General
-
Target
82498df65aabc6f25a9ae8cd985a0ff1_JaffaCakes118
-
Size
19.6MB
-
Sample
241031-jdlbdstdqh
-
MD5
82498df65aabc6f25a9ae8cd985a0ff1
-
SHA1
069237c8523d6da5edfdb8463ad595ab4d58e0e5
-
SHA256
44744aec0c6554ce6bade46f91cc0d3806bd0fd77109ae0bd803a986ca85ee24
-
SHA512
dd566504b95ff6b386aec392243558895f00ab856502215b55c8d62307213b92ec2f8ec3b709f7a7f9b72984ae6ac77f9c628a08c37d541faeaaaf4e7e6a5cf7
-
SSDEEP
393216:8bgLvxuUzxhjRyg7hwVhSB4WIyD8sk1FP72P7oCaQX/+iN5TBnUpACZEG8gtlrtq:8bgLZB1b7ASB5ds1FP72DoCa6/PTBUA7
Static task
static1
Behavioral task
behavioral1
Sample
82498df65aabc6f25a9ae8cd985a0ff1_JaffaCakes118.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral2
Sample
com.tencent.mtt.filemgr.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral3
Sample
com.tencent.mtt.filemgr.apk
Resource
android-x64-20240910-en
Behavioral task
behavioral4
Sample
com.tencent.mtt.filemgr.apk
Resource
android-x64-arm64-20240910-en
Malware Config
Targets
-
-
Target
82498df65aabc6f25a9ae8cd985a0ff1_JaffaCakes118
-
Size
19.6MB
-
MD5
82498df65aabc6f25a9ae8cd985a0ff1
-
SHA1
069237c8523d6da5edfdb8463ad595ab4d58e0e5
-
SHA256
44744aec0c6554ce6bade46f91cc0d3806bd0fd77109ae0bd803a986ca85ee24
-
SHA512
dd566504b95ff6b386aec392243558895f00ab856502215b55c8d62307213b92ec2f8ec3b709f7a7f9b72984ae6ac77f9c628a08c37d541faeaaaf4e7e6a5cf7
-
SSDEEP
393216:8bgLvxuUzxhjRyg7hwVhSB4WIyD8sk1FP72P7oCaQX/+iN5TBnUpACZEG8gtlrtq:8bgLZB1b7ASB5ds1FP72DoCa6/PTBUA7
-
Checks if the Android device is rooted.
-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Reads information about phone network operator.
-
-
-
Target
com.tencent.mtt.filemgr.jar
-
Size
123KB
-
MD5
859ccaa280d24c243e9a5ce079fdc991
-
SHA1
73caf4fb79baf5d7620c69b9f19820969930feeb
-
SHA256
6d17f2b0a44241ee816392e777f4c3610f1cb610060e8d7b70c634688c71eef7
-
SHA512
fb62676c6baaa92228296fa292c2c79d2ab39765cf22a6f7926e95426811011d70ee320e124d50dbf4d3fcebeffd5134fa77430cd8867fb2f6f398b121f6bc1e
-
SSDEEP
3072:4uv6vsQ3cuBg9J4xV9aZq5dECUtWncX/o8//65:44zQ3lxVAF3sqv//Y
Score1/10 -
MITRE ATT&CK Mobile v15
Defense Evasion
Download New Code at Runtime
1Input Injection
1Virtualization/Sandbox Evasion
2System Checks
2Discovery
Location Tracking
1Process Discovery
1System Information Discovery
3System Network Configuration Discovery
2System Network Connections Discovery
3