0c4341306773bf72f647c60a60e706d1a63a8992bceacf5f82124dff6735fe14

Analysis

max time kernel
149s
max time network
157s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
23-10-2024 14:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6f66be01aab8a3ec110837009cd3414b_JaffaCakes118.apk
Size

5.4MB
MD5

6f66be01aab8a3ec110837009cd3414b
SHA1

378b3a37b24f00b15e9b4c906b44aea61edcc511
SHA256

0c4341306773bf72f647c60a60e706d1a63a8992bceacf5f82124dff6735fe14
SHA512

71e39e7234fef01a9fdd4d4a05d8ba8a60a25022c89a931f73b4e327e43d57d128a6afcbd2625cd19e5bf8887d0d356d6e9a44e639d33cccf7bd9d3453c95751
SSDEEP

98304:5tYlfAMTzzH0eVpWi2j+D9/BRBjRRdXUGFkYor5Gw3coUQENtxKX:wnzzH3VpWi2697sGwqNA

Score

8^/10

discovery evasion impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs
evasion

System Information Discovery
T1426

Processes:

com.feyon.asystem

ioc process

/system/bin/su com.feyon.asystem
/system/xbin/su com.feyon.asystem
Queries information about active data network 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.feyon.asystem

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.feyon.asystem
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

com.feyon.asystem

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.feyon.asystem

ioc	process
/system/bin/su	com.feyon.asystem
/system/xbin/su	com.feyon.asystem

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.feyon.asystem

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.feyon.asystem

com.feyon.asystem
1⤵
- Checks if the Android device is rooted.
- Queries information about active data network
- Uses Crypto APIs (Might try to encrypt user data)
PID:4977

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.feyon.asystem/cache/root5

Filesize
13KB

MD5
c110d1870e0959a5471b2cfd2665adf5

SHA1
76373278e47563424ba4970b6720954d23bf9007

SHA256
775b6e3621bdb8c721002832a09a4df43c625f74534df511efe78bc1997464ca

SHA512
8780800d4fbe01e8c1adaf2204ccc237ad582616713529169468e3588a30ba4c5be77ebd30d3a9ad5208bc794e9e156de65d99c5b9c55e9d1d17b2e7a6811880

Download Submit
/data/data/com.feyon.asystem/cache/shared_preference.db

Filesize
46KB

MD5
c74431e432fa983d97587e98f70f39e8

SHA1
b4f7b1bdb5404670bdb1f321bf8704c0e7f19596

SHA256
34c87466339922ee5e23301c5e663ce3293a2a41d7113b95f4937f9f408b0078

SHA512
f9eb99cbd2cb86b02758e168402fd17df0ec17337e9acd2a8d7b0462282778a544c2fb70546b7b864090c36f800e503212fb519eccd2bdfcec55779e877f4c3c

Download Submit
/data/data/com.feyon.asystem/cache/shared_preferenced/379

Filesize
34KB

MD5
c664c7feb7de187f7e8c10010c7cdcf1

SHA1
499119f9c691a49711d46a006ea74ef9ed858280

SHA256
078c49ec0bbcb4645b5d59ab22cca1eed5faad0c918e5da9632b28c9a3d4fb29

SHA512
0206e209ea2c9151004c2c437b060881055c4e043a69d75807887dcaa1f56f468c262bb953f11e84330546784c6907543ba69bc8d83a0f23e32262cbf1195099

Download Submit
/data/data/com.feyon.asystem/cache/shared_preferenced/8

Filesize
11KB

MD5
3b8f6cca5bbe44b437716f180ba2fc1a

SHA1
f160d876bf4b3c1e6df4904f02a1302d31e97c0f

SHA256
4dc9cc7e02d3ba43b0cb01858185bb2180307c3dae3cdb75e502b015f38b6dd2

SHA512
01a08fd2c26449dd428c48e1b280153f024d244a247872324509239c7b6588231b30d481d2775d04884e49cd9452a43f41df533be04875e4c1662c9c272b5070

Download Submit
/data/data/com.feyon.asystem/files/.root

Filesize
42KB

MD5
130aab6bb673d08bfbaeaca37997298e

SHA1
474fe7434f4d84699b559d15ead1060c02551238

SHA256
3a740abcef82942db31893938af538e97c839a28c1c6c5de23ea445ce8f927f8

SHA512
5a2ae468edd2c2d38bdf03b930d2af3558235ea44cf51459fdc0c6bd6a67a63970876b3616e963b522eae4b0d0396c5bbd76ea003b43de06cec0b841e92bbf73

Download Submit
/data/data/com.feyon.asystem/files/.roots

Filesize
42KB

MD5
66b3933b804356ccdb668828c9b1550f

SHA1
e52a770b406a624c5416de4410463d78073cf25e

SHA256
5e8a5f3197007f21b86f3e2627b17a1d28be7b4b14c4a52b657e8e9f5aa471fa

SHA512
3be4950687994126c5f4582c16bde57739c95eb50dffe7e7bf827aac9ba60ae805d68bfeab658684aa7b2d7c007fe51c6a60dd78af59d86b1831d05c14beaf5c

Download Submit
/data/data/com.feyon.asystem/files/NGP.dat

Filesize
643KB

MD5
e77da13aed6fae824f90a91e3785740f

SHA1
4c1f89949afb8ed283f8935d7910f3a382233979

SHA256
373e46d33ee477c00c099d514d573f1cee8f1e8aef6d51cb5dd64ec5bd091731

SHA512
1fac7d31442cb60f53d99de6622fd79a7a66f6952942f4afba16af9ee42e0bc91d7ecbd63efb34a8be7acc1cf82ad11bf11ee624bd86f57388e34513352d1f2e

Download Submit
/data/data/com.feyon.asystem/files/NGP.dat_

Filesize
643KB

MD5
68486291c83edf69df6087ca30a966d0

SHA1
a684fd1692528b7e2bcde8fce1353fe01e381493

SHA256
19e2b4b0f84d990d1605655947dccedfa4a5a10a7e122b423bd7a0454aa34452

SHA512
440083f38c7995e953f1b3a7419f7a377888e50833182a3d7ef9482715b5b047eae7d769bcffc411b18514efa2b5266318e52523999d820ffc406b58dc703f9f

Download Submit
/data/data/com.feyon.asystem/files/ad.dat

Filesize
3.1MB

MD5
992a196b59f7573ad50a6fc0e6ebfa8f

SHA1
1dfaff79dbbb3de10a507326930e03e8765a12f4

SHA256
1a2eb1f96d7b8d39b73151201e9e3a74f50a53271cad9016b8e0e0bf033a41ba

SHA512
2871134cbbaee630043096c189297f9a9898f811584de7df0501dd952f4f072b0840f30168bb018cfba68a38c67a5f5edee227fe8b0ae6c319789f2969dd73fd

Download Submit
/data/data/com.feyon.asystem/files/ad.dat_

Filesize
3.1MB

MD5
1befdc43424d7ea963521a34f3f3d5bc

SHA1
d060e3853b7990764baeeb2537c53ff41d49454b

SHA256
c291fb53adbb9cedcab336b9f32ebda5244f98dec6e2d23ca809499c7414faa0

SHA512
7b3ee628ae116a8de980b911799ec9ca3617f5e1741df2fd71b116efc55770f153a25f085f25b6152682ab7ad83c63ae5449281274d9573d0a9c57c14621a68b

Download Submit
/data/data/com.feyon.asystem/files/bbb

Filesize
347KB

MD5
39c9626e6fee603856ef5acb54ad1d61

SHA1
d8d72eb2d226b102b373248114b20cce5fcdfdab

SHA256
55452a1775f1b021a0b525cf668c5de8cb7f3b14943711918181064c494109e8

SHA512
30b796f19735186d998a10a5833dec8ba818a300d901a690b6b9fa4dda1f4a805dbf39463e063a7147d0c153367385594a341e017efc23bbf507229fe8d56597

Download Submit
/data/data/com.feyon.asystem/files/busybox

Filesize
1.0MB

MD5
94e5efab5f0115baab91376ebfb3ad98

SHA1
cdd4bed059430b078d0dd645314ef3e6d033127e

SHA256
10b4cf8acca6c32cc4ab376795b7aedefd0c43ae6446b628bee98aaee04e2c69

SHA512
46ad5e490cf9d42a0372532970a6742ae96d71f06532affd8c0a6398ea12adac819f8631c7638b83e584fb42c9f119265abbb5eede5fd854a330f890fd5145ef

Download Submit
/data/data/com.feyon.asystem/files/htmlv.dat

Filesize
639KB

MD5
e54e78157489aecab2c0c6f55789f229

SHA1
a7478fc24918ce237d19df18869413812c9f96c6

SHA256
728c43d9a065fc27f7e03db2a3f5a3d40f7022e570ca095dbee5f9dafc21fb61

SHA512
34bcecca0e15e282f96a81c630f0399a7f74e444fb5a98bf911c3fd8efb09046873728d887cc266918adba09d88b5f84f0db3113e29bde9cdb6c649511a8f354

Download Submit
/data/data/com.feyon.asystem/files/htmlv.dat_

Filesize
638KB

MD5
e8f9db21d01ba5d4f8e78f2c8c2bce2c

SHA1
e5f32f51580c7c33655a7a2e153074dcf673dcd1

SHA256
792c0fe715bb145fa599a015a1b1bb1c3b23c069a96842b19dc4a9a08aac4d1f

SHA512
cd6b314ac793f9db848c679a4d8b31bed51fa2124ff4b54bada1047ecb4406f0c8748ff11c76c8548719b772632a89843fd1fc9b690dd1c024c7d4416fda8036

