655ab7a7a0a9ac3940895a9aa2b9dbc1be1a00ab51e9ca5eac20ec821f3fa7f0

Analysis

max time kernel
133s
max time network
157s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
09/10/2024, 07:29

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

2d397f4f31ca948cbcae9853d46cd603_JaffaCakes118.apk
Size

881KB
MD5

2d397f4f31ca948cbcae9853d46cd603
SHA1

8c3591383bd5e49d58874b9800b5dc17bcd6c809
SHA256

655ab7a7a0a9ac3940895a9aa2b9dbc1be1a00ab51e9ca5eac20ec821f3fa7f0
SHA512

2ab9f3586b33fde9784f3c2db96e835f2ae06387a647438a60d67b7f7fc026c6e37dd1a59824a6e44400f1e8fd2dade5372fe88c789d62845d1fe57c55162007
SSDEEP

24576:IFGbT7nJnDzMYEySqrhkHT7XrIw0iawmj9n+Gu3nosFJ:IFCnJnDzMYEfqlaTrh0ixmBnhRyJ

Score

8^/10

discovery evasion stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs

stealth trojan evasion

Suppress Application Icon

T1628.001

pid	Process
4475	com.han.livewallpapersb128

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.han.livewallpapersb128

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.han.livewallpapersb128

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.han.livewallpapersb128

com.han.livewallpapersb128
1⤵
- Removes its main activity from the application launcher
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:4475

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.han.livewallpapersb128/app_particles/8fca2d52/p1_1.png

Filesize
2KB

MD5
21530eb77d72c4264fe2d5a5f2160cba

SHA1
9a75c740f7413fb779af8c7ad4be24e85870fb8d

SHA256
03145d15ebbe61425a343d2bf166d883405dc810efc3c1f28669911042943b44

SHA512
f3934a26b291246c7ada42f95210ca00010d15ff0306ac78c2ca777d326f1d312bd83d9a9fd84e113bf53e0d058401f9d87577183c6027e49c0bba1e6fff768b

Download Submit
/data/user/0/com.han.livewallpapersb128/app_particles/8fca2d52/p2_1.png

Filesize
1KB

MD5
0275fed3b6653df24682b6b719bb77e9

SHA1
41baeecd51948b19aba62e29d40122d17182b22b

SHA256
17d8d879fedc96caf7a20af27d4a3e825ff6877abf76fb3da8dd34bb5110633d

SHA512
58885ba8aea87d7127cff979bb9eedb22eba554a4a3e3079dddc58c31b4c0b74da54fa8106c9c9495ea94e11e763462cb87f048d37f47949cc3d107cee54d5d1

Download Submit
/data/user/0/com.han.livewallpapersb128/app_particles/8fca2d52/p3_1.png

Filesize
1KB

MD5
4981f78964eed86c34e7decbe03f2245

SHA1
eca09ad8da1a72e0927953ac7bf28a65d55bfdf0

SHA256
63cb62107573047627b15a1fed2d4eeb7ab054fa6f47a97205abad3083bb999d

SHA512
596629d6b4c43172bd45505836899e2f9dafe2a70d1fa78b0789f207e66ad443f9d247757cd558b2dcafbd3ff129f779e3afc46ec29c8df77b841c7c505d0bd8

Download Submit
/data/user/0/com.han.livewallpapersb128/app_particles/8fca2d52/p4_1.png

Filesize
2KB

MD5
6315df0085f0f375c1e586058ed17013

SHA1
72278a9cf4e4023ed0e1933936e740cfc4591aa9

SHA256
28176a243049cb34c035c6b5cb95d0edf2a7a933e65e5536744bc19bdf066a7d

SHA512
0bfd73dd3fc15aa55ac2e0c0976ac38ebae329051940d2514ff9b2ba5866ab11f0636647db7cc25f39505aceae6ff791b18e68231f3088804d84ed4bd368bd21

Download Submit
/data/user/0/com.han.livewallpapersb128/app_particles/8fca2d52/p5_1.png

Filesize
1KB

MD5
60d68473edc7fc3b1f7d368ac6e6e276

SHA1
b4537e887d16ad3a2684a36286f37013a3a58f46

SHA256
690c2788a290bd7ecab825211556ef82466343b2da2ce68681f8d8be7f703b89

SHA512
cc218b3eaf278444aacf21b9d39fb71213a9c35d6f6b6bedf7c4730e35af3dca30edff5c698cd58d5ead63435601803062808690fdea8ff1cc05d2a4aee10e7a

Download Submit
/data/user/0/com.han.livewallpapersb128/app_particles/8fca2d52/preview.jpg

