General
-
Target
391f9a0336a0b81132e3f4fb730f21e2_JaffaCakes118
-
Size
9.1MB
-
Sample
241012-j6pjhswdjk
-
MD5
391f9a0336a0b81132e3f4fb730f21e2
-
SHA1
3a237684720c27887af99799174fb68200376268
-
SHA256
544c49cd4120c0c25b92126c781de29369b8a4ac27ffae827c86faeed871ea89
-
SHA512
64b16b58f55d9b943f0203c52c9027f37570ff28b8fb9ffecafe8dfc5b28dff8dbf596e14a2aefa467417d38cc4409a261672e622467ceaa965875792f88ece7
-
SSDEEP
196608:Sp6vZMR3kTxfBqNm8XPHv0dzfGLE97iAeyd7R3MZ1J5Ck2:rvf2g8XPHv0ZZSwRMZ1JS
Malware Config
Targets
-
-
Target
391f9a0336a0b81132e3f4fb730f21e2_JaffaCakes118
-
Size
9.1MB
-
MD5
391f9a0336a0b81132e3f4fb730f21e2
-
SHA1
3a237684720c27887af99799174fb68200376268
-
SHA256
544c49cd4120c0c25b92126c781de29369b8a4ac27ffae827c86faeed871ea89
-
SHA512
64b16b58f55d9b943f0203c52c9027f37570ff28b8fb9ffecafe8dfc5b28dff8dbf596e14a2aefa467417d38cc4409a261672e622467ceaa965875792f88ece7
-
SSDEEP
196608:Sp6vZMR3kTxfBqNm8XPHv0dzfGLE97iAeyd7R3MZ1J5Ck2:rvf2g8XPHv0ZZSwRMZ1JS
Score8/10-
Checks if the Android device is rooted.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries the phone number (MSISDN for GSM devices)
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-