General

  • Target

    88f5b76e3d8904a0d841fb2aa9ecf4a9_JaffaCakes118

  • Size

    956KB

  • Sample

    241103-bvfs8stpdn

  • MD5

    88f5b76e3d8904a0d841fb2aa9ecf4a9

  • SHA1

    91f6a916afa094dc00962e5cf00150d194e7d1bb

  • SHA256

    4b5398884ece2132e03f789ded3c8f031f878a7a9c8e37fd2201971cc6db4e25

  • SHA512

    7f9faef7566e7674ab8406343df2c615adbe113f7fdf2b41d13573e5d4bcf1081448aea65c0503188d5593234b800b6122c51d5ad6101e2b387c56af997e93cf

  • SSDEEP

    12288:6eQqQOwPK3F6FOwPKvf7O/055C8vbUO2Ik3wjDhO46FCwURotG89XjKUXZ67Wa5s:aOwK3FKOwKvf7Gi5OIPDQCwJ4KXAWUtC

Malware Config

Targets

    • Target

      88f5b76e3d8904a0d841fb2aa9ecf4a9_JaffaCakes118

    • Size

      956KB

    • MD5

      88f5b76e3d8904a0d841fb2aa9ecf4a9

    • SHA1

      91f6a916afa094dc00962e5cf00150d194e7d1bb

    • SHA256

      4b5398884ece2132e03f789ded3c8f031f878a7a9c8e37fd2201971cc6db4e25

    • SHA512

      7f9faef7566e7674ab8406343df2c615adbe113f7fdf2b41d13573e5d4bcf1081448aea65c0503188d5593234b800b6122c51d5ad6101e2b387c56af997e93cf

    • SSDEEP

      12288:6eQqQOwPK3F6FOwPKvf7O/055C8vbUO2Ik3wjDhO46FCwURotG89XjKUXZ67Wa5s:aOwK3FKOwKvf7Gi5OIPDQCwJ4KXAWUtC

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries account information for other applications stored on the device

      Application may abuse the framework's APIs to collect account information stored on the device.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks