General
-
Target
82716f933a2483d49e9a3c086efed099_JaffaCakes118
-
Size
27.9MB
-
Sample
241031-j97t9svclg
-
MD5
82716f933a2483d49e9a3c086efed099
-
SHA1
97de15fcd39880ca546b7466f41e0d00b388676f
-
SHA256
45f6c87ee826ef1c7c29669fb6c1442dddc77cdb4c6b78ab1f1b952364fffdd8
-
SHA512
5865e2683bdfb241849fd28371add4c9fff00c6dc0990c423f7d7c5740c5df3d516627f876ec21dd199b186b9db17a504c17b89f84f54d2d22684dcacec96de0
-
SSDEEP
786432:uSt/eDktX7KM7lNhw3mu77X+nTP78jbv85:u0eaXdA2u74TPgnE
Malware Config
Targets
-
-
Target
82716f933a2483d49e9a3c086efed099_JaffaCakes118
-
Size
27.9MB
-
MD5
82716f933a2483d49e9a3c086efed099
-
SHA1
97de15fcd39880ca546b7466f41e0d00b388676f
-
SHA256
45f6c87ee826ef1c7c29669fb6c1442dddc77cdb4c6b78ab1f1b952364fffdd8
-
SHA512
5865e2683bdfb241849fd28371add4c9fff00c6dc0990c423f7d7c5740c5df3d516627f876ec21dd199b186b9db17a504c17b89f84f54d2d22684dcacec96de0
-
SSDEEP
786432:uSt/eDktX7KM7lNhw3mu77X+nTP78jbv85:u0eaXdA2u74TPgnE
Score7/10-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Reads information about phone network operator.
-
MITRE ATT&CK Mobile v15
Defense Evasion
Execution Guardrails
1Geofencing
1Virtualization/Sandbox Evasion
2System Checks
2