eba0edd79d7f110218089cbcf90bbf0888f3de53410f68b7ce8d2754de6c4f39 | Triage

Sharing

General

Target

02a44ca13095ef5cabe95a680e84f9e0_JaffaCakes118
Size

21.4MB
Sample

240930-wryj4aydlq
MD5

02a44ca13095ef5cabe95a680e84f9e0
SHA1

d67e61b09115b7c8a7e2eff31afc0e62effa6927
SHA256

eba0edd79d7f110218089cbcf90bbf0888f3de53410f68b7ce8d2754de6c4f39
SHA512

5c6e5b065756747fa1b1a53dbab098f658170f58f4642344ad3797b255ab3f3730bc3ab55fac01e7e51796f628a4af181da6fdfc73e98c6ac7514ef3f9647097
SSDEEP

393216:jIfcHNDULcfVZbracHudSZWJP/ejhU478W7YfmktfzZhX7fqPn6ANBWnqDM:kf61xfbrHZZyXe9T78lfxhLfqPTBE

Score

6^/10

android discovery persistence

Malware Config

Targets

- Target
  
  02a44ca13095ef5cabe95a680e84f9e0_JaffaCakes118
- Size
  
  21.4MB
- MD5
  
  02a44ca13095ef5cabe95a680e84f9e0
- SHA1
  
  d67e61b09115b7c8a7e2eff31afc0e62effa6927
- SHA256
  
  eba0edd79d7f110218089cbcf90bbf0888f3de53410f68b7ce8d2754de6c4f39
- SHA512
  
  5c6e5b065756747fa1b1a53dbab098f658170f58f4642344ad3797b255ab3f3730bc3ab55fac01e7e51796f628a4af181da6fdfc73e98c6ac7514ef3f9647097
- SSDEEP
  
  393216:jIfcHNDULcfVZbracHudSZWJP/ejhU478W7YfmktfzZhX7fqPn6ANBWnqDM:kf61xfbrHZZyXe9T78lfxhLfqPTBE
Score

6^/10

discovery persistence
- Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
behavioral1
- Target
  
  component
- Size
  
  2.5MB
- MD5
  
  a0734b038b6092a361ddc80f5371bdee
- SHA1
  
  5bb30093c90e5172e42ffe3b8db9034929971294
- SHA256
  
  c2fdb8c9a0230b49df8ad86b33630d7bef6a475f398e089fd946482b02dd8717
- SHA512
  
  7a210c2045f5d93c18452945aeaad399134fe0bf05289323a62bfe2a85cbf084c57b57f05f9b4bcac6b35058cbcaff977199bbe953f476f9c3a03c6a5014e48d
- SSDEEP
  
  49152:Ph/ElogOO3LpJRonwOGwc/dRhOoBdxTiIvM7eEzzq9353VTMlULvm/:PVEloEb1on/uLhOorMD21MiU
Score

1^/10
behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2