Overview
overview
7Static
static
6861cf1ee7e...18.apk
android-9-x86
7CommonPlugin-2.6.apk
android-9-x86
1CommonPlugin-2.6.apk
android-10-x64
1CommonPlugin-2.6.apk
android-11-x64
1FeedPlugin-1.2.apk
android-9-x86
1FeedPlugin-1.2.apk
android-10-x64
1FeedPlugin-1.2.apk
android-11-x64
1FrameworkP....5.apk
android-9-x86
1FrameworkP....5.apk
android-10-x64
1FrameworkP....5.apk
android-11-x64
1TAEPlugin-1.4.apk
android-9-x86
1TAEPlugin-1.4.apk
android-11-x64
1General
-
Target
861cf1ee7e9a1cd7abec6a10ff80f50d_JaffaCakes118
-
Size
23.4MB
-
Sample
241102-sme1eaxlbx
-
MD5
861cf1ee7e9a1cd7abec6a10ff80f50d
-
SHA1
46f72c08277330f6b4702314161f72f04a5b8d77
-
SHA256
4203243f18b55b74f409994f4b417bf19bcd5b6112f968da3fc3b6419c84b03b
-
SHA512
d6963d93112c2a191f49538a9ea314c571633276735c4c3cfd8095b0d0290d99e0bc97644bbbc61f580a5235291840f476e71356611c387e39548179ada62352
-
SSDEEP
393216:uhxMEtU3Y4W0oMbF4bwAQFZOSsAbyNq9uq6PNcYZ3f1IAX+U7jGv:gF8cMxyQLOXAbyNsFvMf1IAX+U7jm
Static task
static1
Behavioral task
behavioral1
Sample
861cf1ee7e9a1cd7abec6a10ff80f50d_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
CommonPlugin-2.6.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral3
Sample
CommonPlugin-2.6.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral4
Sample
CommonPlugin-2.6.apk
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral5
Sample
FeedPlugin-1.2.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral6
Sample
FeedPlugin-1.2.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral7
Sample
FeedPlugin-1.2.apk
Resource
android-x64-arm64-20240910-en
Behavioral task
behavioral8
Sample
FrameworkPlugin-2.5.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral9
Sample
FrameworkPlugin-2.5.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral10
Sample
FrameworkPlugin-2.5.apk
Resource
android-x64-arm64-20240910-en
Behavioral task
behavioral11
Sample
TAEPlugin-1.4.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral12
Sample
TAEPlugin-1.4.apk
Resource
android-x64-arm64-20240624-en
Malware Config
Targets
-
-
Target
861cf1ee7e9a1cd7abec6a10ff80f50d_JaffaCakes118
-
Size
23.4MB
-
MD5
861cf1ee7e9a1cd7abec6a10ff80f50d
-
SHA1
46f72c08277330f6b4702314161f72f04a5b8d77
-
SHA256
4203243f18b55b74f409994f4b417bf19bcd5b6112f968da3fc3b6419c84b03b
-
SHA512
d6963d93112c2a191f49538a9ea314c571633276735c4c3cfd8095b0d0290d99e0bc97644bbbc61f580a5235291840f476e71356611c387e39548179ada62352
-
SSDEEP
393216:uhxMEtU3Y4W0oMbF4bwAQFZOSsAbyNq9uq6PNcYZ3f1IAX+U7jGv:gF8cMxyQLOXAbyNsFvMf1IAX+U7jm
Score7/10-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Reads information about phone network operator.
-
Listens for changes in the sensor environment (might be used to detect emulation)
-
-
-
Target
CommonPlugin-2.6.apk
-
Size
477KB
-
MD5
5336140e3a1f16d4f4d690527d9d0c02
-
SHA1
c1342092624f4c5ab81a7cf7c6438d0004052bc7
-
SHA256
3936a5daa9e3dd8581b6e45fbf0c7dafe045e8ea91341ee08ae4630816030fa5
-
SHA512
e7ec74f43bf5aa80b0ce1c63aee71c51740ec5f6949e44128475ee3b964151f06bc9a2bc4021b7a89a877f0a463b52fafa8045357490507aca1de165b3d3e543
-
SSDEEP
6144:47JQ+CmoJfcCKBszPEq+eh8o+/TbgcwOnYWqF2w0woDIVIewSHffOBLfyAuGTs0h:47ZAZl+eA3gcS32wQI6ewQnkOsnN3
Score1/10 -
-
-
Target
FeedPlugin-1.2.apk
-
Size
46KB
-
MD5
d616aa07af0cc531c24042cd5f690cda
-
SHA1
a621aa761a137d5da14345f266a4b792d3d8fd4b
-
SHA256
ff47ab13f2e073005d8ca8f62fe6ec1ac43d2312c40c892d4b5c32cb4c8dbcc3
-
SHA512
7bac5e70d173af784b25ba13acc997015606c7a0835396ff48d25cdd00486f29ea934cbb54e545f825eb5151de6d7f9e3bee49f994ea4a435424fff4b58b0f98
-
SSDEEP
768:8jN4e7D1U0YgxaZfDzT3qgxIJTO9sqzbIkYJ6VQNj7xAYaZwL:8jNZgEapH3WxO9scYdNXxhaZ2
Score1/10 -
-
-
Target
FrameworkPlugin-2.5.apk
-
Size
19KB
-
MD5
749c27bb43103b4b3b591e1b2e8a83c0
-
SHA1
0138b54d42242a2e020af4b8814d9fbdcbe9a225
-
SHA256
1bc3b2f5d840b735565fe9f7b3237bc8d5ec14f3d45685e773447491be4c4dee
-
SHA512
9824b44a4c59e43f67d762cff07021f449d31f8fc7d24205d0bb5f92fc79abd71d8d6d7406c991ef680654ffb75c33a11547872bc3cb1fa01462672a3f411e87
-
SSDEEP
384:9E8qUlSRdJE3abVCYqFget8ek/Scu9bKoq009L9NnTNn4fvDo1Z7MjqpIGqx4m:ZKdq3cPqTtnc6Koq0KLDp4Ta7MjCqxR
Score1/10 -
-
-
Target
TAEPlugin-1.4.apk
-
Size
773KB
-
MD5
9b7d696122e97317bb49707bc9e669f3
-
SHA1
5af0698567f7c441021a363625258656404155e0
-
SHA256
5a3cf4abfc9bc82723ef63d8cb8e034f51ad206458e2693e6a706374eb75c12b
-
SHA512
fa7c5b8f95118bc1b2bec3812b894e0ca1eb39abe5d8fe27c9884c2724d6ac90e48cb2a25963604babe5329609aef44ddc1aeca079672a48418665ac39b7bbfa
-
SSDEEP
12288:QUA6fs2pLBA8T55J+piqTZdEVdtVCPzeikJ6SQgdSbFVMKdW:xRa8dP+Gos6gdSBVMSW
Score1/10 -
MITRE ATT&CK Mobile v15
Persistence
Event Triggered Execution
1Broadcast Receivers
1Foreground Persistence
1Defense Evasion
Execution Guardrails
1Geofencing
1Foreground Persistence
1Hide Artifacts
1User Evasion
1Virtualization/Sandbox Evasion
1System Checks
1