Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4096a9e3e0205b5129dda2839c4ce253_JaffaCakes118
-
Size
2.0MB
-
Sample
241013-spcytsxfnp
-
MD5
4096a9e3e0205b5129dda2839c4ce253
-
SHA1
16ab22ec9551559fdfdc246ff61c8ada1bd22235
-
SHA256
6d8edad3d29057ac5e9abff15811ed2b430fc34d7034f2e0f96316131e98a90c
-
SHA512
fafa498b831d7c4a0b52e294f00aef2c7ea2ed05e1aca6d841242d888ac7402267a975824b9ed0bd32a0b69d532e88e37802b81f2d3a79f0ade60b9243af8009
-
SSDEEP
49152:GlqRp9SfrWa7OExl724VZxbOsBp79Y3/fLWCP:GlqRpkWarl7FHbOsn79SnKa
Static task
static1
Behavioral task
behavioral1
Sample
4096a9e3e0205b5129dda2839c4ce253_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
4096a9e3e0205b5129dda2839c4ce253_JaffaCakes118.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
4096a9e3e0205b5129dda2839c4ce253_JaffaCakes118.apk
Resource
android-x64-arm64-20240624-en
Malware Config
Targets
-
-
Target
4096a9e3e0205b5129dda2839c4ce253_JaffaCakes118
-
Size
2.0MB
-
MD5
4096a9e3e0205b5129dda2839c4ce253
-
SHA1
16ab22ec9551559fdfdc246ff61c8ada1bd22235
-
SHA256
6d8edad3d29057ac5e9abff15811ed2b430fc34d7034f2e0f96316131e98a90c
-
SHA512
fafa498b831d7c4a0b52e294f00aef2c7ea2ed05e1aca6d841242d888ac7402267a975824b9ed0bd32a0b69d532e88e37802b81f2d3a79f0ade60b9243af8009
-
SSDEEP
49152:GlqRp9SfrWa7OExl724VZxbOsBp79Y3/fLWCP:GlqRpkWarl7FHbOsn79SnKa
-
Checks if the Android device is rooted.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries the phone number (MSISDN for GSM devices)
-
Acquires the wake lock
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
MITRE ATT&CK Mobile v15
Defense Evasion
Download New Code at Runtime
1Virtualization/Sandbox Evasion
2System Checks
2