General

  • Target

    8de447469bdb0f9ea5410f663d25ada2_JaffaCakes118

  • Size

    1.5MB

  • Sample

    241103-2t3vgswkes

  • MD5

    8de447469bdb0f9ea5410f663d25ada2

  • SHA1

    6a21ab48cb3da86b43ee7468bda6b52f42b40743

  • SHA256

    c775dfae35f7d1335b7e546c35d2f8753ef7efbf14df064b4c91d14b512a4cf9

  • SHA512

    b33e818faa26692c070ec6a9e133fde8589de2f5922cbfee86c222238b44693ec25c6c0881d1f6a64bd70e5ebdeb2f1699bbc4f216154156a0fc7eef71e9a7da

  • SSDEEP

    24576:StzF7cIJA9/VoxLijf4IKcjCErj1oh4+S6QYS3vV/TNUpGAvZr:GRcAA9VyemcNrE40M3NbNkGC

Malware Config

Targets

    • Target

      8de447469bdb0f9ea5410f663d25ada2_JaffaCakes118

    • Size

      1.5MB

    • MD5

      8de447469bdb0f9ea5410f663d25ada2

    • SHA1

      6a21ab48cb3da86b43ee7468bda6b52f42b40743

    • SHA256

      c775dfae35f7d1335b7e546c35d2f8753ef7efbf14df064b4c91d14b512a4cf9

    • SHA512

      b33e818faa26692c070ec6a9e133fde8589de2f5922cbfee86c222238b44693ec25c6c0881d1f6a64bd70e5ebdeb2f1699bbc4f216154156a0fc7eef71e9a7da

    • SSDEEP

      24576:StzF7cIJA9/VoxLijf4IKcjCErj1oh4+S6QYS3vV/TNUpGAvZr:GRcAA9VyemcNrE40M3NbNkGC

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries the phone number (MSISDN for GSM devices)

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks