Analysis
-
max time kernel
123s -
max time network
152s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system -
submitted
18/10/2024, 14:09
Static task
static1
Behavioral task
behavioral1
Sample
57dd974e400ea936f5d4e3260f792428_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
57dd974e400ea936f5d4e3260f792428_JaffaCakes118.apk
Resource
android-x64-20240624-en
General
-
Target
57dd974e400ea936f5d4e3260f792428_JaffaCakes118.apk
-
Size
787KB
-
MD5
57dd974e400ea936f5d4e3260f792428
-
SHA1
6f4e6bc982131cd5f1d4b8ca0934246a6ed649ff
-
SHA256
5cbdc05183fb0ce11248ead0c4a5de031cc724171360b38214a4b3facf58ce7d
-
SHA512
8d660ec13154f97ae0982ef967b7bb07c8821a4190fe17b44cb4175cccb20e670a488e0898ac01bf182c2732f59793e5cf12158b01f5d03f3c5621f0b5468ebf
-
SSDEEP
12288:rQcWdPs+6veQlqhFWEp7knFBIufsez6GAKIeZU8OKgwtUZc57io7snc:rQ1P3Aqxp70Btz60IGU8OHwmc9io7j
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.lbeing.word.kaoyan -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.lbeing.word.kaoyan -
Reads information about phone network operator. 1 TTPs
-
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo com.lbeing.word.kaoyan
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
535KB
MD5d8ce491db29e31bdcf05c4d5dbc522f7
SHA1b0129ebae577fc35bf405bbf84df5339647dc36b
SHA2566ba5073f14ed2c1ef3ee85d38c7a0f68493bc7e6c0ae293e1c409d333f530705
SHA5126d9200e3096c6a11bc66e598a6849bbb0f65f3dd307fa305a3dd118b02f3291b49835bc85f962380bcafbbdae50948f2759c3642f52226ecb23550627b5a2584
-
Filesize
117KB
MD575b3129e0db314f16a2d5cf30c48ceee
SHA1d215527de64ea8fb51d26f2a314a2492e3b27132
SHA256e34f754a95a179ccf5abe6aa38300e280b2a8af7b2db21fa50b076e134fa8e1b
SHA512ed2d15017f526756bfba8bf54a1dea83014bd9e17764383b680d3d7961a73b59fea77e5bab081a6d713028cb69a0c068c127014095deeabaf9740e45111149e8
-
Filesize
20B
MD51d6e256292874124f0dfd5e2a4a0309f
SHA1f5b6976fed1ca499a6b9ebca320296473766d57a
SHA25692aecd706a7a49df24f0a6af56c2d70c8be5b795243bcbe1637b6918b9e09255
SHA51210513ab466c43d96f55b1ac68c3cc0f26e5f0ccfa9789bdf060fd3a692e407d52afe62ac5a409e2956fe76241bcc09b6813873fdc212c81cea240ce7e76ab1bd
-
Filesize
13B
MD52012c9229f55fb03fcb3d4b7dd739507
SHA14a4afa54adc9f363bf7264bc4838b72a45c176ad
SHA2566dc0fb3f3379c7682164fed3a8ea26a5dd00e5416283d51c2ad58a4e2d00cf37
SHA5122a7e6a1ee5fa4f63fe9467c59805a9001162bdc4000aa0ba53763b96e75906a4534641490cf80de48c8bcb20eb35708af4b4857763359190aab8ced352a2194a
-
Filesize
23B
MD5560f77d585f5e016cc9c596f17a9df4c
SHA1583da15bf76713120a99fccdd06abb68d43226cd
SHA25668da782533a64203db2961ea6114f94255233548e7233457519e66f5598c05bd
SHA512b3fb7f4f436fb046568f1e5a9d857b298e64965f71ce574251f9b347a8fd2bb463bb7fc5d3e52944f1422a18ebd2065bb111c9253d7996791de4c215ce2906ca