ae06c4295554aa7350097fd452e9b44cb20017a4a3ceabe7fdebd61e5f323234

Analysis

max time kernel
13s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
02-10-2024 13:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0af60f819b5c48da66f3e968a5e2e1fe_JaffaCakes118.apk
Size

4.6MB
MD5

0af60f819b5c48da66f3e968a5e2e1fe
SHA1

ff33ef9ba76510f6f638148c77450fcdaf9ca727
SHA256

ae06c4295554aa7350097fd452e9b44cb20017a4a3ceabe7fdebd61e5f323234
SHA512

380e0ba121ce1d02725a63e96ac3d2e2f281c69c550924f4b681efe76037abc6b2d0987ad141766aa8e331c068dc1cfae8fffc791320125a9fbc0ded29564db8
SSDEEP

98304:LnXkul5dZL2OuVdMSX8epWXD4TfYSpjRHAOQt20rAS9CzhsovTKQuOjXOfZmcpxf:jzdZaOuRMVX8jljIt20rAS9udLKLGXOb

Score

6^/10

discovery

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	ch.nth.android.contentabo_l01_sim_univ

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	ch.nth.android.contentabo_l01_sim_univ

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	ch.nth.android.contentabo_l01_sim_univ

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

ch.nth.android.contentabo_l01_sim_univ
1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Queries the mobile country code (MCC)
PID:4610

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/ch.nth.android.contentabo_l01_sim_univ/cache/config_cache/-13547921261423697312

Filesize
9KB

MD5
2394a084e267a2b9117414dda8fe7bce

SHA1
6fa004a59a7ddf993c9a71ed9804656082a5784e

SHA256
4401514205958eef4711823e28da46176b319663321b7598cb941c57696d685c

SHA512
d07d81cb760da7995d5d7f4a3cca591f68721bc3b85ea0ddd9fda95f227d8b14cc83f3dc85420688056b298d04ebdc901d83783bc8a1288afb43e0837ecd14a1

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/cache/fetcher_cache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/databases/com.nth.analytics.android.588bd26ad81762917ee667cd121eb5ef0d1b21e6f17ac06b7844afea7d060d57.sqlite

Filesize
64KB

MD5
8f3e1e4b4117d7e0d4ac6e6894aa60e8

SHA1
d9723b7b9c3b88f90671d19c5dee4a5ab05928ef

SHA256
cd223e8d5bfae6b87a27cb03e5c0049342853e008913d63e16d10ecc6d06f235

SHA512
84c8f81f7781eed24dffc386fa0b777dc894f3b1660d8b074181488475cbe308f332934b1c346b35ccf5c96ebc5392fa7c047ce7662f19664f75718090ab2b04

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/databases/com.nth.analytics.android.588bd26ad81762917ee667cd121eb5ef0d1b21e6f17ac06b7844afea7d060d57.sqlite-journal

Filesize
8KB

MD5
fdf3290efba7387e84ed2c8ea30f202d

SHA1
5ae23db99699df7213df194432ec62e3650e15db

SHA256
ce5a72b3b202f442da5d9a927f986ea6881db73892deb84f8166e5adcf7fe2c4

SHA512
3f87bd541afd497eb959509dc98e4ab04700029e494dba5d3b05996ef0ca81afa86ababe51389f915957e6826a073c792a1f5c984829966355b2654f5b4355ef

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/databases/com.nth.analytics.android.588bd26ad81762917ee667cd121eb5ef0d1b21e6f17ac06b7844afea7d060d57.sqlite-journal

Filesize
20KB

MD5
c63229f99ad9faa088433bbb3ee05d09

SHA1
ea193f55ec50d8411133e7417877512758ccdaa2

SHA256
d0b48457b2e9ca8b4c40b38019eb498efcfcbb53c23f01f6e31b58519bc6bea6

SHA512
fea5a3d28432a2de3cd09241ae44a8301a77e4a633c5816307f496f8941ea72b76a5f806d10460dfddcff93794972a8c193bf1e54c31c8e7cdae570275340fa9

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/databases/com.nth.analytics.android.588bd26ad81762917ee667cd121eb5ef0d1b21e6f17ac06b7844afea7d060d57.sqlite-journal

Filesize
32KB

MD5
fb44416ed9837f8ffdc61e4682544ed6

SHA1
a176dacbc38b02b71c130421bee97135456efbf3

SHA256
c7831e1a40fefa674e5a9b44b9c4a0f99ecf8346313c7b3eb078d441ad0dbdff

SHA512
99e5e0888bec0e1d98a2a0c10210c2fee223fde9543ba6cbd54f5ba318b0aa2f642c689cda9a1fce3d9fd6e81666c168bbe40c62b6a08ad6fed2e981bf9ff562

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/databases/com.nth.analytics.android.588bd26ad81762917ee667cd121eb5ef0d1b21e6f17ac06b7844afea7d060d57.sqlite-journal

Filesize
512B

MD5
3a2c4b9def11aa9fec34d358c86b5351

SHA1
468fd648fb0f85841f9b5edbc39d392c09e7d141

SHA256
457c70e58d045338756746e7a8ed82e61937d061e0c9db7b868faf3050d1a35d

SHA512
bcb2724ad4546c3666c86ba31ca8e249613c02ab9da04865524db28c6927ee6452419e48caea0f4bb952698fff5297863d83ff66a3d08fb57b12a2fe8e7813ba

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/databases/com.nth.analytics.android.588bd26ad81762917ee667cd121eb5ef0d1b21e6f17ac06b7844afea7d060d57.sqlite-journal

Filesize
8KB

MD5
87a85f52ea2798c67006cc446529e3f6

SHA1
5efac15673ef229b2699e2640120a2e46cc630f9

SHA256
0f788031e89511080059e152b2a87aa836d73ebc140ee684763aea5ddbbb0803

SHA512
6812c268db3608174990861950a49dd89c02eca71342024c7be92464e94b23ccc5a69d5cb6a877c4bae09b92176b48e2f41785b2e327b8fdcde332c2c0005091

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/files/app

Filesize
30KB

MD5
6aa79cada1b050de82e369ae4ca698dc

SHA1
9e4017573c0da880161605d6323b742c6c991b0e

SHA256
95492d74562d65ea8e63b03d8934898917557e296f78c079a732b43f64db8185

SHA512
e9086d7145171459b5c3884d42b84fc466e50293f1a3dc2eddf94d53481237d2d45d89231d09763478acb6458f0bbb74d02900a36a6be896b102166f32fc99d1

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/files/langs

Filesize
1KB

MD5
af1d537070385639d43a380ebc8a0d68

SHA1
a44a9a7c49bbc039830dc313376fce73ba59b80f

SHA256
23cd7b1e3ae13886fe7be912a3fa24e76e0686c1eaf3dd99789f95bd5442d4c5

SHA512
635e8f62c5ff036ea48f3528c041e3893478a27ab7285dc914802bec729f3cd370dc40660efb85001b8f370b42cbc37068a9d99e86975bb4b18378a608b5df6f

Download Submit
/data/user/0/ch.nth.android.contentabo_l01_sim_univ/files/translations.json

Filesize
125KB

MD5
cd0f39dab74fd9c4a9174a1a142836e2

SHA1
6d99856add4ba64e2711b75ba680fcb1e793fa12

SHA256
90fd1bda0e057f74c8d8f9cc53f02aff270d7bdb39e26cc839643ce27123bcf8

SHA512
d670b85f15ec4cd4d70fce1175b1cfda450711dee2a1c5165487e3369e687d1c15c020901f9edf739791f70bb08b577e506f07654d478bc4a6fad5fd9102e13e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads