0089e4e9897611dfc8c6c7eee637ee7d1ac4145d2cb5660245a3a433c1907240

Analysis

max time kernel
135s
max time network
137s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
29/09/2024, 05:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

fdde766a414a1d5b4bc8c87f645fa5f4_JaffaCakes118.apk
Size

18.2MB
MD5

fdde766a414a1d5b4bc8c87f645fa5f4
SHA1

678016e9ac406672c6254dcd8bc9239deca76181
SHA256

0089e4e9897611dfc8c6c7eee637ee7d1ac4145d2cb5660245a3a433c1907240
SHA512

f45cafd7024aebab19a6876a3ffe2537b4daade59068cebbe8c6de5207c45327a2ec6cbdb3095f2eabf38e9ea61f4595746e6e9fdfe6a472f5b2333cf454115a
SSDEEP

393216:dNCfXZd+p9QB4BJNvBoCasFycWR4MBRJRCbQylDKSIhimtJUW/3b:d8f7oQBCJjN3Fm4MzdylD1ovtJVT

Score

1^/10

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.mojang.minecraftpe

com.mojang.minecraftpe
1⤵
- Checks CPU information
PID:4268

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/games/com.mojang/minecraftpe/clientId.txt

Filesize
19B

MD5
69909bf8ecb1afbe47d406f69d840297

SHA1
98cdae68a9240a58deecdb4996db1a5444ee9ac4

SHA256
cc576fa7ea0bef6884a51cd44d3565e8b7d76c1043b54c3118325a951f7a6089

SHA512
0b89e4e334f06121a92f8ec1b0ad6c6f4c2939ec65cfcb6558975816c23bee048933c7a24b0e839445d29d8b50096ab7634d27f64093affb95ca01200cb12bed

Download Submit
/storage/emulated/0/games/com.mojang/minecraftpe/options.txt

Filesize
858B

MD5
0ffe3f1706023d048887b7d760da0684

SHA1
ef548c9abe6dd9806fce268d8f59cc1741f918f3

SHA256
4c0875a84fd802ba43561e7f1d4e666f741561176b0ce63fd6c1aae659c71247

SHA512
e97e73e9165a0c940cdd5e1741a0cb5c951737a197181a187e588c2d2ceb81a7fe5986057f6def03752395dd6081b2be7028e296be9379af536e751125838eca

Download Submit
/storage/emulated/0/games/com.mojang/minecraftpe/options.txt

Filesize
859B

MD5
878df105d3032e81f1575e7769398314

SHA1
2081f82cfb0a0dc53182aa1546fbcddc483e00e8

SHA256
558fd3abcb4e81bb61caaa51e9e6e639a43fe010e0e1cdbf4bbc40915739812d

SHA512
9c6345fb8db5cd10cd3f44b23be3b44de17299c75bdd66092867dbb3f0b7634a54eac0ac4c2b005ceb14d21adbaf558b2da26c03557418a0f88f9d3f9072234d

Download Submit
/storage/emulated/0/games/com.mojang/snooper/bundle0.txt

Filesize
1KB

MD5
7825c6a7573d5a86d7f1e4f1cbace49f

SHA1
95282a2b6bc19ad574927b97c3343a8f2a30cf41

SHA256
664d57eb2c7da8d7dbb4d8d291e7aa94b6d94a8b33b0a7b176d2009be656f14a

SHA512
b41ce97614e53679a6b68a242f586bb31135398114db82a8143bb44bca5ed3b109039c1a35b4c7c7a31d7f3aab3cc449b42325670c2bc9b81480766389dcb325

Download Submit