e0a45c17af869aa1364fa75616abf68b86bfb608286b280d33d37a576983ad58 | Triage

Sharing

General

Target

826c3f64aa6e20922379e72dbfaef262_JaffaCakes118
Size

2.9MB
Sample

241031-j6rnwasqaw
MD5

826c3f64aa6e20922379e72dbfaef262
SHA1

54be27a2116c0679d4b489cc30a078adf8d5e3c5
SHA256

e0a45c17af869aa1364fa75616abf68b86bfb608286b280d33d37a576983ad58
SHA512

0bf9ce27dec6f92b347f4bd82b152c23f9dca75ec99bc69005e4b39bbdcd0efb8bf70499cb8adcb6e30c824628e5d2207b5ab213e67e28fa7458d731e3ac6d3d
SSDEEP

49152:Dz4FjyDu3JZ15pLyn4o8xa8qjFlEDeSU60XAHIDzYEPJ1GnA9+xlhwTHHM:X4ByD8PDc8qjIUVmOYy+A9whgHM

Score

7^/10

android banker discovery evasion

Malware Config

Targets

- Target
  
  826c3f64aa6e20922379e72dbfaef262_JaffaCakes118
- Size
  
  2.9MB
- MD5
  
  826c3f64aa6e20922379e72dbfaef262
- SHA1
  
  54be27a2116c0679d4b489cc30a078adf8d5e3c5
- SHA256
  
  e0a45c17af869aa1364fa75616abf68b86bfb608286b280d33d37a576983ad58
- SHA512
  
  0bf9ce27dec6f92b347f4bd82b152c23f9dca75ec99bc69005e4b39bbdcd0efb8bf70499cb8adcb6e30c824628e5d2207b5ab213e67e28fa7458d731e3ac6d3d
- SSDEEP
  
  49152:Dz4FjyDu3JZ15pLyn4o8xa8qjFlEDeSU60XAHIDzYEPJ1GnA9+xlhwTHHM:X4ByD8PDc8qjIUVmOYy+A9whgHM
Score

7^/10

banker discovery evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Software Discovery

Security Software Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscoveryevasion