b680fb9166a3dc942590cc2e8c827c23689e7a818eaacb003822435527aea1ca

Analysis

max time kernel
67s
max time network
134s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
09/10/2024, 10:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2f455c0e7d482781ca6d50616b585cea_JaffaCakes118.apk
Size

11.9MB
MD5

2f455c0e7d482781ca6d50616b585cea
SHA1

2586ea2b61f03d08716c8a80c088e759eb6d7073
SHA256

b680fb9166a3dc942590cc2e8c827c23689e7a818eaacb003822435527aea1ca
SHA512

68e180e3ed358f1f0e32d80c07a7a9fc6380a42c313a526f720cca8744232c3641225ee64eee6fda9282c83a19802527280e558b9d5c42ad7aad096787e01220
SSDEEP

196608:a++7lZZNkzjk1yYVZCYpSe6TnguACos71NV+AjA9wxVlmK6m:a++dktQ16TnguF7J+Yfm3m

Score

7^/10

discovery

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.smzdm.client.android

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs

flow	ioc
28	alog.umeng.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.smzdm.client.android

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.smzdm.client.android

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.smzdm.client.android

com.smzdm.client.android
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Checks CPU information
PID:4458

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.smzdm.client.android/app_google_tagmanager/resource_GTM-K6W6B4

Filesize
12KB

MD5
4794005bbe6f5f13d5447961d00ab5dc

SHA1
9e8e97b01c38d0c6294bbb9c449e95cf30dbf4fb

SHA256
c812b9b6e71288eb09edb502880d8761efb9c08c83d72be3ccc38c1b81bbc1c8

SHA512
aa79b06a2598abd285afeab6c81bace839f1827a27fa2dc834e6a50487906dbf50fc6275339204dc57e839830773fc7b37e65dee896009ee482f54f413983ed0

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_analytics_v4.db

Filesize
28KB

MD5
60ae3555b60853ad5a921e6f0e489e7f

SHA1
707ea120f60037bddac28635b5f3c0d74a69dfc1

SHA256
68be1e675b68f8a894c80caa952c1205e292c427657bb79a58b9b366934d1d8a

SHA512
550cfd40a3a3bc7be604a81c9c9c879078033d12282cf32ca6464851479823febd12ed2162ca6241b01a03ad52cd80cf3fe3c0252591e68cb11a8ceb682f2f39

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
03bc175f3ddca2f86497795c73dcef4d

SHA1
6c4629daae5d6b9bfc3ea9f8edbce634fef4aed3

SHA256
0a63a4970eff5d2ade7604d98847d0ebddeac9983385f7c691ad336d0f0be4b5

SHA512
7899726655856555e15b7f5f96a33573e72a7e1ec096cdb13077566a6ee1b27f3567af138ea5f7cb3c6b36164e3ff334d4cdc1fe5722b74f8b14cb38343b9621

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_analytics_v4.db-journal

Filesize
4KB

MD5
fb67081a94699a5d18cb21bcbe1d6352

SHA1
3512db2da2bf67585bc7b4120d449574d8185d6f

SHA256
8146ebdfb6cf8c66fe61aac36f1406b8012091c8405b0ab1fa31e77295eb8fd8

SHA512
d8be1130986abca7938830ede99054158ffa70282408f7b58459c6b10b856ba97ddd50047328742e9b15e346a4e14bba2c7c53f8703a2df775c497972c77eb50

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
229375f210de41ba3ff7e6b3ce47108e

SHA1
4dec61017eba28be4a84f2fa4def881d26d0dc3c

SHA256
183969ff3f9c6cd3b4de37923b31773570f70c9243b7f5770a903e3f92246c3e

SHA512
fecb57074d3e80d477734e7fd0a16bca5059d5b5c20b1b891be7d92a2a9d1da347e561918fa89b13a68da8432e94a03fbc8825559a8026c000a0720e13b0c2aa

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
241b7562ce6c7afb4ff03a9012962f30

SHA1
dae1e3a0d8ebd16155410fbd14338cb9388db41d

SHA256
af22cdd7d801a9eddac1daed5c383a580b7d435ecf178dc925e2f20b4ec61732

SHA512
952fc661a77f3b1f5be7dd15858db53db288c87430078fca48fb6fc8a438d73243324d0860bb1a78946a235bcf7e35b3d26aca0357d08ca44e52272122a1ac41

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_analytics_v4.db-journal

Filesize
512B

MD5
01f1b8bc0fe06a61ff47c61e4fdfc4ff

SHA1
6339d413d84bfadbbcc3798f6db55bd5b9bd2e39

SHA256
49c64cd43e714552dbc1ff82e55bc075bc5e67a7913aa3c42d2eb25bc6e576a6

SHA512
7ce557d4f4fbeb97fdad9ad99f9338d7f75e8f33681b9ede07af19cd0b2c78689c968e80c7ade56079196fb6143d9b3062f3e37641f664825bdcc74faafe670a

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_tagmanager.db

Filesize
20KB

MD5
a428ad2627a4f1131afb701d8caaa15d

SHA1
0e704dea2484411313f7f29caf788a360acb6b93

SHA256
34cca6871bf4086a0d88b855b3e1a97bb9f15bb9c5088c709fa145e122fb3e23

SHA512
cca35abdf4e63b942785352cfbac24763e840bc69881d9673986cc3a2c73a3e2633d291bb1f9fd8944d28f32e15f5e8a7397a2b1a817bb21cee43ccb987410ff

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_tagmanager.db-journal

Filesize
4KB

MD5
5030f919de38c5c710f567a85549a487

SHA1
eb0499cff3617de8fd255fb6211062017ce17a11

SHA256
f8f7b8e3843e4574c367cc6191cfe03f806f26ec79cfe0da9cbb3c72dbeff027

SHA512
b49eb9d42e098d22802a923ff9e234c5aba341eab1bbca0a09ab4643aecd6658bebd1abde4c1cd83f2c1f1602578ef354e3615c91aad048691856fa03e6927f0

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_tagmanager.db-journal

Filesize
8KB

MD5
87c3fbfb8b24a38b4897954e301e4a68

SHA1
ddb215dc45466a0bad483a3d2a48ae82756fe4a8

SHA256
1a5659ff680b0d2ed6be29326a79770ae709c7dc65e4c1d5c114d09d8ab520a1

SHA512
5ba49e7300a952e27dcaaf59d544daeacf7290dfe97237f6ce11514ff662913d092ad15b22fc290dd315e057ae6b00f39038eafd9686efcff410c16b5bd67d7c

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_tagmanager.db-journal

Filesize
512B

MD5
68fb8add5625fa150b4ce44d443e1670

SHA1
2c8ceebe671da2356d9f35c1aafa17e44109aa5a

SHA256
3d9406dc85cb552aa3dc2208e7e92cd8cccb9ee02d4416d292fc71503cc82eed

SHA512
baa8cadbb96fce4c7dbe39a8b561da8e25e54b09998160f23d813c319fa99d6fa0309ec32228de045ab1f3aa4d4e39a21dd3d81cdad3fe68d0fb4ce3d5669517

Download Submit
/data/user/0/com.smzdm.client.android/databases/google_tagmanager.db-journal

Filesize
8KB

MD5
0e6065e3cb3259819102466bb1244ea6

SHA1
86c5f7c52fc7d31a57758d6fd70942db38ce12a7

SHA256
f501ce5ee6f6dc19e1e5adb53903cae046201804c1774ecad039bbeffb38608e

SHA512
04dbeb8eeb6426182ec3fae8da0be8ba76158b927675ea1993f6d998ce35b5936f979a2e6f4d2d0f599ce095faae430c9a04ca7cb015075f2cfafc642099dd4c

