Analysis
-
max time kernel
135s -
max time network
155s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
-
submitted
10-10-2024 18:09
General
-
Target
3140851d042fbeb0e08633f5f38c1338_JaffaCakes118.apk
-
Size
9.3MB
-
MD5
3140851d042fbeb0e08633f5f38c1338
-
SHA1
7c824d88a5f78791af7b7f3a4cbeb0a0e58cd6b5
-
SHA256
302db1cc104ea99662ec45dff2034ee8828d1ba898a526a7b50823bc8a50c2c9
-
SHA512
3290a9145a5c019f8324e6a06e4b34c1c017d3283af5995a94511bc2568d1409e4cec67f4de50e1fa0170a7d52f0316a6dc50cad7d64bf4e6de27bc88a246407
-
SSDEEP
196608:SvYoQ/PipF9DW0bwc3xBAT7LJWlwAYBiEdgxDOo0GzlhsL8tW:Sv2SF1WbFWlwAYEYqDV0G/tW
Malware Config
Signatures
-
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Requests cell location 2 TTPs 2 IoCs
Uses Android APIs to to get current cell location.
-
Queries information about active data network 1 TTPs 1 IoCs
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
-
Reads information about phone network operator. 1 TTPs
-
Checks the presence of a debugger
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
com.xianggou.qydjk1⤵
- Queries information about the current nearby Wi-Fi networks
- Requests cell location
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
12KB
MD53fe30614d7e0d11db870b4624f6c50e0
SHA1053ff0fc621ab40f2afeddb3e7b4a73ee41ec533
SHA25667c532f0324228dd33b445cd399c1426e3a0e0cdc7b9358c66b402c5d40a838d
SHA512c7c09e97a408e88aacaf8099ad4d1fa604d58113393500a384eb3c2eb7c3c105af41314934b86eca2f088045cbab5a20d768bbb295448dc1ae6cb6c3f59821ae
-
Filesize
512B
MD56e2b9bc8e93d6dc824f6d5b2d7be8566
SHA1eb054a48f3da113c2e74b0054724b8cf0a13c225
SHA25624faa6eed8801909936d3a05461006ae015a5a591603254ad848bab9b2eca6d9
SHA512e33606365ebcbcc5d1bcf6d5601aa1d5d777db2b976eb959c1db2aa2a122d041a90ec8e3695174a70a49d82b903dbf09fd5fdfebb0bd05fc55e2c282b44a19a6
-
Filesize
16KB
MD5ef8aa67a6b4e76c20b00b7abd4f34b9e
SHA182b05c54f52ee486b6dc54d141cb90025322312b
SHA2568f6793ee12aee85aea31e5b65ffeb30cf01358c1a52baab313d9831343704d55
SHA512973e78bebcf6de8271e4cf975a13a0cb86cbd95946fc44bb1838d9a86ea6d319f1e3c49275a5e3156ac19f1862881882e2dc531e9285e2eb1f68b9e0eb09e656
-
Filesize
36KB
MD5a7b5debf648af8527d38065f285c6754
SHA1ad8513c878ca1483a2472c7f8dfc8a416418517e
SHA2560d8f1987d41b042ee7aa1ae97d1950a40884ff4ed620fd02371017160e50eaf5
SHA512c879b912d723e9c382e547f605dea4d77830d9300c3cdb1a14c2758cf4e895000c7ba2afe37584ed2fb94a9893e8ff47bdfda4dfbf2dc47aca75efc5d28984e4
-
Filesize
20KB
MD54d7d4b91560dba357d2c03c0e2aa816e
SHA1342c51b55f90083e876495281e3efaaec5ea9000
SHA2566b2c6ece0060a4cef0c8724167852bdde2210ee34606d91abf59f6582a5407ba
SHA5129f0c38cb0cc11b131b469565935b7afe29163d483168b409218c0a8004c8f2b9b412915ec3a20ef1435a08c925cb6fce1536240863e690b1080d0982611b4842
-
Filesize
36KB
MD560e918a66670488ae5e111bdcbcfa95d
SHA1ee81e2f5ad9a7301adfce5999095370e532a43d9
SHA2560126f776c2c01bb621001c4d80787b706902fa8fdd89fd1f062d063ec74d5313
SHA5121abb9311fce204649d299a19efab820981c427a8f3778a9848fdfe99aac19fbb3d62bdc4f5fc93bad66c090d198e9db33c23066041207272f2942272167796d2
-
Filesize
512B
MD5301ac10e41d75b3116dcdc82fe0fcf8b
SHA16f85ef8e630a2d9cc4e97f2d29aff89a3d4a7e5e
SHA2565e06a65bad52883938a7617fdc640e99ff5c9e06c8103b757cea56e4ef8ea5f6
SHA512f849899f92a2975acbcbf65b91cb5f41eef853ecf9bf956c210f84f3c921e8c0d4ce50d857daa9d714bd3e4abfba6156409817d01742a723e0d0de1af67946f3
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
48KB
MD51cdf8beabcd07410c03ea1d7f342f8b2
SHA192d2e98c83fe23cadd2b23150b6da51c4ab44f59
SHA256f8305cb95d5c75652fb5c9c8e6cac620ba364cb56ecb8d801094e242935f5a91
SHA5121ae37a599cae7962604bb1d027be3f757a0e83d3186af4d229b78c767d986f2a1538c8666c2ce288b45bb3995086f665053629597e70e770a7b58416b7a673b2
-
Filesize
8KB
MD535680b6acaa973f36286bab2b34aa5ec
SHA181fad889583dc2f82316ebe771b8a06156622471
SHA256336f62484a61960b9b706b2b59949d69c11c2da1f6835d7a482ead39ee04bf4f
SHA512064facce9ef78ee3ce25913a6c8ded24de9d8242d81be2e877f4819760281a472bf8052c1ca6f199e5fbcea937d8a6bb4c4682904f69019f5a018a270ada4948
-
Filesize
8KB
MD553d1236452df811bcadddab78a0a01b3
SHA1ada9b1f3c435084b1f171760dd8d0aa11a8077ac
SHA256497a0e25afd2f4df1bea94414daa947c57592eb59fa18cf3a3a6bc1dce6f4515
SHA51299e2cf367c519a93c3ae2f2eb068974359a55d9d6200d86e8fddff127769d93ead8d83d6cdf85dd1b30629667d914d08bc351928599c5b033cd4144bf418c0b3