Analysis
-
max time kernel
67s -
max time network
143s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
14/10/2024, 18:20
Static task
static1
Behavioral task
behavioral1
Sample
43901d4556a2a788de38558f5778ccce_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
43901d4556a2a788de38558f5778ccce_JaffaCakes118.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
43901d4556a2a788de38558f5778ccce_JaffaCakes118.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
43901d4556a2a788de38558f5778ccce_JaffaCakes118.apk
-
Size
1.7MB
-
MD5
43901d4556a2a788de38558f5778ccce
-
SHA1
a00f29397f30d3525ccd9f934aa9005b4c609b3a
-
SHA256
131711bb79a65ac100f95781bb85b933f985f18e1818b5669de81db2d085b5f5
-
SHA512
ccb62fb3537772fdcacdbbc76a6717937e9f6e60815d53cd2465177fdd22f35878947eb0e07dee109d7c8613d0419bae354a9bf5ac920b9f9a934871f844db65
-
SSDEEP
49152:JUTVpM6SP60/KfHj/QnVxrD64uV2RqPspVvkZt:JUTV7SPxyfD4nDP64a6qPspVvkZt
Malware Config
Signatures
-
Checks if the Android device is rooted. 1 TTPs 2 IoCs
ioc Process /sbin/su com.mobilabstudio.eye.scanner.lock.free /system/bin/su com.mobilabstudio.eye.scanner.lock.free -
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.mobilabstudio.eye.scanner.lock.free -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.mobilabstudio.eye.scanner.lock.free -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.mobilabstudio.eye.scanner.lock.free -
Reads information about phone network operator. 1 TTPs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal com.mobilabstudio.eye.scanner.lock.free -
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo com.mobilabstudio.eye.scanner.lock.free -
Checks memory information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/meminfo com.mobilabstudio.eye.scanner.lock.free
Processes
-
com.mobilabstudio.eye.scanner.lock.free1⤵
- Checks if the Android device is rooted.
- Obtains sensitive information copied to the device clipboard
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
PID:4508
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
19KB
MD5ce297c9516fabe0b3d6534b748870725
SHA172de50d004c707c82424f91e5de59fe6965b0374
SHA2566eb5d0b61207d46301b6811b603d39067e20e6078d04e64916bfbb7a56c24d7e
SHA5124580f6abc4ee0f916d8df6b53b57fc58e9e4e970d7e1e5c59d3f154a0483a75b6eaf4a8fee05baf144df2cf47be74f7b66f6e2b04e83a61d7f02a1c1c8b05d4a
-
Filesize
14KB
MD5de375ee4d1a69837fb8a99f6b866cc26
SHA1a637ebce23460011228e5a876557d59288d550c7
SHA25639f9a2362da19c30dd725aaf93c89ca5abf81d6faee092e1280652a25c46885c
SHA5123751b549864a1c935d2413f4096d96c6e8def3bb5f2124dad103aaf776da416c5336fdc318cde9eaf17aee86e06733eb102dd6ff0b0594a58b7781f6d80c243e
-
Filesize
1KB
MD5c22efde388f5b4f26e6341c9b14059ad
SHA137b0fdfb29902bd9f0c0762388a56202988a52d8
SHA25639870c89e5a866f8ca0fd65fcacd54170dc9d7670985f2d3bde2f58804f8a4bd
SHA5123294896858981541da929b87b2a73b5bf8bf9154e146bf3b87351574129c01a0f205ebf21bccf3f70bf3ebde6bb866bcd07ce077658396f79f085bcf3f8b8bca
-
Filesize
155KB
MD515ff9d47bca2c6a43c58de54a8584a47
SHA1c15085113dc4713f79c9ddb86a9f8a3b1413681c
SHA2563fbbb2fc914803073ab81533e9dd128a38d7abc461f8a17c70962f59d836e226
SHA51279b2f389f7805c23ec25f59f564c412724de3737652350dbc7caa47d7be3382db7268578f286e2f260f038007a4aff7e4ac91a08a56202a091293a72c5769366
-
Filesize
8KB
