General

  • Target

    8afdff1d1f49d3c929c9740e66c44cdc_JaffaCakes118

  • Size

    9.2MB

  • Sample

    241103-mgjthsvkcq

  • MD5

    8afdff1d1f49d3c929c9740e66c44cdc

  • SHA1

    f4dd3be9403a26836b99de7a490d8c6045a6582c

  • SHA256

    5e9e1eb8411bdc4eed201f63cb6ae289fd4bdec927ee7b176ab9a702e09b9652

  • SHA512

    832845af11c340147c7501f8c18535a6ecbbe28a24e9478ecc84ba9329fe94e3cdf18c16d8524aeb4d689ee274130cc5434a2117d9d35101e5749a2a4c337fe1

  • SSDEEP

    196608:eriuY407WNniOAFPjvkcQ0PT0b1zH+tNG3iAhnb:eKFK12vkj0izkEyAhnb

Malware Config

Targets

    • Target

      8afdff1d1f49d3c929c9740e66c44cdc_JaffaCakes118

    • Size

      9.2MB

    • MD5

      8afdff1d1f49d3c929c9740e66c44cdc

    • SHA1

      f4dd3be9403a26836b99de7a490d8c6045a6582c

    • SHA256

      5e9e1eb8411bdc4eed201f63cb6ae289fd4bdec927ee7b176ab9a702e09b9652

    • SHA512

      832845af11c340147c7501f8c18535a6ecbbe28a24e9478ecc84ba9329fe94e3cdf18c16d8524aeb4d689ee274130cc5434a2117d9d35101e5749a2a4c337fe1

    • SSDEEP

      196608:eriuY407WNniOAFPjvkcQ0PT0b1zH+tNG3iAhnb:eKFK12vkj0izkEyAhnb

    Score
    1/10
    • Target

      antivirus.jar

    • Size

      292KB

    • MD5

      d9dc99934c3f5f5b7a14f6eed634ab3a

    • SHA1

      83815a86ee260c54b2cab4234edee6cc957c6038

    • SHA256

      5432b0683dc6fbd3fce809e6e71d93189d0f557aa4abe599e53b7549bec3951a

    • SHA512

      e22266e1c69c78a9736f619a083fefa037c9625082f80af56bd059538ae381145877de918866031a40cc8081253fd02368854cb74c641ad63e81b69d875e230b

    • SSDEEP

      6144:y6UsiOrgTLkXVOt+Cur3jox7wF1ThJwXjEvOq:PUJ4gTL+VwnSzvZhaE2q

    Score
    1/10
    • Target

      apull.jar

    • Size

      411KB

    • MD5

      ea25a05f5acea32b6c5d671111805df7

    • SHA1

      125a8fdb3af5d1451f88a15fb973d1c5661c2f78

    • SHA256

      85f3b8531bebe4faf88c8223e6f8923b9cef6ae4eed6791a3b59b782a013a462

    • SHA512

      499a9b25a74d3b6e2f48a252fb0269c2f43b015dd0901a7ca0b3826df5c92a98c3699dadb96281508f13b5682c7cd987afa7eee3fbe178bab5598795c3cc62fc

    • SSDEEP

      6144:7C7604JRRdd+oYjnbBqmvPN5yea9pXGOpfsXvArDHi/NMZr0A0f8M0uQex:7I65vRdwoYxq+X9a9pQXMDi/SZv0fbQA

    Score
    6/10
    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Target

      av_rt.jar

    • Size

      11KB

    • MD5

      a08d16ca200e664b96c15d576f665f4b

    • SHA1

      aeb28ab363f21e9dff757302c256a4c79acb4e18

    • SHA256

      b12dd7ff734e9bf3376f2f386b8933d5568f2c865d95882e905041d811e6fa88

    • SHA512

      51c8e7154fca45fc1e82f9e937ef02b7abfad0dc612752ac90b22219a98a10d7df31cd452408e25a401eeeb7c0a46c880b253a73cb8a28cb1fd4b2a7abdef5f2

    • SSDEEP

      192:uViIkX34YT5QNwVPZjRmA8P+Hu2ce73iPmUcudR8iSs6qsGqKckwehoSZnd2X86:uIpFPVxjRMPUu2cEcEGatkwehoqdl6

    Score
    1/10
    • Target

      beaconx.jar

    • Size

      80KB

    • MD5

      95d6822c355df59df359d08912f89219

    • SHA1

      bc542dba3f40bea1d0ffa9c675809c90879f8118

    • SHA256

      cca893f32763ee2f6d4388c503627611b3075ba165ad04ce2c16d5b2990f7fe1

    • SHA512

      706569c5739fa08b0045a1f2e87dfd98b3921fffc68c972fb0f42ca864bb6f0ed29b59905460f7e316994dcd62b1b99edfe01dd0172e0ec0fd99ccd07c2de42f

    • SSDEEP

      1536:HQlqgPthBiawBbwCEh/erlk7NkuES1ReJdi+o/Pw8sV7ILPOTIOK:HQlqCBiJwCEhb70S1RKhoXIoOTFK

    Score
    1/10
    • Target

      blockui.jar

    • Size

      370KB

    • MD5

      cc8937abf9d974a1487d415aef9c7e8d

    • SHA1

      fec8c68a87cde8c717dba928525437d4f85e4219

    • SHA256

      9a7c64d3aa94c4931ba6fe339233af84407ab30ba69f9439436bae769285fe60

    • SHA512

      25a59e378363bb4b008a9c0331ce43f2854c7b11bbeb968f4e0d5328a067ceee56190e6477662eb54ec18785b749830d7bfa327baaf3f67032c25dbaf2a27ded

    • SSDEEP

      6144:qQacedO8X1mjNb1fPpTkZvl2Yb0xUo4hPqaHAdQyImaY:q41igPhkZN2YbUUJhDAdQyR

    Score
    4/10
    • Target

      callshowmgr.jar

    • Size

      243KB

    • MD5

      9f1de661467d69b05d6c12a990d8ad0d

    • SHA1

      61a2fddfff55aa0d1f599c446caa48f90e9af4af

    • SHA256

      88115cda1e80e474f99ba724a14095fcc2e716709c68e290b25cba8169635a57

    • SHA512

      ddff9d6603d368936211eca11c50df95bcc5f0b243396c433e34c742a4e975270b0c0def2029f71abcf49a06841b42d2502cf193c263eee2688babdcddbed9ec

    • SSDEEP

      6144:QHipU7lkLPaN7J7WKp2E+aIgNIMZzrouG:322LPiDPIkFra

    Score
    1/10
    • Target

      clean.jar

    • Size

      712KB

    • MD5

      ab0e013f88b02d11ee004ab3627bfab5

    • SHA1

      d22fdcabaf36777bbe78deb8743287e167dbc086

    • SHA256

      81b24ffb87b60522ed2c023892a4badb2ef2b21dae6a726a3fc69f2298a9c5b5

    • SHA512

      62752b9cf9c72004780b626aa1c855965348cb146d18c407b9104725f31fb08fc77c889c78d7a52fef606134c2a99590a3a39acb967c669e8bb4cbf4143da6c3

    • SSDEEP

      12288:rUuCFmmsjlFeRrJAQUhTC0WxmvES6y8zv7QCWkNELm4QGPye7RJk:ouCU4rJXUM0WxqhS7QTkimpmI

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries account information for other applications stored on the device

      Application may abuse the framework's APIs to collect account information stored on the device.

    • Target

      nt.jar

    • Size

      344KB

    • MD5

      5c9c007ee111950c84e460847643eef3

    • SHA1

      daf12fec0e8aa3ed0c32d7f38bc04d3ae862e33a

    • SHA256

      8b9fa3494c8abc63a115407a218e5d6cfaeecca8cbece8388f0dc8857265dcd1

    • SHA512

      c350996234074ffee29eb0a6afb6d750f7662b0266c3fe2e38eb867495af16f967f256a88fa637b5a436b549c92c06c2621cfdc8d9f179af085737c934291369

    • SSDEEP

      6144:80T4pvT4BBvSkFQvqhI1RP6JAY1jwTo4NZ2HWx4:8z7AqAi1RP6JD1MTox24

    Score
    1/10
    • Target

      ntsvc.jar

    • Size

      138KB

    • MD5

      29f433169750ea225b8e07287b5152d5

    • SHA1

      7bb0a3e040a37703e88d331bf84a3bbae03c8854

    • SHA256

      b6db63f11597dd29690ad08c9fa6c9f06c0a8382253fae6fce52808ab38b8713

    • SHA512

      6370262120af048d5d61027d7db711f1d2903e50a25b861dc1f4de3750e8688e3c50013c341c1d5d28c0655d4f6f40e06083e21b8d80e1a44b68ecf3102cae76

    • SSDEEP

      3072:k1sz1ym5bsSayUFlyxS+AYDjEa1fw8m9Z7A:k1sz1T5w/FliDZw8QFA

    Score
    1/10
    • Target

      paysafe.jar

    • Size

      335KB

    • MD5

      a7f10f6c8c67fe00859da9efbf59d923

    • SHA1

      d64b026ce41dfd514491adeaa4651272314e2830

    • SHA256

      3013e90e43fe95b591ff8d69fb4aa42215e63b376f2a700227a9aa99bbc08ab9

    • SHA512

      741145262ce9c649054a9160ce7c180836de64e8a131fa1749c338ba15f63d9c526517dce4cf8853fc702bcc008bdaaabeb2b44a9e5eec2092aeb17647bb21ef

    • SSDEEP

      6144:U0ATuwinY8/mU4C3cbxqNkgdrjBu4Q9pxtp8DCq6XWpnrZZUdu:9AiwPU4C3nLdrjeKT+WpVZUg

    Score
    1/10
    • Target

      paysafesvc.jar

    • Size

      75KB

    • MD5

      9bd6f28c1191671049f39acb3411b9ca

    • SHA1

      b99c43801a3db59c06acf711dbda5d890cd8bf24

    • SHA256

      202c008eeeea6575a382cd2010178dc47b53bc189ca0250d20001a8a07aac956

    • SHA512

      10779fdc48bbd5f477f7a01abaf173adf6efbc7ab46402198bf4e9a4b32394e98d09d9893c53f196f98c5dcbef7fe70f6b6cbe6ac4ff54ee398b53896f0201ce

    • SSDEEP

      1536:a/QtrSI2thJIf2G5yKq3X12xpmVkwtmprTINqzhnSq0YzE:+S/Wha+G5yKqV2x0VxtiTIESYzE

    Score
    1/10

MITRE ATT&CK Mobile v15

Tasks

static1

Score
6/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

discovery
Score
6/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

persistence
Score
4/10

behavioral15

persistence
Score
4/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

collectionevasionimpactpersistence
Score
7/10

behavioral21

bankercollectiondiscoveryevasionimpactpersistence
Score
7/10

behavioral22

bankercollectiondiscoveryevasionimpact
Score
7/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10