General

  • Target

    8c205930e8aa6fa6118d37b7e587de48_JaffaCakes118

  • Size

    2.5MB

  • Sample

    241103-sm8byswpaz

  • MD5

    8c205930e8aa6fa6118d37b7e587de48

  • SHA1

    1454cf62df9f0a9e7aec6365eb0f627b4b6be3c6

  • SHA256

    c995da74422f4095f387a46d81daef0c85617bbc1367e5520d309de4dd4ce065

  • SHA512

    c43a53ed106baae3d4526262cdda0b312a59a95694df4b7d1d30b5aeae9fefcd135fe4e6dc8ab2f0f2429752181f29585066e572cfda109d54ab7353b1c8ec13

  • SSDEEP

    49152:o0jMzywGeJdRb02EMCWF2TlaozKR6TPcOZAyOMtqXPY0EyNwpprFL9s:pjMpHzbXEMCDT3uSpZPkXAcqs

Malware Config

Targets

    • Target

      8c205930e8aa6fa6118d37b7e587de48_JaffaCakes118

    • Size

      2.5MB

    • MD5

      8c205930e8aa6fa6118d37b7e587de48

    • SHA1

      1454cf62df9f0a9e7aec6365eb0f627b4b6be3c6

    • SHA256

      c995da74422f4095f387a46d81daef0c85617bbc1367e5520d309de4dd4ce065

    • SHA512

      c43a53ed106baae3d4526262cdda0b312a59a95694df4b7d1d30b5aeae9fefcd135fe4e6dc8ab2f0f2429752181f29585066e572cfda109d54ab7353b1c8ec13

    • SSDEEP

      49152:o0jMzywGeJdRb02EMCWF2TlaozKR6TPcOZAyOMtqXPY0EyNwpprFL9s:pjMpHzbXEMCDT3uSpZPkXAcqs

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Requests cell location

      Uses Android APIs to to get current cell information.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks