Analysis

  • max time kernel
    149s
  • max time network
    134s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    03/11/2024, 21:11

General

  • Target

    8d8690ae003b6a0246da7ccd19bc27be_JaffaCakes118.apk

  • Size

    616KB

  • MD5

    8d8690ae003b6a0246da7ccd19bc27be

  • SHA1

    a57f05e71adca743a747c24c2750b43a78b34016

  • SHA256

    ecb81af73fb4ed31194847f301d0174581884355bd679719150df9c62c59f1bb

  • SHA512

    f49165797b8b8f312f2e097589cfff22f9d0661c1b1cc31c9406af19f6c8186bb8cb7f2ad8402f69ffea7ee8e27ba6e2be95528a9b54ef316d9626f84322c032

  • SSDEEP

    12288:SoU+OlP+NuDdolDR7EApMxJR/eyIVW/aF0DFTIKn1MQWnA+Rhffmdart:SoU+OEQil971pMTR/XIVWxFTJ+RE0

Malware Config

Signatures

Processes

  • bright.view.land
    1⤵
    • Removes its main activity from the application launcher
    • Loads dropped Dex/Jar
    • Obtains sensitive information copied to the device clipboard
    • Uses Crypto APIs (Might try to encrypt user data)
    • Checks memory information
    PID:4473

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/bright.view.land/100classes.dex

    Filesize

    97KB

    MD5

    abdef17ba4f14424b320d595b75dd5d0

    SHA1

    d9d857ff7d8d27b46ef15c36f1ddc446de6a65e5

    SHA256

    b1e8ba53201c08f510930bf2dd7bf9a1c5ce7c83220c31ab4249c37123551a55

    SHA512

    e048a6510d619bffb814cb1c6725b540fba2c9bb01e117c227e04b92d56c8f4711f82b6a63eb43796c4bea941ab2284f8eb7d48e394ed79e375dfe59188b7e25

  • /data/user/0/bright.view.land/app_ttmp/t.jar

    Filesize

    220KB

    MD5

    e3447d5435bc33cb03183a57f3474f1e

    SHA1

    13b41650892f79bff94f3edf8689c3218ba962d0

    SHA256

    8eabaa1e5b64a753f5aeeee5e02ce584ab8e65c5edfc5e3bdf38f25462024dc9

    SHA512

    e4e7906b57056c413942ea3f5fa91cf3bc5f508a2e9c8273524c0cf84d7189f26b770f0130f57218ecba8982ac337f46a6d11d10dd8f8dc4f5f0c0fa02447ab6

  • /data/user/0/bright.view.land/app_ttmp/t.jar

    Filesize

    469KB

    MD5

    4e1e6aa783bb8974b1436f0100156de6

    SHA1

    8d2d20dbf86960783c889dd9834e281bac850642

    SHA256

    58665fea32655b49869f9f7e6812f36906cd75dbe4af3f1d497e9bdeaf33fc53

    SHA512

    0a45ddb1269a3cd8a789ce3b9edef67e69c2968480938aac76e9e975c4cce049a42ebbcf0cf4058eef117e1041a1e7a8f15d504c5a9ca95b1b3d014ca91aadbf

  • /data/user/0/bright.view.land/databases/bright.view.landb

    Filesize

    72KB

    MD5

    6fd0ea849fafce4729d7179807c79c66

    SHA1

    412eca6adc8788dc5c3eebbe3788d22f19c662d8

    SHA256

    8e5cbc858ce6e79db4ca4c65fa4bb02f4a5246ded5b9a955193ac6fbb09f6c74

    SHA512

    05f453db5cb11ee15a8aae6dac1fb23470894a69912ccb85bc3d30a7ecc1a7564cad21009badb1dee7cc3d930f5d024c0abc9aa7d04fe8ab47d3efaf895b1387

  • /data/user/0/bright.view.land/databases/bright.view.landb-journal

    Filesize

    512B

    MD5

    2c71d18d364dd84618cac113565976bb

    SHA1

    131637da8954a23f50f7ba2ad5b650fca0fa4162

    SHA256

    e1efe540dab2e0101687fab9e39dbc0e4d2c801ac741772e62901cb1e7ed9dbd

    SHA512

    1270af66b57f1b95b5966375d73f070958ff00a9eaa469702948d25a139fb6bf6406df09254ba20b6b8017fa974413d5f02cdd2db159dec007135b4bacc2a1bd

  • /data/user/0/bright.view.land/databases/bright.view.landb-journal

    Filesize

    8KB

    MD5

    5f2ba6363dc3b912f9f6108bad5658bc

    SHA1

    a1ac80385e7f406c8dd03faadbe5f52d9f6cc100

    SHA256

    166d1beb44ea5b26ff33ec3e1651242b9da44ab4f33667cedd765a5a4c702289

    SHA512

    5753f6bbe6b6a7e2cd66b6506bd557d05f1f65025405f5b0da89e534a0e804bb324c8015ea7e3be503affe8fd43bf6443fd42474c20211077f790794f7d3ee89

  • /data/user/0/bright.view.land/databases/bright.view.landb-journal

    Filesize

    8KB

    MD5

    659c4fe8fa93a154f4db97631efc2f04

    SHA1

    7e4afe43e362f76e5d612e8b1bc8e0967f4ac9c2

    SHA256

    6be8a7a5c3d099740135f3234166bca8152e5aef9e5223c871d252655ab0c5ca

    SHA512

    c012a458d60b726b46abb9ccb86a9ba0cbd1de6d7f95ac2cea713c27546e6f34706f08546c32f0fc3ce7899c82b3699d1245a8a47a76d507b53ed429bd464287

  • /data/user/0/bright.view.land/databases/bright.view.landb-journal

    Filesize

    12KB

    MD5

    739995b15c03d4219951359d2a1512ff

    SHA1

    c550cd6e2955f8f32cf4ebcd3978c7752824675c

    SHA256

    bf10ebff8eb015a904f148abc6990276ac94e4906680c7df62fc485eeb16e922

    SHA512

    aaf3686efca49a7027604e9473f997845e1c4a874e97504636b30421fd685c2481f5895d9db92fa49448d405bc5c8024e05c32eeff5a5cdb9a1f25414c5c6bb0