General

  • Target

    861cf1ee7e9a1cd7abec6a10ff80f50d_JaffaCakes118

  • Size

    23.4MB

  • Sample

    241102-sme1eaxlbx

  • MD5

    861cf1ee7e9a1cd7abec6a10ff80f50d

  • SHA1

    46f72c08277330f6b4702314161f72f04a5b8d77

  • SHA256

    4203243f18b55b74f409994f4b417bf19bcd5b6112f968da3fc3b6419c84b03b

  • SHA512

    d6963d93112c2a191f49538a9ea314c571633276735c4c3cfd8095b0d0290d99e0bc97644bbbc61f580a5235291840f476e71356611c387e39548179ada62352

  • SSDEEP

    393216:uhxMEtU3Y4W0oMbF4bwAQFZOSsAbyNq9uq6PNcYZ3f1IAX+U7jGv:gF8cMxyQLOXAbyNsFvMf1IAX+U7jm

Malware Config

Targets

    • Target

      861cf1ee7e9a1cd7abec6a10ff80f50d_JaffaCakes118

    • Size

      23.4MB

    • MD5

      861cf1ee7e9a1cd7abec6a10ff80f50d

    • SHA1

      46f72c08277330f6b4702314161f72f04a5b8d77

    • SHA256

      4203243f18b55b74f409994f4b417bf19bcd5b6112f968da3fc3b6419c84b03b

    • SHA512

      d6963d93112c2a191f49538a9ea314c571633276735c4c3cfd8095b0d0290d99e0bc97644bbbc61f580a5235291840f476e71356611c387e39548179ada62352

    • SSDEEP

      393216:uhxMEtU3Y4W0oMbF4bwAQFZOSsAbyNq9uq6PNcYZ3f1IAX+U7jGv:gF8cMxyQLOXAbyNsFvMf1IAX+U7jm

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Reads information about phone network operator.

    • Listens for changes in the sensor environment (might be used to detect emulation)

    • Target

      CommonPlugin-2.6.apk

    • Size

      477KB

    • MD5

      5336140e3a1f16d4f4d690527d9d0c02

    • SHA1

      c1342092624f4c5ab81a7cf7c6438d0004052bc7

    • SHA256

      3936a5daa9e3dd8581b6e45fbf0c7dafe045e8ea91341ee08ae4630816030fa5

    • SHA512

      e7ec74f43bf5aa80b0ce1c63aee71c51740ec5f6949e44128475ee3b964151f06bc9a2bc4021b7a89a877f0a463b52fafa8045357490507aca1de165b3d3e543

    • SSDEEP

      6144:47JQ+CmoJfcCKBszPEq+eh8o+/TbgcwOnYWqF2w0woDIVIewSHffOBLfyAuGTs0h:47ZAZl+eA3gcS32wQI6ewQnkOsnN3

    Score
    1/10
    • Target

      FeedPlugin-1.2.apk

    • Size

      46KB

    • MD5

      d616aa07af0cc531c24042cd5f690cda

    • SHA1

      a621aa761a137d5da14345f266a4b792d3d8fd4b

    • SHA256

      ff47ab13f2e073005d8ca8f62fe6ec1ac43d2312c40c892d4b5c32cb4c8dbcc3

    • SHA512

      7bac5e70d173af784b25ba13acc997015606c7a0835396ff48d25cdd00486f29ea934cbb54e545f825eb5151de6d7f9e3bee49f994ea4a435424fff4b58b0f98

    • SSDEEP

      768:8jN4e7D1U0YgxaZfDzT3qgxIJTO9sqzbIkYJ6VQNj7xAYaZwL:8jNZgEapH3WxO9scYdNXxhaZ2

    Score
    1/10
    • Target

      FrameworkPlugin-2.5.apk

    • Size

      19KB

    • MD5

      749c27bb43103b4b3b591e1b2e8a83c0

    • SHA1

      0138b54d42242a2e020af4b8814d9fbdcbe9a225

    • SHA256

      1bc3b2f5d840b735565fe9f7b3237bc8d5ec14f3d45685e773447491be4c4dee

    • SHA512

      9824b44a4c59e43f67d762cff07021f449d31f8fc7d24205d0bb5f92fc79abd71d8d6d7406c991ef680654ffb75c33a11547872bc3cb1fa01462672a3f411e87

    • SSDEEP

      384:9E8qUlSRdJE3abVCYqFget8ek/Scu9bKoq009L9NnTNn4fvDo1Z7MjqpIGqx4m:ZKdq3cPqTtnc6Koq0KLDp4Ta7MjCqxR

    Score
    1/10
    • Target

      TAEPlugin-1.4.apk

    • Size

      773KB

    • MD5

      9b7d696122e97317bb49707bc9e669f3

    • SHA1

      5af0698567f7c441021a363625258656404155e0

    • SHA256

      5a3cf4abfc9bc82723ef63d8cb8e034f51ad206458e2693e6a706374eb75c12b

    • SHA512

      fa7c5b8f95118bc1b2bec3812b894e0ca1eb39abe5d8fe27c9884c2724d6ac90e48cb2a25963604babe5329609aef44ddc1aeca079672a48418665ac39b7bbfa

    • SSDEEP

      12288:QUA6fs2pLBA8T55J+piqTZdEVdtVCPzeikJ6SQgdSbFVMKdW:xRa8dP+Gos6gdSBVMSW

    Score
    1/10

MITRE ATT&CK Mobile v15

Tasks