General

  • Target

    8a23315ebe2b9f6258462895b6bae348_JaffaCakes118

  • Size

    12.8MB

  • Sample

    241103-hlh1kayamq

  • MD5

    8a23315ebe2b9f6258462895b6bae348

  • SHA1

    aba5d1d2ead27ec907405bd483d65c7573b041f4

  • SHA256

    48ac9bf4b7da0941bb3d7277c72c31cecd8663db94d8b3a644b9f27bdc418e83

  • SHA512

    55748a47caef65efc58b5f979863154275e0320fdf9fdac989d324aefedb5a1ce1d4f99d457cd1ae22d28f3ec34a4c239458f6f69c1b4c42aebd4fa50b97db03

  • SSDEEP

    393216:OVm1cYx6LMf1RJ47PrYo3C5uUDThwk7aN:QiNxOM9Y7Prx3vUDThFaN

Malware Config

Targets

    • Target

      8a23315ebe2b9f6258462895b6bae348_JaffaCakes118

    • Size

      12.8MB

    • MD5

      8a23315ebe2b9f6258462895b6bae348

    • SHA1

      aba5d1d2ead27ec907405bd483d65c7573b041f4

    • SHA256

      48ac9bf4b7da0941bb3d7277c72c31cecd8663db94d8b3a644b9f27bdc418e83

    • SHA512

      55748a47caef65efc58b5f979863154275e0320fdf9fdac989d324aefedb5a1ce1d4f99d457cd1ae22d28f3ec34a4c239458f6f69c1b4c42aebd4fa50b97db03

    • SSDEEP

      393216:OVm1cYx6LMf1RJ47PrYo3C5uUDThwk7aN:QiNxOM9Y7Prx3vUDThFaN

    • Queries account information for other applications stored on the device

      Application may abuse the framework's APIs to collect account information stored on the device.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks