596502c9b62ddc6fa40e8ac9b519a85e8daccd89fb7a6b59c8ec01d95077899c

Sharing

Copy URL

Twitter E-mail

General

Target

028b22af76ff94bd1789106914b03cb6_JaffaCakes118
Size

30.4MB
Sample

240930-wbpbgsxfnk
MD5

028b22af76ff94bd1789106914b03cb6
SHA1

1d089bf156bf8e587c88c1a92c059d4ab82778e9
SHA256

596502c9b62ddc6fa40e8ac9b519a85e8daccd89fb7a6b59c8ec01d95077899c
SHA512

368c9905f2b8757612d370e86a33e9f0b25d0bcdfe012a10724a3a66f72aa730704e1fd1acbb90722675e27cc6fd84ac2b5e367adcc04947cef348fd6d4ca0ff
SSDEEP

786432:fR5GRhkIZk2mXW8Eg0RZHXTGbVAPRkpC5tZRwguZcq:fzn2mG88xT6WRwC5tZJWb

Score

8^/10

Malware Config

Targets

- Target
  
  028b22af76ff94bd1789106914b03cb6_JaffaCakes118
- Size
  
  30.4MB
- MD5
  
  028b22af76ff94bd1789106914b03cb6
- SHA1
  
  1d089bf156bf8e587c88c1a92c059d4ab82778e9
- SHA256
  
  596502c9b62ddc6fa40e8ac9b519a85e8daccd89fb7a6b59c8ec01d95077899c
- SHA512
  
  368c9905f2b8757612d370e86a33e9f0b25d0bcdfe012a10724a3a66f72aa730704e1fd1acbb90722675e27cc6fd84ac2b5e367adcc04947cef348fd6d4ca0ff
- SSDEEP
  
  786432:fR5GRhkIZk2mXW8Eg0RZHXTGbVAPRkpC5tZRwguZcq:fzn2mG88xT6WRwC5tZJWb
Score

8^/10

collection discovery evasion execution impact persistence
- Checks if the Android device is rooted.
  evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about the current nearby Wi-Fi networks
  Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
  discovery
- Requests cell location
  Uses Android APIs to to get current cell location.
  collection discovery evasion
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries the mobile country code (MCC)
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1
- Target
  
  blue.v2.skin
- Size
  
  26KB
- MD5
  
  f276d999708d672dfbfb63c1b87724bb
- SHA1
  
  137bf145252f61931a14272c592ea6060dd8ab59
- SHA256
  
  666c76671b1553dddb665cb2b955f8bac9a26b1526182f553d1fbd90a614a3f8
- SHA512
  
  eb10eca83b59ab144c51b55f6ebb09f54e9b05dc9444ed0d242abe47090656cc0128b105551854a55e637dafeada5b11102b0c495091e81a62bd2076871e1fd7
- SSDEEP
  
  384:1pkI3oqFzrMSz3gMayXAoa+TuNQjW5rtPqrCMa5oHxowtqNp:Xf5prMSzpa+pW5rdpMVQ7
Score

1^/10
behavioral2 behavioral3 behavioral4
- Target
  
  fifa.v2.skin
- Size
  
  42KB
- MD5
  
  b1d3a9fceb5d3074ee9e29a2647f868c
- SHA1
  
  e396bc186ac281cfe3762ccf2ecf477ba8425b1f
- SHA256
  
  d6b45e60879bf781ffced639bc0866653201a936133073996ced53f395ec5658
- SHA512
  
  a4a29680a3d561cd4bcbdf3abe2ec92cee897f2cf52aa9cf6a94b1d83f5db351483279718cf00997eef38802100813d01b84e3653a94dafd55d401e99ae7d5cc
- SSDEEP
  
  768:HqUbAIprMSzpa91aTGPgLenKOq494qHA0jXKwaiHYzEeye0FRC:HqU9rMswGKPyenKOv94qHErYeyel
Score

1^/10
behavioral5 behavioral6 behavioral7
- Target
  
  mouse.v2.skin
- Size
  
  28KB
- MD5
  
  38c7e1af6c9872222a9157e54dfbc239
- SHA1
  
  f4dd9bc15f3b4ae4a63dae1739f5b435f8ff37db
- SHA256
  
  1f071d9c9aa25e028360faa34673ac2999b26cd9ebe91c22d54faac3b5dc03e2
- SHA512
  
  c3aae36548c4715227618fc549da136104f3d557c9fb4aa8223fa749ef29635c834c853f92461faebc0cf72ad1cf011ef1a6486e8fa600c755ddcba0292d56b6
- SSDEEP
  
  384:mSs97aSjSiD2iaTGdSUWlNTLUJzbvuZcqrki90gyDlpkGIWtIi8Xc57y9ZpeWb6k:mSuSi7aTGfWizbv14s98aIgupe06R+
Score

1^/10
behavioral10 behavioral8 behavioral9
- Target
  
  ruantang.v2.skin
- Size
  
  27KB
- MD5
  
  86dcb970e49ebc01f5b4e64bca2830b1
- SHA1
  
  78db74b064c54bc34e8f629c7aa47ad5b0e02aaf
- SHA256
  
  57fa2d1dac20a25013740c029b42fc17a9136a99e435a8e63e02734e603d23aa
- SHA512
  
  01acd03f183db5c9ad7c272cbbbf8f2a3ef8b7137a7b4092594462240729378769100d1338b38fac13b5614fcf2fecc69636baf5169455d939268c881415a734
- SSDEEP
  
  768:SD2agTKGMl1woChy5+tQijjH3LIgEAGmMX:W2agDEHChy5q/HdEAY
Score

1^/10
behavioral11 behavioral12 behavioral13
- Target
  
  vip.v2.skin
- Size
  
  23KB
- MD5
  
  1081768f814dd9af77ad4549ad95f336
- SHA1
  
  2c34cc45d2e04ccd0e428e91552d0494bc675760
- SHA256
  
  d07e4b7372df744dba08f153344e22324bef072e5c1f7eeb7a14383aa23e5b7e
- SHA512
  
  fef4dfbd9afcfdc55bfee27e1197577a1898ec17f211e021853987a511d8bd7601b66a4a53dbe60270b992408b21cf1e1bd6fb70e58b8a77ccc2d8848d9c161d
- SSDEEP
  
  384:bncFhnTh7bNA80L7Oq6QPYoCjRIleCMa5GCeLxSfeEd:bcFhnJm8FqDPYomSMpLhO
Score

1^/10
behavioral14 behavioral15 behavioral16
- Target
  
  xiaoyongyuan.v2.skin
- Size
  
  26KB
- MD5
  
  6fe39ccf77f1b96ba34d5d7883f7f263
- SHA1
  
  106277fe9d051e08bd20fd5d6bdb429716601c11
- SHA256
  
  ce3b1bf509ae73b2a27b4b06bbc99a76bae422c6e2a5d13d54b8884c4f55fab4
- SHA512
  
  fbd6d4f59e766477e1aa2e94f2971243b05852ff302b3859a3c329e299e6e17483d81f05e9e24211461db4595552475524490f594692a7ee98bfcb6643924e46
- SSDEEP
  
  384:XKfUROUZYzgXCZe0D3cvi6X+xo+31pfnLE73djAGsD7KFya0GB:XK8sPzgXvq3c66X+x57fLE5AGPK4
Score

1^/10
behavioral17 behavioral18 behavioral19
- Target
  
  xiuxian.v2.skin
- Size
  
  57KB
- MD5
  
  4f5df54d8688d355c2e3674ec2cec055
- SHA1
  
  28460d8a3b8606996be49041444ce5915ce4ff1f
- SHA256
  
  ab5f7f657998a48f56941b0ce9403e3f65af1dcbe69bfaea060018bcf09f0a54
- SHA512
  
  2af430c85f8a84afc45b2ea10fb983b54a761703a0569bcc93078fb3af3292db4906bcc48b4bc996feebcba4738f563f5f99db3fc97494d46a835fb8a277d6e7
- SSDEEP
  
  1536:IgKjdB1ZaFbEoVxYUva7PliUFuiI/PSCSc1ALd:IgKjdB6FnVfvIPli+uiI/aCP1AR
Score

1^/10
behavioral20 behavioral21 behavioral22