Analysis
-
max time kernel
118s -
max time network
134s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
31/10/2024, 14:22
Static task
static1
Behavioral task
behavioral1
Sample
83439f56b07a605365e0008606e00c2f_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
83439f56b07a605365e0008606e00c2f_JaffaCakes118.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
83439f56b07a605365e0008606e00c2f_JaffaCakes118.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
83439f56b07a605365e0008606e00c2f_JaffaCakes118.apk
-
Size
173KB
-
MD5
83439f56b07a605365e0008606e00c2f
-
SHA1
a3f572d178bd181befa8edd366c15245110e1f96
-
SHA256
134c844af893944f830b8b07a0ef664a837fee73f3bf0f1298c1eb0393ef4a9a
-
SHA512
2984259d4eeac095740a7d29208696d5d267fcee449489ea79491f856c582bcd32e7b30d2316223e6b0179600586c4a6add2df6e39569dc684618706201ee9b0
-
SSDEEP
3072:KV7bCgpUy0+LIjPvz13jgdZodQsUPCOxbpvtb4F/opiK0B:K9rUy0+S3EdknWCgbncipr0B
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.free.appdownload -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.free.appdownload -
Reads information about phone network operator. 1 TTPs
-
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo com.free.appdownload -
Checks memory information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/meminfo com.free.appdownload