e3b48b1aa9107433449ca7435c2b

Download Submit
/data/user/0/com.cubic.autohome/files/libs/libBaiduMapSDK_base_v4_0_0.so

Filesize
660KB

MD5
55d5584fdb56587905faf892f685d1b8

SHA1
4119d1cbbc16bab5b7529c7e53890b8c76aebd95

SHA256
6d8f8d619e7c22ca21f4df67493d5760b9ba134afb1f5dc8654f6da2ab51b8a4

SHA512
96f892e8eef70f6df7969854427494032328d66b2400425b367eea2b846b236d5266fc05e38dc3786200b3fffb4f73d3307c292a21d5520f5e9c4e2cf33e04fd

Download Submit
/storage/emulated/0/autohome/autoshare.data

Filesize
130B

MD5
8052bcfa5b41c9e9d6e5cac09a7fd40f

SHA1
81a0e265e89cb1d24449a9bc43cfe405a7b935f3

SHA256
03ce29df2891c12cdda39eb7df44d4414c8cf0b025237afd7e8f5a81c478ce99

SHA512
29fb33597609529818ac3b8eec476eeeb333edaf095e0974259bc6a0b11a68ddc8f4f9c5502783fd6cfa06206d24953b9e1dc1d49113ef2efe30ee1ca99599e8

Download Submit
/storage/emulated/0/autohomemain/img/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/storage/emulated/0/autolog/1726957235744_338.crash

Filesize
4KB

MD5
3a05649c26c68937e96d6001bee64d22

SHA1
97780b970ab8214fb9cc01472d0b0f64f5006356

SHA256
93c03a2e30361cf49b99f6dfd6b8f889847ce6bf81bef9a53024a0df0aef14b1

SHA512
f603c52cd691b4e3ffddfe595c198f867d8671c35bbf4ca50c1e2d184b9e51fd73b95711fb971bb0a797787fe9d5ffe73625468c9b2d5c8293a677a7f9f90640

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads