badmirror | b42b2e77480dda65adb18e4eef8050db1f68ca256f28b4a0acaa9fe7d3455dbd | Triage

Submit
Reports

Overview

overview

Static

static

855fb4a09c...18.apk

android-9-x86

Sharing

General

Target

855fb4a09c7e6c64fba528227f8e4c1d_JaffaCakes118
Size

15.1MB
Sample

241102-pdz3fatka1
MD5

855fb4a09c7e6c64fba528227f8e4c1d
SHA1

c9670d7d47e6c64c46d83c38f7b0c9b5803aa3d0
SHA256

b42b2e77480dda65adb18e4eef8050db1f68ca256f28b4a0acaa9fe7d3455dbd
SHA512

e95071351872d6a6d400a96e04f1ebaea7e05122b3073367dcd5e913938b433667147acc2397822f6a5efab60f9bea4159321a427d2d9913748cfb4179d74d2e
SSDEEP

393216:zSTQrJtD4D0f/Lqrxq4o/EMYaTLRn31WpUEBO:9k8/W4p/EMZLRx

Score

10^/10

badmirror android discovery infostealer persistence rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

855fb4a09c7e6c64fba528227f8e4c1d_JaffaCakes118.apk

Resource

android-x86-arm-20240624-en

badmirror discovery infostealer persistence rat trojan

android-9-x86

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  855fb4a09c7e6c64fba528227f8e4c1d_JaffaCakes118
- Size
  
  15.1MB
- MD5
  
  855fb4a09c7e6c64fba528227f8e4c1d
- SHA1
  
  c9670d7d47e6c64c46d83c38f7b0c9b5803aa3d0
- SHA256
  
  b42b2e77480dda65adb18e4eef8050db1f68ca256f28b4a0acaa9fe7d3455dbd
- SHA512
  
  e95071351872d6a6d400a96e04f1ebaea7e05122b3073367dcd5e913938b433667147acc2397822f6a5efab60f9bea4159321a427d2d9913748cfb4179d74d2e
- SSDEEP
  
  393216:zSTQrJtD4D0f/Lqrxq4o/EMYaTLRn31WpUEBO:9k8/W4p/EMZLRx
Score

10^/10

badmirror discovery infostealer persistence rat trojan
- BadMirror
  BadMirror is an Android infostealer first seen in March 2016.
  trojan infostealer rat badmirror
- Badmirror family
  badmirror
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries information about active data network
  discovery
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

badmirrordiscoveryinfostealerpersistencerattrojan

© 2018-2025

Terms | Privacy