General
-
Target
8a3250cb2696c6cd11d6dd28e132e787_JaffaCakes118
-
Size
25.6MB
-
Sample
241103-hv4zdsyclp
-
MD5
8a3250cb2696c6cd11d6dd28e132e787
-
SHA1
283d7988ea60044b6aefd7241f7ed3c7ffe97ddd
-
SHA256
d6b9580a7fdfb45dfa185c76efad4a3333d05bf3d7ee1b708e01aa1326c826c2
-
SHA512
ad8f92904bea074c9c7b2aa204b59f49be33dcf93bf7bac51228d70fcb9f5409a3c75c4773aeba51506fea8899ee05a7eb0870e6a9775d34bc5cb0adc4b3a671
-
SSDEEP
786432:Y3gqrMsZ2bOX6v7EWZ4wpfAcTc/B5MkpN:YvMm6v/Z4wpf1cXN
Static task
static1
Behavioral task
behavioral1
Sample
8a3250cb2696c6cd11d6dd28e132e787_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
8a3250cb2696c6cd11d6dd28e132e787_JaffaCakes118.apk
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral3
Sample
morendark.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral4
Sample
morendark.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral5
Sample
morendark.apk
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral6
Sample
morenlight.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral7
Sample
morenlight.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral8
Sample
morenlight.apk
Resource
android-x64-arm64-20240624-en
Malware Config
Targets
-
-
Target
8a3250cb2696c6cd11d6dd28e132e787_JaffaCakes118
-
Size
25.6MB
-
MD5
8a3250cb2696c6cd11d6dd28e132e787
-
SHA1
283d7988ea60044b6aefd7241f7ed3c7ffe97ddd
-
SHA256
d6b9580a7fdfb45dfa185c76efad4a3333d05bf3d7ee1b708e01aa1326c826c2
-
SHA512
ad8f92904bea074c9c7b2aa204b59f49be33dcf93bf7bac51228d70fcb9f5409a3c75c4773aeba51506fea8899ee05a7eb0870e6a9775d34bc5cb0adc4b3a671
-
SSDEEP
786432:Y3gqrMsZ2bOX6v7EWZ4wpfAcTc/B5MkpN:YvMm6v/Z4wpf1cXN
Score7/10-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Reads the content of the calendar entry data.
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
-
-
Target
morendark.skin
-
Size
132KB
-
MD5
2f65c860bfb0f1ed634aa5784c57832f
-
SHA1
50a51f9f9005dae1967c4de000ff1608ccb3c2cd
-
SHA256
b662b0bf685f8d0a40d3dbba2d2115d89f23470220768935a55eac75a63a9abd
-
SHA512
8a4c58c9c764b8e0a90a2a83e2dd0d91d1cfedd0aa4bfa4a5190ad28b8954a9581db0d1e8b5289968f201fbbac3f754256d83d850c64e69bfe4e0d87a6f49f46
-
SSDEEP
1536:QlDc9MZ7NglmFHxrqhIcLStIOxMWvrJn1JwBVbGpPBUn9uujTvZdIbdLK8LatX:Qd+U7ilm32zqrxMVb889uGTvZylatX
Score1/10 -
-
-
Target
morenlight.skin
-
Size
134KB
-
MD5
29be0e83b93259dfbb476f94e3e1d8f0
-
SHA1
ba3640dbcd8348d232550bae84c2c5e580fb66ed
-
SHA256
a4e5f57c67d2837348b999eda33681e28c5967104e6d76d3b4551aab262dc384
-
SHA512
a3adaa26490db5c1e24aec52e7569f6df1c16d541a28b105dbc9fcd1685f6a27d6533a5e24630847ca224507863fdb233fedce1208b55f106d486900a3327d9d
-
SSDEEP
1536:y95E4bjbNDZ/fHJRQmT520kfPHxtkpMgJKPp7n7Z4eIW7JwBVbGpPBUnHjxle7t:yHE43ZVHHJRQMWf6NQpsVb88Hje7t
Score1/10 -