Overview

overview

8

Static

static

6

13d4954906...18.apk

android-9-x86

8

13d4954906...18.apk

android-11-x64

1

TencentUnipay.apk

android-9-x86

1

TencentUnipay.apk

android-11-x64

1

Analysis

  • max time kernel
    68s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    04-10-2024 15:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    13d4954906b5f181b74e015b495e35b5_JaffaCakes118.apk

  • Size

    128.4MB

  • MD5

    13d4954906b5f181b74e015b495e35b5

  • SHA1

    2b90e8cce3873ae7a7acdcec560af756ef761341

  • SHA256

    cb550c84c8414bb462a0464d5edd0ab5be538e32da57931c6041f62d1005eff3

  • SHA512

    e80ee8adfbe6ca402f3da613d896a173878e0a83002562a029aa9e70fbc6ab0014010212f4a687f21b005817af4efa5ee6f654171c9d369c0801efbc61a39b2b

  • SSDEEP

    3145728:w3riuWS85OnFNpLQeIPjEo/RSZHVQaAzVcXt2yzVg7B0Kfj:Gp85gp2jT5enAyXtL5g7B0Kfj

Score
8/10
discoveryevasionimpactpersistence

Malware Config

Signatures

  • Checks if the Android device is rooted. 1 TTPs 1 IoCs
    evasion
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
    impact

Processes

  • com.tencent.tmgp.smft
    1⤵
    • Checks if the Android device is rooted.
    • Acquires the wake lock
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4246

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.tencent.tmgp.smft/databases/QQUser-journal
    Filesize

    512B

    MD5

    75571389e0e3ea18829f1ee4cc54b666

    SHA1

    4f5a3c81a226eb224589c77b65c7038027fcc461

    SHA256

    78b89958d068f346e2bb0cc147a9767f4cdf292365a04e67cc7e95df8b12f8b1

    SHA512

    1711b49e6a2aac256ff7816c4fe9a4f40b14cffd137138ea36abe0ccd73a70aef6bb287cd853f83e255eb51d3ac995583f8b145f4de0f34e77623f7e01fc2337

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/QQUser-wal
    Filesize

    32KB

    MD5

    10939a36cd9fb27415083b4829046e6a

    SHA1

    80c4cf86be9b5876bc09d4c6dd0f7ac42ffd1075

    SHA256

    9ab5d0b4a5479ef223ec588f9e29cd96dcf49ee495ce53255c75a681d1de90a4

    SHA512

    a6a2956c0b3b3cfb6a726d266189af4e9b0ea70b8b9dc7da6906183942a24cc0fca6fa7013d52cba9cf087e23a19447e36debfc5cc0fff7c700bd4ade5da4a42

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/WXUser-journal
    Filesize

    512B

    MD5

    ba05c241c203fd6296725895ed330545

    SHA1

    7be53ed89cf61fe5e1d98d30e4b60169f65a4ec4

    SHA256

    79355b39f4e2c8c8a72b80bfb2a2e05828638c0150fcec8387bcff09bfe23beb

    SHA512

    e9b29fcefaabaf89c9e58a889725171218d7933f0993163cfbb913126f908d8a2d1d0b3f1ec541790aa7edd7184c39c058012d88ccd14e35dca498043213e4d7

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/WXUser-wal
    Filesize

    32KB

    MD5

    22d4e07d9113b008e2d3b87f4239def5

    SHA1

    d2fc98f5292d582974adbb381fec4de641ad2a7d

    SHA256

    d9821482c73226c7d62e303c80af8a878a0908736fe4709b263d701e672d2e7a

    SHA512

    233ca91ac5996b435fe823273b6616335a15afb86cdc32f01c503fbe3b3b0d98225f6e2f4c5fa6f3519646fbb4b9110b5034a614493c4e679d5c0b9afc181311

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/beacon_db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/beacon_db-journal
    Filesize

    512B

    MD5

    c4cdac4d0cd0f9dd7b232476968bde38

    SHA1

    a514692c91f62f886917a7f975a6708f9a8112b9

    SHA256

    b0a95894e72541ef5fcb8fb6b40f23a26e7016fd46dc2c72f97e1e3ae5f3a115

    SHA512

    0d35a6e36d9cc0fdf31a28013a57f988948111da813238d7908be6367285229cc46f73a67e46c76750b757d5ea7b4b3201ba40ddc94a1c63766279a08c5e7bd7

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/beacon_db-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/beacon_db-wal
    Filesize

    92KB

    MD5

    c27016d6af3fef22caf8dec93a59d167

    SHA1

    69b2f46b410e899429e7e4634e4f93712c6ea1fb

    SHA256

    0c04f8085cc63d12608333b0d2a76bf544efcc074acff328308df9ee13e7c94d

    SHA512

    7a6f673f04a59746505f0d9bc134ad9a5a705bdf590e7cdf770032ef0110ca85863fba2321670a94551fa845361cbf0509932e5c1af89df997e9987859fad85c

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/bugly_db_opengame-journal
    Filesize

    512B

    MD5

    4316d9012cbaf1a7852e3e67356fafab

    SHA1

    bfd4b39be69cff35fed8f8b5d317efa350145df8

    SHA256

    a40788340659a689ec5823d148037c93d767a85063003327c1392b0c254a28ca

    SHA512

    04ecbd9a81069c7a01fc3ff78858208570ba1eae26e8eadc7435ef201f74cb04385d23addcceb351b0f70386e53dba46e627c46c758c0fea976f64603468b10e

    Download Submit

  • /data/data/com.tencent.tmgp.smft/databases/bugly_db_opengame-wal
    Filesize

    64KB

    MD5

    19aac440989519048f5849a331722eeb

    SHA1

    a57f8ce99e3847fb6bd1b562e2f84b102d693ef6

    SHA256

    1b349f63d0f40ade8ad12478296f53024ffa3ed014cbe1b2398fbe7dac155bec

    SHA512

    6da6be2d4a53ea6fd6bab74c66528c0e8550b42c9b9dd57a7a6efa830f76abfac83ccd515f102d90bb522169ee96095c479dcd6e4f316e1f36a4b6df8ce84f8a

    Download Submit