General
-
Target
2eebb882a93d4bf96f8e64266fe94d21_JaffaCakes118
-
Size
3.5MB
-
Sample
241009-lq894azfra
-
MD5
2eebb882a93d4bf96f8e64266fe94d21
-
SHA1
a44ed70a80f37ec4e2416e5af28be3da1deaeefa
-
SHA256
bcd6b7a12c74f5c2c03ba2b7d5ff99e9f5e56233ddad5e9a2097a981fdac0117
-
SHA512
bc3ed0e3733269f888f00e93d15d849fe9178bd0218ad876cf60647054d11068d54986d7c00fb38755a0d998e8561e4cdeb54965fbc8e501a079385f0c7dcd48
-
SSDEEP
49152:sByK6HNSyHDr7N3JLzXciHNS9KSY4d83juZk2C0E6tHHNSHDwckD7NuAfXhQhCcV:myZFzYYS3d83aFG8c8NumXhOlsMWty
Malware Config
Targets
-
-
Target
2eebb882a93d4bf96f8e64266fe94d21_JaffaCakes118
-
Size
3.5MB
-
MD5
2eebb882a93d4bf96f8e64266fe94d21
-
SHA1
a44ed70a80f37ec4e2416e5af28be3da1deaeefa
-
SHA256
bcd6b7a12c74f5c2c03ba2b7d5ff99e9f5e56233ddad5e9a2097a981fdac0117
-
SHA512
bc3ed0e3733269f888f00e93d15d849fe9178bd0218ad876cf60647054d11068d54986d7c00fb38755a0d998e8561e4cdeb54965fbc8e501a079385f0c7dcd48
-
SSDEEP
49152:sByK6HNSyHDr7N3JLzXciHNS9KSY4d83juZk2C0E6tHHNSHDwckD7NuAfXhQhCcV:myZFzYYS3d83aFG8c8NumXhOlsMWty
Score7/10-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Reads information about phone network operator.
-