MD51a5f7a80b92cee57c24e38a4b586ad62
SHA1de37c97d10d9345c7c8a5282d94becb140540889
SHA256c8f450b916778e9caa8f85369ae960c316716699cc06f51528bfd7428c5e7352
SHA512f3fbd0053cdd4b64cb304caeb91ddd5d00f473a0e41b74777072d44fea139124402c6bfb472d5526f207ac2a68afdaab73c0524b2801cbd38842dd42c4d18278
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/fonts/Roboto-Bold-webfont.ttf
Filesize25KB
MD55d1aba20e25af8bca71b420c7de37d46
SHA1540882ca0ecc4862d9d82b85c417498eb5b51fc6
SHA256ecb3a1671a94b9671d1336fd46d00f9dd279cf83084cdad5d1aed2d35f233522
SHA512aa15a6c4356268f9f134ffba218c138a76ef6e8dd2db1f9a39400c51fec100390ac45fbd84056819aa8c44b2eb3d16881e0981e2bb44902e30802ec8a51b9918
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/fonts/Roboto-Regular-webfont.ttf
Filesize25KB
MD54e03528f1f48da3726edb5ada9fe4636
SHA1b818e0acfc74ecf7701940240b6c31a2319af217
SHA256b12cc7b6bc437f7dd5408f65538df2e068890da80d37771031bc6a63f4dfd734
SHA5123680400b45a02a719ec526391c22c8a66fb1e9b0c8d15ebee78bc9475ae8a1ee7be89a853f9d5a11e741d5297efe5b9b6ceaaff39413515588f306b36971fdb3
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/img/downloadbutton.png
Filesize9KB
MD5407ffdfcc533caffe20ae7bde64d470f
SHA194691c69e3688a0afe991461f1b9bb06b8a63407
SHA2565f05f515a59fa67ed46576fec844fb0bf052798ef185237b254048449526b74e
SHA512b73242ba58f19c45d9f3e0d4f669670f3028e8e722eb074cb1f3415e1920bd1e0d49123c646c02cd14d2fa708f6c06e37e015e94c4c350a1a671bad3c0799eb3
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/img/fruiteninja.png
Filesize23KB
MD5124f9955436bdb9ec6c2ae5fb155b630
SHA1b8b24b70eb024d8451fad9acff8343eb973a8bfa
SHA256b0156487c63223edc2314a1899f4609fdf699150070c38c3c7fd5037744d399a
SHA512b0a73e52848ba9598080c93f14b1d702ce1fc28bff374cad4b2bbf95e636867da0efb274ae69bb81e2510b4fd3c3f327af607da9e7f282130a90377db30ba422
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/img/headerbg.jpg
Filesize3KB
MD5328ac1a461f85f8f4669930544ca24cf
SHA15712ee563972e3b9ad02cc01bc16fe3d76bbed33
SHA256350f7fc30ace8a6e09b448da4d418cf70d6a907d755f51e89e759fc02fba7d3f
SHA512a36b800352fa148e84c82c661343b8965d7b5891314029ae5cbd3cdc4e7f327df26084f09c81a27b4f754c5747b8683c5d7adf122497647a6bf72f84f5e43f15
-
Filesize
8KB
MD57f5bb650b8c535f2150080aef5d4360d
SHA18941de259ea709db0c10716269a802d5b29a3b77
SHA2564b5f5157f6242f771751f0a657edf29b0ca97d5b80fe28ea8832cb14340e0413
SHA5124149480c49e009a360d2f3251d3b78828e25a17346dd1b9b32d9f727d7b6aa365b2425dc375ed9eb2b079930bca0060d77bd8149de1da3db907e0e9bef2245df
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/img/powered.png
Filesize3KB
MD55b00e825e6935d570fe69ab1ecb3a302
SHA1d2c149612a07e5843471e0fb2d35e22e0174ef33
SHA256971d89d9395b39805ed7f93efd6fd4dca829e8d83101469ae9a583639098c171
SHA512bd2313bd3bc424e03409efe93b70179a473fef1aed29264d7a92f03d35dcb12222ee92d44f77e7e55b46a87c566f631b505cbce167b193644fb2086640f1e649
-
Filesize
4KB
MD5d845939a9fa291f47967ddea2c445d0c
SHA1457ec0ea2fbd175978168c1baa665a852b1e548c
SHA256e0054877849410017bc8dbe6876b7d52c1b30b586e9dc1670793f49d7195c8a6
SHA51281cfad467b2b7e9f5bdbe496ad417d0eeae666ce1a69c124fd8b38818939db7c20c33f1e6f7a6b0b07e24278e33f4d18d75f246a429608afd79edaceb6441517
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/img/superfast.png
Filesize12KB
MD5636ddd62ae3c6c2112bb9399d0687a2b
SHA140af7218e081459b98234abde1e319f4b0491416
SHA25684d9d9a214c3ae88e0b572a599baaa169a7a81144943d70d3a05e5ce6887e098
SHA512d2a65ef3b66585548208de4dee1348b0eaa598384541581927193a5338a8e21a681048384f77de8a2499856c329596ca6f20f463058a686bb23f534685f7bfad
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/img/talkingginger.png
Filesize22KB
MD51f5d1af203903f37a7edb3d1e12a4f27
SHA112c5bbf79791aa547faea7741cd3cc7c2fe84ae8
SHA256ce663ea588ccb9e04688b34df5564afaf7804d51ff659fb7eb82628898682d48
SHA5121b483b6db65c934110289635c5ee084421b742a63bf02d297dc129c6c89b2dfd3387e6479c26e06ff93b8eb71862fbd916df57bcbaf75f63466693a7dcee0ff3
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/img/twitter.png
Filesize4KB
MD5f7910379d8e262bbf618c8d0f0589412
SHA1a9807369073f64122c875be12cc2a21a0b7e3f07
SHA256dc3bf1d445278e7c2226e3cc02fcc61691eaa9a5bd5b9208edaa7acd8c7b2a77
SHA51201248e5a1b3961c4cb905b69daa52e3577c88ef8608742941b8840a57b2c680d08b66d5f1e7abfddb813ac23869f3a17fe7d722079ea1791490151f5c6beb8e8
-
Filesize
1KB
MD57653713e9115bd5640d8c18d49c4ead5
SHA11008b30abead1945f2fdb4f8acf106bddb8c314b
SHA256b87f7697bfdc20197afe2b9b5950f52230b9465b37d8ffb77a9092661d91bc2f
SHA5127bc988e32393c548f0c7ac6858fe13665ca835c1b2b2165b7a652e6bbdf6669acfae1f8e69ac03b646a6286640daef8dbd6b552883806e3df3890a5c5710c05f
-
Filesize
1KB
MD5788fcbbf403fb5fd860e9677f301052f
SHA1595ce1dc8fa3e909e24451bb30441ac983a09893
SHA256ee7d3e02a08257f8e9df5cb62282014812aad14caff3e9d7df2a3f33eed28751
SHA512fe97cae087e32bcf04b3c8c07801bf06ca004104f2ba9d8a4ece658df847e0011f017e212b15aef062e42b3c33827521636ceb684784677aff17a5856dfa9a0b
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall/js/vendor/jquery-1.8.3.min.js
Filesize91KB
MD53576a6e73c9dccdbbc4a2cf8ff544ad7
SHA106e872300088b9ba8a08427d28ed0efcdf9c6ff5
SHA25661c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf
SHA51227d41f6cfb8596a183d8261509aeb39fcffb3c48199c6a4ce6ab45381660c2e8e30e71b9c39163c78e98ceabc887f391b2d723ee5b92b6fbc81e48ac422e522b
-
/data/user/0/com.mobilabstudio.eye.scanner.lock.free/files/offerwall_assets/offerwall_feed_json.json
Filesize1KB
MD5af0218d581da8f5062ccdbacedeaa69d
SHA1e70643530639fbeb49327bb768ba7297bb7e525b
SHA256d7f41426355991a86510d3d4086451818ed1d88886a3a1701cc8325f13e16a9a
SHA5121787de705f6078f82c72bbd1927ecfc17c563ceea6c8ab80a7c5227d126ea51145aebb6b0708b6b299f13082d95687e5e134b1c6e5acfa0f96568b0f2261cf64
-
Filesize
708B
MD524874e584dcd80c9ce530a3257e1321d
SHA1faa6f64ad2d1366b6bc42bf64defb294b653c047
SHA2565c8c4e3129dbe8258b5440a9bdef666e65088654ad8fa42c0f48693b30c4213f
SHA5121b755d50395792f9aa82c8daf78e2cf7cf158cb428b557931589e513d8569e18afdbcdffa4c2cff874ce5000b66e9f24fda57104853bead1e4678d859a462529
-
Filesize
22KB
MD528684f6069fb4ec76a3e54c8e2307ac7
SHA16ecbd36ffe5cf6e77ed57ebf3579412f1581081d
SHA25608bb708178046d352f85434f39421674603b6f3069d006487c2f0261fff04540
SHA5123786c62f2892994e8ccaeca084f97b73bb3279fec62846d7bcbe176a18abc52e120b13aa2f34e7a6292b2ae7fd3ebe62e68a5054fbccd4e21d073237418e6876
-
Filesize
13KB
MD59818dabc2eb86d5f4f071e9d67334570
SHA1117e7978c9293d86ea5492b90a4999cc24225dbb
SHA2561f075332b57fdfbb9417718f3c0d9f27ffbb2c135b3291aca4b9f2911d7e9e3b
SHA51279937390d4b02688abb0e24cef356024c3dbd3cd59d85ea3300556af59f0648293ed24fb5db740a4329fdddccf43af3b7679135555397a3adedd3eeccf5423a0