b8d31147c012b7e59a75dbd309d08e3c7c4c5eaf9923a8b3a728db2c976a57da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01172bcedc06492e1a0e06efc89482fc_JaffaCakes118
Size

542KB
Sample

240930-nmdecssgjk
MD5

01172bcedc06492e1a0e06efc89482fc
SHA1

540c1a82460e22dcb781c1910713c9e6fc3d6950
SHA256

b8d31147c012b7e59a75dbd309d08e3c7c4c5eaf9923a8b3a728db2c976a57da
SHA512

39a8581f633d0c5250887acfea781fe63ef05c7052962930108ff664392ba3a5854a0c447143a93eabef2c14784bffd2cd894d4842e832e5913c4e6fc8e62e7a
SSDEEP

12288:ufQ3JEZnY4Q/ZK5pmKRlSI9L1FJmThXmT6/RMg6KNd0D:ufe4AKpHS8L7JSVugNoD

Score

7^/10

android collection credential_access discovery impact persistence

Malware Config

Targets

- Target
  
  01172bcedc06492e1a0e06efc89482fc_JaffaCakes118
- Size
  
  542KB
- MD5
  
  01172bcedc06492e1a0e06efc89482fc
- SHA1
  
  540c1a82460e22dcb781c1910713c9e6fc3d6950
- SHA256
  
  b8d31147c012b7e59a75dbd309d08e3c7c4c5eaf9923a8b3a728db2c976a57da
- SHA512
  
  39a8581f633d0c5250887acfea781fe63ef05c7052962930108ff664392ba3a5854a0c447143a93eabef2c14784bffd2cd894d4842e832e5913c4e6fc8e62e7a
- SSDEEP
  
  12288:ufQ3JEZnY4Q/ZK5pmKRlSI9L1FJmThXmT6/RMg6KNd0D:ufe4AKpHS8L7JSVugNoD
Score

7^/10

discovery impact persistence collection credential_access
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries the phone number (MSISDN for GSM devices)
  discovery
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoveryimpactpersistence

behavioral2

collectioncredential_accessdiscoveryimpactpersistence

behavioral3

collectioncredential_accessdiscoveryimpact