Download Submit
/data/data/com.feyon.asystem/files/root.sh

Filesize
2KB

MD5
8ec19ae908177f2e61a10874f2ed48f6

SHA1
95889d97bc170c821e393efd2d999d20ddf2aa3e

SHA256
cb5d129aa6ace5b907077ae317bfe7292c59490e57f48cf978eca2abd60aae02

SHA512
325f2b3baa1f29b0890864d6704eb825e9be2d8f212f5904caa169f595f7ab42153aa256414578ca4d5e836f4dda7e10d761c5ebda04564b571a6ecae87e7274

Download Submit
/data/data/com.feyon.asystem/files/root1

Filesize
11KB

MD5
12d29089a56a86f4e874eb07981933b5

SHA1
d8e9175a17127e2a57ca6b3d0afd3cc4a8a59e56

SHA256
d92c891820cb40a24e6db51a353022367dde7b4be3dd89375890c00dfe42e200

SHA512
c8826a80e9102a2ba1b5b0bdfd99593f055beaa14326c1cebdb35ad8c3280ca21050981261d216af9f8beb58a5897a158e2b219c2fe7e0bb84cb7cc31e65be2c

Download Submit
/data/data/com.feyon.asystem/files/root1

Filesize
11KB

MD5
4840b7d03cf020e6c79a1280fc255607

SHA1
95959fd2a0673e2bb593a68e4e14c5c620475275

SHA256
611bc0303def32abba80bb3aaf5013b4593dc509b87c3573791f0676a53ff838

SHA512
52f86498aca21f1217fcc0bfd1a633084d394ea33a1366adf61410aebddaf2682e681290087ae704079a76e3216fd5558dd69591844449056d45c2c6b0d240a6

Download Submit
/data/data/com.feyon.asystem/files/root2

Filesize
11KB

MD5
6785448552ee96c94e9325de29d1f429

SHA1
94928baa4430f0b40028e0377f288d9ffaaa7eb1

SHA256
c17c1222274d447fe0ee3a6e2cb913bcdfe679a58cb957d2f5e8bbc87669307a

SHA512
f7247d92fed3979f991416aed8f3e07efe07bda0c086573d1b76cb8432f55b4563419205b106b63c1a9982f03de3f8770595b49135e8ef119ff3df2e8fe4d0d5

Download Submit
/data/data/com.feyon.asystem/files/root3

Filesize
46KB

MD5
46db4bf9a82fcfeca0eec18952d92761

SHA1
dd6e2f24868679a37b195785261b7e57b7efed85

SHA256
84e0648010dfdca742c86e8cb785978d9123c74fbd0e46655cbb23f58bb3810c

SHA512
485c59ab7bd9721a56488727be03da89c75ff01bdf0a502125be09f439d22b2bb6cd307d8b78219366b3c7a5c136246449a27e68f22b4e160f23ca2e156198c2

Download Submit
/data/data/com.feyon.asystem/files/root3

Filesize
34KB

MD5
c7c6eaea579f351a9e0f4bbf21d6c9b6

SHA1
7e54599431d632491f0139988fd6ad78d9cfd210

SHA256
9244ddbccd042c5887d2a743035a93088c23868ca716ad6a0feaf155f9af5f0e

SHA512
8ebf608b49205c374a4c4f622f216fe8c52191d1ffa959812e580e50096276c20d0c1929e27df178e586b07f0cc41aa67221f1f66df98ef7977198810bd81e6e

Download Submit
/data/data/com.feyon.asystem/files/su

Filesize
347KB

MD5
14f38b8aeb6fa43b9a7bb99973acafbb

SHA1
814914d96f002ae3da2b162892c37041f4e1364a

SHA256
52091f5322bc7058c78f2109b800c3446c9130172a5c4e9f9efb6a9fc1788d86

SHA512
e82dafe75f006a968b21b7378ba4279b54f7b72f326ca445208ab951ceb59615d680d7a0342e0d9c9857b09134e8b5896f0404b733df6bceebf455b5ab47bc41

Download Submit
/data/data/com.feyon.asystem/files/zzy_cjyh

Filesize
4.3MB

MD5
4c07843c19ecf296c0dd5f09ba9fa8ef

SHA1
20c202c1077f378e90bd833c5956871ca77518e8

SHA256
74f4fac7bc8e49871e8e70478f0e7811a4a08c1e4673f755bf2adeec6774282f

SHA512
6650a767bebeec8a400c9d3bfddc48d3e6395ef34299385103f92738182e40256a72cac175715fb38f8fe698e7700956c82bd951d83b285002afb6147600af13

Download Submit