Filesize
13KB

MD5
aed9028bc1658ef3119dc28db6669b79

SHA1
284be8754f2a0e53885bb68fe90864e9bf8cc2e1

SHA256
46d292921e9f3a5e2ce531362d9598d054dd1c136be07dde41e38fc705b2d11d

SHA512
0d50ad49f4e289c5d327fe2b7ce5dff637d02b5754526c86d3c3823642ff841062e6aced23fb18971c777731580e3a839f128b95cc14189b430695e529d24682

Download Submit
/data/user/0/com.han.livewallpapersb128/databases/livewallpaper.db

Filesize
20KB

MD5
b498efb74fbfbaf4ab53fa3a630aeda7

SHA1
ab78b5c2e5026aac4fd22095e174640d773e1126

SHA256
70c694ad5ece46778536c83b71002d9b30669168e0182981d7a91a2f87d5c96a

SHA512
26031ab47acbe438f8f7ed6921868d87da69cda8ffd786d2edc0485627f0e0a53f73a30d321678e946abe462473d25bf8a0405eec8bf605989a3328fbf029994

Download Submit
/data/user/0/com.han.livewallpapersb128/databases/livewallpaper.db-journal

Filesize
8KB

MD5
7bba697893584aabec269f5817914d37

SHA1
e8e0e3bda8b3924a4d81d5069e1319026595df79

SHA256
7397369698aeaa6e6d6eb758f116672286ffe8e9c33571aa1bdc2509b8f228d7

SHA512
8f18cdd02f6fa37637bb4975d178cc7f6ed2ab4ac9b604776451a26e23e0e2f6760c15d541780c423a648bb48a61af849fb523a8176b8c822a0c1c006d9b9204

Download Submit
/data/user/0/com.han.livewallpapersb128/databases/livewallpaper.db-journal

Filesize
12KB

MD5
90fa61a812e89e5e424b4d9b65234350

SHA1
628faf02828146684f8c2f329b87da138a0f6bda

SHA256
9cfda32fa1c7e70193935049e39a30869b69aba4e46e03e3c3257e6fb33ee03b

SHA512
05b96a6b52309f2d9b95990449cdc32eb1384aa1ba92396e23340a7f2a2b1bd01c4199d53ba3f50c4c129ac1daebf14fa88a627f3abd3815f6a4bcffeaa9abee

Download Submit
/data/user/0/com.han.livewallpapersb128/databases/livewallpaper.db-journal

Filesize
512B

MD5
54695eda64781b2a132f1d87c02ff5c5

SHA1
3f0ff13df65b42bf9a3c5053c652c735a68786e2

SHA256
2795744d5562184bcdb67e40f8cc09f754c13490c8ecf23b3ee970fecce5b3aa

SHA512
cc8f5ee11b0823933f214551abcc3063a71bf0a52549dc75dbbde3b029054131ab2a893f94db5b7139a754afea74f131b64bc091b58e4893cb274bc7d5cbe7f1

Download Submit
/data/user/0/com.han.livewallpapersb128/databases/livewallpaper.db-journal

Filesize
8KB

MD5
4a1c021499bac1f22b6f98221550f432

SHA1
87838d04c9b7e68b35c149756ba28dbef4864517

SHA256
4def5cfed844ed67bb7897fd8571f2ed2f90267049e4cab7021503c6b4607d25

SHA512
49e6159085f4797cc125200bc3d8200c14c7c6d1f50368ebedc1826137f7834903a9d250885e72d4a97f9a6c4d8ac6609e8c0c4d55efa6b04be448d6ac67f7de

Download Submit
/data/user/0/com.han.livewallpapersb128/files/mobclick_agent_cached_com.han.livewallpapersb128

Filesize
100B

MD5
e278438f00a8c07b588e5bd2ebc8f9bc

SHA1
a7f3c94f4bbdcb0c02686b79339b90ede64f9070

SHA256
bf6bc26ac5468776938032e7b9ea89bd3babab217521836159733fd536e31ba8

SHA512
6491fab5ad3837b1cc1ca75c0be1455f411301225dea617ef55435b6c5ce4607d4c1b481237949ce2629899e8e63ee6d51db59970d6cf0357f4dc0be0664484f

Download Submit
/data/user/0/com.han.livewallpapersb128/files/mobclick_agent_cached_com.han.livewallpapersb128

Filesize
217B

MD5
2d4ceb72efc10101e6d22bf0969d7dab

SHA1
8c25be8172caaf35d1094155d35e3787de8c0ab0

SHA256
247c80838003e3a1cb5d8d31d29c3b7051d1895025fc3d994895fe009685497f

SHA512
3b0638ec929c5edbcf2500abaa4790bad479fd073481c3e5ba40319b0b046c2c3ab9ac28d3ca6d33b809a6f131e67b439207991b9fad7d02c252e9d74724ceb3

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads