Analysis
-
max time kernel
5s -
max time network
158s -
platform
android_x64 -
resource
android-33-x64-arm64-20240624-en -
resource tags
androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system -
submitted
16/10/2024, 23:00
Static task
static1
Behavioral task
behavioral1
Sample
4f7d59ef27852b2e649d5472377bcf6f_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
4f7d59ef27852b2e649d5472377bcf6f_JaffaCakes118.apk
Resource
android-33-x64-arm64-20240624-en
Behavioral task
behavioral3
Sample
alipay_msp.apk
Resource
android-x86-arm-20240624-en
General
-
Target
4f7d59ef27852b2e649d5472377bcf6f_JaffaCakes118.apk
-
Size
14.3MB
-
MD5
4f7d59ef27852b2e649d5472377bcf6f
-
SHA1
aa52ef3175466e3ff872475625ad9a6671af9bf6
-
SHA256
c5eb6ecb15e314e6516d8575ce75d2b59e63558b677cd2191332e33f04651ca5
-
SHA512
f6b106af3524391b5c3e432d7475cb8110269a15ea3613d004b826a464b2fe5cb71da0e796dd2075362be4fd9a3057b323145d9cc7bfc5ba9788a23c007f1dce
-
SSDEEP
393216:CQ3SoIJF9nu9LAYFzVhgaxEMM3qTNYoURpZ5donKWcNZY8T:CR7j4zHgJ7r35oMlT
Malware Config
Signatures
-
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
description ioc Process Framework service call android.app.IActivityManager.getRunningAppProcesses com.feiniu.market -
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getCellLocation com.feiniu.market -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.feiniu.market -
Reads information about phone network operator. 1 TTPs
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
48KB
MD5ef76ad150e1a5cb0ed194b50169e3694
SHA168bf3273feb79ec920f57878d3e9a4facfd09250
SHA25647cd6981fdd8b1a214d23e37eebb57833645c409279289da13f5d58d6780767e
SHA512dc70fbe9b27d0f76ac8d2c89f1bdf5ddb92f0718362cfe6b88c34731068461dcb8ac229d65cf1ba4a1aa8859a1a0f224de885209eae70881d139097703b9b7a0
-
Filesize
512B
MD511a9ac1b79b80a6bc1889505b00b4f91
SHA135241c620e032dedf0b32c6ce54aea0adf5b5989
SHA256cf6fef357df60a36bc0a987f99c757f3fc4ac7b2e746006266ddb25800e864b3
SHA51229577040da153911105a92ccb629e840d601cee018a74ab174b1d1cc39e2c8e4e0ffdd34de722053df3a7676f514ac7101bc262c4b5639fe9ba1e82c2c003453
-
Filesize
8KB
MD5adc3b6541ee76c0c365c3babd10fe739
SHA13fa56cdd0b5a2b9c01f17186f4764ce0c5893746
SHA2568ca3d372f6fa0563af286d2f4786e580db2c1e92041be5b0a8b93bb1e2480f7d
SHA512d0519f795a99913d2f4f3840d009c7bee71036d953b026b4a08a854c6cf6ead80149825e33f8fa1e1432fe1bf9dfe762eb95f473be4c8c968c7343f118a5ca8e
-
Filesize
8KB
MD5cc0b941d2f136454469f1ec43eaeb990
SHA1aaa360e3b77068012db54cc88b7f5f38e66f0145
SHA256a1002fb2b9f5db7c94c0362c2c45d4e5222c21278b099528bc227912fc98b90a
SHA512270a19670c99fdcac85685b611ce7a550f002e055d9dc4c4f37de8a91774e5d9ff063a301d4be9d9248315a6a5d40a49303e5b599f67d0c34fe4930118817092
-
Filesize
36KB
