Analysis
-
max time kernel
148s -
max time network
157s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
03/11/2024, 17:52
Static task
static1
Behavioral task
behavioral1
Sample
8cbf9a36ba3cbc339c06910b44339332_JaffaCakes118.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
8cbf9a36ba3cbc339c06910b44339332_JaffaCakes118.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
8cbf9a36ba3cbc339c06910b44339332_JaffaCakes118.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
8cbf9a36ba3cbc339c06910b44339332_JaffaCakes118.apk
-
Size
581KB
-
MD5
8cbf9a36ba3cbc339c06910b44339332
-
SHA1
914bbb9396159bd84fd5c27f6ab1079e4aaf936e
-
SHA256
685c644d3fa129feebd157bc30649984058fb0957e1a8dedd4a2e4d0cb11fbdc
-
SHA512
63d0e80bc27bdfe43f63af120274d77268d24fd4455c2fac0ab29be7bfbc212310edc888b827ee63faeaf4f675837a33d7465edfd068ec2596280a2fa216d0f8
-
SSDEEP
6144:cWNRnC2fwNzyHaNqDXB8BfQf2T8RM7Sy5n/Ve4dy6XJ0A/kZU3yN+56m4gmh7EWn:TnC2oNz/qDXCI2MM75tZXSU36m4Ylz8
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener ua.org.vvs.cat.thinking -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo ua.org.vvs.cat.thinking -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo ua.org.vvs.cat.thinking -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone ua.org.vvs.cat.thinking -
Reads information about phone network operator. 1 TTPs
-
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo ua.org.vvs.cat.thinking -
Checks memory information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/meminfo ua.org.vvs.cat.thinking
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
36B
MD577de666b977a89ef1ba8f0fe04046a41
SHA17806ddf3bd6fbeafafc3af5041310908110e8eff
SHA256cb2df97d677e79251b984fc0a81fc55649c24380c97ef4f31720fd9c0405dfa7
SHA512d6195586de8bc1d0a2b53dea83b9c25f70fc5ff4b8ca27b237983538c6ea1abc5c1d33ae3cfa41ac7b0373467264aabe835a582abdc6f0310b27e46a1560d45d