General
-
Target
4ae926450fe222ea9f2873879c78f9c2_JaffaCakes118
-
Size
637KB
-
Sample
241016-cbst5axapf
-
MD5
4ae926450fe222ea9f2873879c78f9c2
-
SHA1
8e6f2fb92016a3feed2055a3af70c253ad828a4d
-
SHA256
e616012197daa27addc0643571f348d427112dcd93b529e79680a0e77f4cd283
-
SHA512
94321a9edb3df924b91ef8dbd17d7e0f43dcd2735a18f5c20631f9f354b8e6b8905da45c6d2d4dfbf35c7d84af9aa9db9946347fd33b85bbee3575568210a6d0
-
SSDEEP
12288:L4L4oQI8Y0FotaKIUtrbMTp3zE1aaTJE5+/u9cejETeFxtMmf94vvQe6ERylTgu:LoL0otaYtXMTp3o1aKJY+/ufEW7Moiy9
Static task
static1
Behavioral task
behavioral1
Sample
4ae926450fe222ea9f2873879c78f9c2_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
4ae926450fe222ea9f2873879c78f9c2_JaffaCakes118.apk
Resource
android-x64-20240624-en
Malware Config
Targets
-
-
Target
4ae926450fe222ea9f2873879c78f9c2_JaffaCakes118
-
Size
637KB
-
MD5
4ae926450fe222ea9f2873879c78f9c2
-
SHA1
8e6f2fb92016a3feed2055a3af70c253ad828a4d
-
SHA256
e616012197daa27addc0643571f348d427112dcd93b529e79680a0e77f4cd283
-
SHA512
94321a9edb3df924b91ef8dbd17d7e0f43dcd2735a18f5c20631f9f354b8e6b8905da45c6d2d4dfbf35c7d84af9aa9db9946347fd33b85bbee3575568210a6d0
-
SSDEEP
12288:L4L4oQI8Y0FotaKIUtrbMTp3zE1aaTJE5+/u9cejETeFxtMmf94vvQe6ERylTgu:LoL0otaYtXMTp3o1aKJY+/ufEW7Moiy9
-
Queries account information for other applications stored on the device
Application may abuse the framework's APIs to collect account information stored on the device.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
MITRE ATT&CK Mobile v15
Defense Evasion
Download New Code at Runtime
1Hide Artifacts
1Suppress Application Icon
1Virtualization/Sandbox Evasion
1System Checks
1