Analysis
-
max time kernel
149s -
max time network
155s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
-
submitted
12/10/2024, 11:10
General
-
Target
39b008ed6cff11974a43a47de0b10892_JaffaCakes118.apk
-
Size
9.9MB
-
MD5
39b008ed6cff11974a43a47de0b10892
-
SHA1
7784251f694388551f93923d744c828a71d6e1a0
-
SHA256
1ba9690b49b24956a828a9ba46a1e680b4cc2897b051ef69f87017201ea06fdb
-
SHA512
fbd02bf270dbf9accc3c8c6dbf242736398f5fcbcebf9366b7e70c73ae806108b1df1cea19ac258f5bd0485f77949f9c008c1edbdc56a76894a1fb5f11dfb9ca
-
SSDEEP
196608:oOJl+bXrooOoXHYUyogU7v9Wq7D5gmDR0f66GijgsW0/35zjdzFavdmNR7:oO2XsXKHYUyod7v8Og2qA/Da5Pywd
Score
8/10
Malware Config
Signatures
-
Checks if the Android device is rooted. 1 TTPs 1 IoCs
-
Queries information about active data network 1 TTPs 1 IoCs
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
-
Reads information about phone network operator. 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
com.puzzlebees.waterfall1⤵
- Checks if the Android device is rooted.
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information