Analysis
-
max time kernel
124s -
max time network
155s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
18/10/2024, 14:09
Static task
static1
Behavioral task
behavioral1
Sample
57dd974e400ea936f5d4e3260f792428_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
57dd974e400ea936f5d4e3260f792428_JaffaCakes118.apk
Resource
android-x64-20240624-en
General
-
Target
57dd974e400ea936f5d4e3260f792428_JaffaCakes118.apk
-
Size
787KB
-
MD5
57dd974e400ea936f5d4e3260f792428
-
SHA1
6f4e6bc982131cd5f1d4b8ca0934246a6ed649ff
-
SHA256
5cbdc05183fb0ce11248ead0c4a5de031cc724171360b38214a4b3facf58ce7d
-
SHA512
8d660ec13154f97ae0982ef967b7bb07c8821a4190fe17b44cb4175cccb20e670a488e0898ac01bf182c2732f59793e5cf12158b01f5d03f3c5621f0b5468ebf
-
SSDEEP
12288:rQcWdPs+6veQlqhFWEp7knFBIufsez6GAKIeZU8OKgwtUZc57io7snc:rQ1P3Aqxp70Btz60IGU8OHwmc9io7j
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.lbeing.word.kaoyan -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.lbeing.word.kaoyan -
Reads information about phone network operator. 1 TTPs
-
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo com.lbeing.word.kaoyan
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
535KB
MD5d8ce491db29e31bdcf05c4d5dbc522f7
SHA1b0129ebae577fc35bf405bbf84df5339647dc36b
SHA2566ba5073f14ed2c1ef3ee85d38c7a0f68493bc7e6c0ae293e1c409d333f530705
SHA5126d9200e3096c6a11bc66e598a6849bbb0f65f3dd307fa305a3dd118b02f3291b49835bc85f962380bcafbbdae50948f2759c3642f52226ecb23550627b5a2584
-
Filesize
117KB
MD575b3129e0db314f16a2d5cf30c48ceee
SHA1d215527de64ea8fb51d26f2a314a2492e3b27132
SHA256e34f754a95a179ccf5abe6aa38300e280b2a8af7b2db21fa50b076e134fa8e1b
SHA512ed2d15017f526756bfba8bf54a1dea83014bd9e17764383b680d3d7961a73b59fea77e5bab081a6d713028cb69a0c068c127014095deeabaf9740e45111149e8
-
Filesize
20B
MD51d6e256292874124f0dfd5e2a4a0309f
SHA1f5b6976fed1ca499a6b9ebca320296473766d57a
SHA25692aecd706a7a49df24f0a6af56c2d70c8be5b795243bcbe1637b6918b9e09255
SHA51210513ab466c43d96f55b1ac68c3cc0f26e5f0ccfa9789bdf060fd3a692e407d52afe62ac5a409e2956fe76241bcc09b6813873fdc212c81cea240ce7e76ab1bd