General
-
Target
259bdfdd01904a66b12d4d2b62588a9c_JaffaCakes118
-
Size
240KB
-
Sample
241008-z6ex3s1gmg
-
MD5
259bdfdd01904a66b12d4d2b62588a9c
-
SHA1
15504d50f141da029253a73cfdbf49b606f36508
-
SHA256
b426acea376076b676ff2ca363a3095a1ffdba820a40380a28b2a3068b634ee7
-
SHA512
2cb9fd1d1771a2770d7571d407a25268dc4a02d0a05d716dc546e29abe5b5a5b3318d9431f7559a4bd25a0085856404ce0539c3c6c24f6ba1e8083a01653bb64
-
SSDEEP
6144:lHzH7vhw3wmz61Ye4zKGMTx4X4bG6nsdOr5l:lTNRbLBTxY6nsdyl
Malware Config
Targets
-
-
Target
259bdfdd01904a66b12d4d2b62588a9c_JaffaCakes118
-
Size
240KB
-
MD5
259bdfdd01904a66b12d4d2b62588a9c
-
SHA1
15504d50f141da029253a73cfdbf49b606f36508
-
SHA256
b426acea376076b676ff2ca363a3095a1ffdba820a40380a28b2a3068b634ee7
-
SHA512
2cb9fd1d1771a2770d7571d407a25268dc4a02d0a05d716dc546e29abe5b5a5b3318d9431f7559a4bd25a0085856404ce0539c3c6c24f6ba1e8083a01653bb64
-
SSDEEP
6144:lHzH7vhw3wmz61Ye4zKGMTx4X4bG6nsdOr5l:lTNRbLBTxY6nsdyl
Score8/10-
Removes its main activity from the application launcher
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
MITRE ATT&CK Mobile v15
Defense Evasion
Download New Code at Runtime
1Hide Artifacts
1Suppress Application Icon
1Virtualization/Sandbox Evasion
1System Checks
1