b680fb9166a3dc942590cc2e8c827c23689e7a818eaacb003822435527aea1ca

Analysis

max time kernel
10s
max time network
138s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
09/10/2024, 10:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2f455c0e7d482781ca6d50616b585cea_JaffaCakes118.apk
Size

11.9MB
MD5

2f455c0e7d482781ca6d50616b585cea
SHA1

2586ea2b61f03d08716c8a80c088e759eb6d7073
SHA256

b680fb9166a3dc942590cc2e8c827c23689e7a818eaacb003822435527aea1ca
SHA512

68e180e3ed358f1f0e32d80c07a7a9fc6380a42c313a526f720cca8744232c3641225ee64eee6fda9282c83a19802527280e558b9d5c42ad7aad096787e01220
SSDEEP

196608:a++7lZZNkzjk1yYVZCYpSe6TnguACos71NV+AjA9wxVlmK6m:a++dktQ16TnguF7J+Yfm3m

Score

7^/10

discovery

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.smzdm.client.android

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs

flow	ioc
9	alog.umeng.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.smzdm.client.android

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.smzdm.client.android

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.smzdm.client.android

com.smzdm.client.android
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:4251

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.smzdm.client.android/app_google_tagmanager/resource_GTM-K6W6B4

Filesize
12KB

MD5
eebbb17bb435268296be39e685b6055f

SHA1
3fb7281361f54f49bd1dd6d4ac351304eeeb2d1e

SHA256
7e33bef8f32eee5dc77abaed0c0cd381ea9c2a5862883e29f477137d49a94049

SHA512
f4ec3cb77feeda9ecfa3b4971eade5336b693cb745ba06ce52a30b00da0bfc001407cc8f04a69210155c614718fadd62d53802150a07e420f18c509c5dfe6e9d

Download Submit
/data/data/com.smzdm.client.android/databases/google_analytics_v4.db-journal

Filesize
512B

MD5
71b311a30d0528cbbaa8b26a6234161f

SHA1
3ebff047caf7b38f29283d2e40886318b73b3d1f

SHA256
9aa219bd15dd6364e7ce6732f0225f1d882f9b594cba2765e264b298115bb3e5

SHA512
9083049d1398ffdc9a060ff6dbf56b3d260e7b07f6b93f918ff3ba9f6a93ba46bc4e4a23ca0e8c20069cd86a0b2c2ae12fd3fd3559999abaabb8d06b0415e1ae

Download Submit
/data/data/com.smzdm.client.android/databases/google_analytics_v4.db-wal

Filesize
52KB

MD5
30f495537784dd5d1ce6059803d35e02

SHA1
412678d7602b35d3bdfb8030cc26a5b5bed4d808

SHA256
cbe6a97654c795f700d08b6aae30b2c3a8e0504d17f46816ed496f3abeff6573

SHA512
84fd06659a0c56fb09671d600f9db9da7032728fad98fd30367323469ed10365a5ac7f5ddf153a961223d7786186503c9685bd7888a6570f940e6355824f2243

Download Submit
/data/data/com.smzdm.client.android/databases/google_tagmanager.db

Filesize
20KB

MD5
5c0157f7bab02442289883c5db928a8b

SHA1
9023da3e899e1290d9dcdd0d84270180a615be19

SHA256
e061da032ed90676ebe9dfe4900f2c50d7a1c0eb5b9c55df1634f20a744153c7

SHA512
9e3730815a67f6c138faff4c159927785658ec4608d337a2e3f4a7c8db26f911b1f4a01d9f90f958c378bd88cd9185814fe5951d6a045ae3c32ba2b88d28932d

Download Submit
/data/data/com.smzdm.client.android/databases/google_tagmanager.db-journal

Filesize
512B

MD5
030b2d1536f3f82c41b2ce003902d96e

SHA1
89900e0be2a5262a1e34807b1491c3993400893c

SHA256
00dae319669d93c5aefe5bf532017ac4c107faabaf1e568894a45fd176f7a6f3

SHA512
05fe162073f70a784f9fffd1ca0378d890c557d2db5ad8b8f12d02981cb1c268cfbd45f498af2b19f729877636e70ce32a6e92e50f97745e5e929d8163613eda

