General
-
Target
3d18e3f7045a1901a4bfebb4b936f8f2_JaffaCakes118
-
Size
13.9MB
-
Sample
241013-bz1dfawhqq
-
MD5
3d18e3f7045a1901a4bfebb4b936f8f2
-
SHA1
eec560a06ac0f0946e5f4af7a169c8773e4d5d47
-
SHA256
730810c98a26922f77424c85a377a96089ae375585cba66cfe20a07c53df78ba
-
SHA512
299a396a92de88dffbc5420f13a754e062df27d1806f814fed372f42d92f785fbd2a2fece1fe50359740ddf704f89e0b33e0a134a1e1c55419f2b8720d6edc02
-
SSDEEP
393216:BAKRtoWYmBZU3KQdZyZTU8oKnKr9xWoc6Kjjh:BAKMzU+fmI8tnKLWqKXh
Malware Config
Targets
-
-
Target
3d18e3f7045a1901a4bfebb4b936f8f2_JaffaCakes118
-
Size
13.9MB
-
MD5
3d18e3f7045a1901a4bfebb4b936f8f2
-
SHA1
eec560a06ac0f0946e5f4af7a169c8773e4d5d47
-
SHA256
730810c98a26922f77424c85a377a96089ae375585cba66cfe20a07c53df78ba
-
SHA512
299a396a92de88dffbc5420f13a754e062df27d1806f814fed372f42d92f785fbd2a2fece1fe50359740ddf704f89e0b33e0a134a1e1c55419f2b8720d6edc02
-
SSDEEP
393216:BAKRtoWYmBZU3KQdZyZTU8oKnKr9xWoc6Kjjh:BAKMzU+fmI8tnKLWqKXh
Score7/10-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Reads information about phone network operator.
-
Listens for changes in the sensor environment (might be used to detect emulation)
-
MITRE ATT&CK Mobile v15
Defense Evasion
Execution Guardrails
1Geofencing
1Hide Artifacts
1User Evasion
1Virtualization/Sandbox Evasion
1System Checks
1