Download Submit
/data/user/0/com.smzdm.client.android/databases/smzdm_datail

Filesize
12KB

MD5
da86258240043b4f7488a26d430bd1bb

SHA1
4b1a1c8fe95e18928db88a837a8a0b85beb1d857

SHA256
54742f1de8d4a6aefced8bc1a0ab81c41bb8b94b7b993a9380762d7caa11639b

SHA512
ae3427ef4e2a4be23dcb248779517dff331b1dca5106809af1de58673ee789e3366f1e7b02abf898a695be3c9f855f16542c62b52e8526a8c489c2cdab9b766b

Download Submit
/data/user/0/com.smzdm.client.android/databases/smzdm_datail-journal

Filesize
512B

MD5
95c91e689a84bf3cc78a94ebffcbd2e3

SHA1
3735ec521ad627816c58e3a5d75f17f85aa58211

SHA256
19e0d53a69068b54b799cb0bb83746c804c309b2d99be4f129e71083191e93cd

SHA512
42b8894f758e81807142985f789e682ddad8880dd948cdd0837f378e168ed2cd21ca0cac71e75c3c20a32c247f4e87d4c937e66dcf54f136d7ac6c8620e914a0

Download Submit
/data/user/0/com.smzdm.client.android/databases/smzdm_datail-journal

Filesize
8KB

MD5
ed581d3be29a78a727ce4fe4da5d1630

SHA1
5725942be357382ce85ccae8e5b260a1af957852

SHA256
596afc68d4c7a7a52079a1fa6dfa02a85cd66186a7ef7715b31f1bc79b8536cb

SHA512
98cad3f3e2af2702ee298a57336d169404b08be3ab900a6f2665a0395b2358e8f572d19124a7fdda1c84e11fa4efba9837789b9c95ab4c7edc0a0400b4d20fc9

Download Submit
/data/user/0/com.smzdm.client.android/databases/smzdm_datail-journal

Filesize
4KB

MD5
5dbe74bf268de12d07c54786f48b3f48

SHA1
0134e83ca1c7636a5e6206607dc146fac0d98541

SHA256
2bbd25827d2c225d7a26653896cf1decce57b000a09c84ba0b373cb0507771d5

SHA512
a79e1e1c99d586b97a91d5061d6216e6a5d1ed5f8e60625b349b9493739d8bd44db803fa44c1454f2ad8270175c38e5dc8086f042e6649eb74c41ee1b476b1cb

Download Submit
/data/user/0/com.smzdm.client.android/files/.um/um_cache_1728468941799.env

Filesize
545B

MD5
795c20c40e40637228ec3183007187f4

SHA1
5e04785f3726d5f460ac7226fe819c67f19d4be2

SHA256
3f5cc2a4fe1a70125b889faff347a647abf3394fc3100333feb791abe7d9a0ad

SHA512
6ced6c1de8dd0a854819c8f81c36d171c52200b8319d866e808e37e4a68092e6def4b2bb1cdcf723ea834337909987ca418b8d414029d814abea931c143e354c

Download Submit
/data/user/0/com.smzdm.client.android/files/umeng_it.cache

Filesize
245B

MD5
cf0ce881c648353e903710740560e27e

SHA1
73ad6067e9c797879ca3494d7aea31bb55c351a3

SHA256
c5b99c1b66924adfc25d339984ea62d4e5b065911035536487bbfc88805310f6

SHA512
543f08aa57f62fd90308e70e218f0c316bb3f47eace7defce4b43edfb73f564123b22f716dc47e326527a7a40000c8ecc66b70b51298a93bb72a762bde82517a

Download Submit
/storage/emulated/0/com.smzdm.client.android/asdklog_s

Filesize
135B

MD5
afb9633ab731dbec2672a084d1f9e444

SHA1
85ce5fb9446f0d1fe21a2848548d29eb3cc81947

SHA256
43051e80628647d3793a372aa2f4149fa82ab008dba73db0c390d2b31ec30f4d

SHA512
9cbd83ddd22b8c08d72d7b76b427d68c306d22a6603ed495202a5abf803b87466f2fa3d6565e7f5c3209cfa295a7c92bcbccff05d2286b1c3431f0de7aba55fc

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads