502c9d80e9160e4642b9ec4862af9560e7b733c09a8e5f09fe7539f2d27b031c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a522ac5e008761620d35993c1532df3_JaffaCakes118
Size

10.8MB
Sample

241012-qy6amaxfrr
MD5

3a522ac5e008761620d35993c1532df3
SHA1

ea9428e6393fcbcf4edc98d97315076397285fe3
SHA256

502c9d80e9160e4642b9ec4862af9560e7b733c09a8e5f09fe7539f2d27b031c
SHA512

5ef6f35abc3fcc429fd07bdb5c28cb5d4a34f790e8923639e493a614f678dcab68c8f5d08a3340fba8042ff9632da867d520689f65f1623b5af4e422f546975e
SSDEEP

196608:ksq4AIbApL7ocwDApWOD2lHBuWUvG6Prj5yEqM8dQLqjL3p29/OL3p29/2CkL:QCypW6aBRWPrt3md7jL30OL30qL

Score

7^/10

android collection credential_access discovery impact persistence

Malware Config

Targets

- Target
  
  3a522ac5e008761620d35993c1532df3_JaffaCakes118
- Size
  
  10.8MB
- MD5
  
  3a522ac5e008761620d35993c1532df3
- SHA1
  
  ea9428e6393fcbcf4edc98d97315076397285fe3
- SHA256
  
  502c9d80e9160e4642b9ec4862af9560e7b733c09a8e5f09fe7539f2d27b031c
- SHA512
  
  5ef6f35abc3fcc429fd07bdb5c28cb5d4a34f790e8923639e493a614f678dcab68c8f5d08a3340fba8042ff9632da867d520689f65f1623b5af4e422f546975e
- SSDEEP
  
  196608:ksq4AIbApL7ocwDApWOD2lHBuWUvG6Prj5yEqM8dQLqjL3p29/OL3p29/2CkL:QCypW6aBRWPrt3md7jL30OL30qL
Score

7^/10

discovery impact persistence collection credential_access
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Queries the mobile country code (MCC)
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

Process Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoveryimpactpersistence

behavioral2

collectioncredential_accessdiscoveryimpactpersistence