MD5d54eab5ab9065e20fcc1fcd924b0e999
SHA1c5e8c32c6885ead7aad1f1d840e927d6b7f21dc6
SHA256c114c475f818800485ebaaeb9c5aaeeb396fee7b88c95e81bf8707467ddf4a3b
SHA512d72dd6a32ab002307f4b2d9f158da1d64a34fdc21b20eb7e0dc091dbb0dd9f4b576644ce715234847bc251dccc6ff237dc0b7f9534febeceaabab7e892b1ea0e
-
Filesize
8KB
MD557d6fde8b2c3b825a99a5c9c7b6e78e7
SHA1c689c4f383d0e873702cf8420448aa710d983169
SHA25692e77f477297902303afb4217011246441fe0137b53648662acc4738a4a1f535
SHA5123e47751a706198649ba518b046f39dbab4a1ce4a217d633cf81b01bbe4471786b833bfd2a88fcdbd20c854babcf81e39db2a8c008a2852139620c4133f04c480
-
Filesize
8KB
MD5145681a3b6e06d2be6731d585baa83cb
SHA1608926659814cea5e5a4c520c8f7942112bf2a6f
SHA256b921b2581fbb87ab8c77fb74ca7d122a378398283625d06d161ab687cd576600
SHA512ba3aa7743a33f415f3e22a148ea010ddd63d901fe46ccc72e8acd812ff5516289ba270ae7271f14a5c71c9dd96209b2287ae81cb59ea9470683e0aa089000548
-
Filesize
512B
MD54970823c2c791aca4c639e1d533212d4
SHA19beff4f12dd8306bb3f5b5c9cfff0eca8d511e45
SHA256e4e661a63da9cb764bca17057f76c86abb0f5290ec01ba3b47cf8a5105b600bd
SHA51218a28ec932f2a57a0aa741a6d59b14348674685045d4aa8aec45c80aa69bf83967ca8395965a8459f4b7be3ef1efcf30e74c10093090866f80d6f4ec0816b13d
-
Filesize
8KB
MD501cd987265c3fb8abfeded1a6f35de29
SHA10ca254b6604c9f51682b2a29fffbbd4482898356
SHA256a5e530f4cc772e5431bf9564c0fe91874c4c9c1f0753f44a55e28a107ede1c56
SHA512f4e6a09c71b41076dae69919332cbbe23811973222af1272936886e6762d107f8ed6946aa445776ce20a235eff87b7f9c3e1748d86ede6514b21c2ca641e7635
-
Filesize
8KB
MD5dfde2fa529aa04a1f161af5057c03d78
SHA1d2d28df9186b77775eb19f9e33fc02931dab6c69
SHA256c831d17f84352164c670d5a2345b7d1c2e8753aaa74bb4818e9515460b54f9ea
SHA512df786879a1e96a1b7204a22690419cf9711f5da0f52cded85c4e56f8a45c7123f68ae17bb297da91671f65f1329d715f95f41236ce55078f95c7182bf3f4650f
-
Filesize
8KB
MD5fda0ff5c1fda24857981fb3cded36488
SHA11e2503e37382b31482816a04e56cb42a43349b1e
SHA256d58dc7bcd832ee1dd73cc650bcb712c8b0be708b4374ebc0fb71f8186e189b49
SHA5122620ce4f8d1cacf16fa1fb39eb16f4a30a164e2027f614b366917629066d767daab7d19242ba1ede600243e7c32982258fd4c95f10349bae68fe82bf615b7a8e
-
Filesize
36B
MD521d70060706cbe380c799e1368bb265a
SHA1c2749979fffd7cbf4688891fa6bf005d3ad68b64
SHA256b8622c364b9db0fc93c16cb909d4e5fd59a9eaed5cb23a5692713dda8b0dc02d
SHA5122bbd2960c5edabe10665617d48f0b419037cde82be837598b788c6ca0683b78864c8c95ed79e6d963abd998fd39e78ef4202ec5b99d53b8d641b82e5efcd2f64
-
Filesize
148B
MD5a1dcdb505fc41381e39a1cd700173034
SHA1a04ad3acb5a18b387d4505677cc08f9de2e3e34d
SHA2566d5ef3b5e605ade3900e8c0c50d768392d3e13ef757d7131f8d20ec8eea49bfc
SHA512a2b9b8fa5d038c432f69ea44a430be1295043a2d9fa04e2a39f259c8bb4c0c7ae2d2e6c20087b8619769f476b4ecc95846aff4593751d67ebe9dc16b839235a5