General

  • Target

    518682955422bb9576d6376fe8dda2ff_JaffaCakes118

  • Size

    5.1MB

  • Sample

    241017-lbrfqsvdqp

  • MD5

    518682955422bb9576d6376fe8dda2ff

  • SHA1

    cafe969b95c7c388c98dd6d2894ce14c69a5f857

  • SHA256

    7e80b801e8c4c4a5f6ac71fbb494149abfcd867edcfad59a50e73aead214f71f

  • SHA512

    939803c004b058e7319c18d5af89072b2e75ec81ae80d254b89776416cbe50718cf45c96e80b5e7be2c7f921e29faa125b834dadcfee7608c316fc1694aeb500

  • SSDEEP

    98304:gcrp3p7row/jm/yMErhcE8/a/P7u9n0bxrBnheqUpY7Mll:gCpt/jgylrhvl69n0btBheqQY6

Malware Config

Targets

    • Target

      518682955422bb9576d6376fe8dda2ff_JaffaCakes118

    • Size

      5.1MB

    • MD5

      518682955422bb9576d6376fe8dda2ff

    • SHA1

      cafe969b95c7c388c98dd6d2894ce14c69a5f857

    • SHA256

      7e80b801e8c4c4a5f6ac71fbb494149abfcd867edcfad59a50e73aead214f71f

    • SHA512

      939803c004b058e7319c18d5af89072b2e75ec81ae80d254b89776416cbe50718cf45c96e80b5e7be2c7f921e29faa125b834dadcfee7608c316fc1694aeb500

    • SSDEEP

      98304:gcrp3p7row/jm/yMErhcE8/a/P7u9n0bxrBnheqUpY7Mll:gCpt/jgylrhvl69n0btBheqQY6

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Acquires the wake lock

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

MITRE ATT&CK Mobile v15

Tasks