fa9a369bd0d98715b6660a4f2459f4dcf9f96c2451a128b4ba433fabd060d90e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45418c34ab6090ae6e2ee4659390921d_JaffaCakes118
Size

26.7MB
Sample

241015-cdc7fssckq
MD5

45418c34ab6090ae6e2ee4659390921d
SHA1

17929346b838c8bbf4bd9fac026cafbccfc2e732
SHA256

fa9a369bd0d98715b6660a4f2459f4dcf9f96c2451a128b4ba433fabd060d90e
SHA512

d23a508605adb71a005fc567d84f2a7afe84512d40479d3220617808420a928148bfb1d501bfa65a02071bf2cf6320f8745d2654ab29ab3514c31b85d8bc8f2f
SSDEEP

786432:oL//uTEhNd3JOuNxG+/Y3dUQ1b0iDKtZUFpu0:4XuTEhNd3RNxG+A3dZbcMXu0

Score

6^/10

android discovery

Malware Config

Targets

- Target
  
  45418c34ab6090ae6e2ee4659390921d_JaffaCakes118
- Size
  
  26.7MB
- MD5
  
  45418c34ab6090ae6e2ee4659390921d
- SHA1
  
  17929346b838c8bbf4bd9fac026cafbccfc2e732
- SHA256
  
  fa9a369bd0d98715b6660a4f2459f4dcf9f96c2451a128b4ba433fabd060d90e
- SHA512
  
  d23a508605adb71a005fc567d84f2a7afe84512d40479d3220617808420a928148bfb1d501bfa65a02071bf2cf6320f8745d2654ab29ab3514c31b85d8bc8f2f
- SSDEEP
  
  786432:oL//uTEhNd3JOuNxG+/Y3dUQ1b0iDKtZUFpu0:4XuTEhNd3RNxG+A3dZbcMXu0
Score

6^/10

discovery
- Acquires the wake lock
- Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1