Download Submit
/data/data/com.smzdm.client.android/databases/google_tagmanager.db-wal

Filesize
36KB

MD5
363b3ff385dafa9bfe6155d79dc9600f

SHA1
b4f6578f54b85f774e6170aa69940a20437f2d26

SHA256
0d02466e0c4981251c270b907e9b365d7392c0531015791307ea53f24971aa23

SHA512
d7b54ddd6f8cace3752e38ace3bd9a917aac7f975a73f894b12112c3a2f302de5dcc763d9fbba8572e7feca92c7a38084b8b74541132c0ff85594c4b687094ba

Download Submit
/data/data/com.smzdm.client.android/databases/smzdm_datail

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.smzdm.client.android/databases/smzdm_datail-journal

Filesize
512B

MD5
c65d933a264ca80294610b5e4348a23e

SHA1
9092831d103c571c6158aa53a02bc85a5226df9d

SHA256
21b20c40a87958535ea36e98ff1268f539a55b1fe312ba90c4709f7d0ba647ff

SHA512
2de7d336a9b3aaf9947fb910d3244a5ce2ec3db6cc8dee96c8636be7f4d466d918ee1c49d9a692b10cf272d3983338021989d91b7e747264b6d6dd846f20d78a

Download Submit
/data/data/com.smzdm.client.android/databases/smzdm_datail-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.smzdm.client.android/databases/smzdm_datail-wal

Filesize
20KB

MD5
a12d014fbe40e23dba3cb9eee5e9353f

SHA1
01d7a25e007c9c7a0758c6a40d551df74c5b8d31

SHA256
9d32820df8b0cc1afd817b2993afd4e7a26c7b8be925df7aa5e868cee0b574ce

SHA512
c0d1b4fd2dd11c61d03d401464f8a27b738863582516d87f61eee759e38ea31ef1855fb21e3e8d948de94ff2aa8655949c099285ae6ab8ecd8e7c8e3d1e55ad8

Download Submit
/data/data/com.smzdm.client.android/files/.imprint

Filesize
1KB

MD5
58d2eaefd5956b36c3a92c8a4c519b7f

SHA1
9dd5760c815a4cf29b9d93890c88ea63387ed7d9

SHA256
78db61f5ded6d42da44c412bea24727fdadbdf817788c38c3147ff3a8322a08a

SHA512
915d6ac6109f2f88dccdc8090a4b9e75609632c76eacf97e05fe20fa686214f91e77a67f8de6130dc77714bd0f24490e18fc25522db187e5e5e7641c18ecfb29

Download Submit
/data/data/com.smzdm.client.android/files/umeng_it.cache

Filesize
310B

MD5
1d1cfc7c0999a56ded369ebdc5f872a5

SHA1
b0886e250f30fd2e2548e711befc482c10e7c504

SHA256
c84794660aee890aea61256c19b5bb0a20621eefc131382c40a2ae92c3d2e8e2

SHA512
215bc0241dd943323a47e7ec7fabdce1948cc2c4aadceac6073a10e57f28847a866b95c633542a5cb26824bb45cd22096652b6b29153aa837de6478948b1f2c5

Download Submit
/data/data/com.smzdm.client.android/files/umeng_it.cache

Filesize
158B

MD5
c4214270de30367bc7acd266f387e83e

SHA1
b8562f3657074ee7a582199b843c442c0df87583

SHA256
178c90e0b76a20966f745b8a6aa80d3ad206083c2aa5ec04672f40b281cee507

SHA512
f3c75ce9b82f4612afcca69df525227778797a1c2b890d4a0830b247dcb46dfba39108b4438a0ad6dc0d43cae07f7b9382f819fd70263764cd715fc754450375

Download Submit
/storage/emulated/0/com.smzdm.client.android/asdklog_s

Filesize
135B

MD5
d100d1c6a8098f7cbb84a2aee4a2b076

SHA1
0df1fd2d09590af2c7d4b1c28a0f15f7da381b09

SHA256
edee83a7e13ae262b8c0c87e74a1540faec75760bac0b034c660e3998d89473e

SHA512
c909247478c4a6b583f2643bdbedc8cb83e38b0ae121841b43aaf243246c99163b0f6b5efc51d969bad0cb78c386bec425b6a21e320ce10a97defd302c52f076

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads