Overview

overview

7

Static

static

6

9edd6bdf56...18.apk

android-9-x86

7

alipay_msp...61.apk

android-9-x86

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9edd6bdf56eaf03d6f6c4b39aad63c34_JaffaCakes118

  • Size

    10.8MB

  • Sample

    241126-a3wzra1rdq

  • MD5

    9edd6bdf56eaf03d6f6c4b39aad63c34

  • SHA1

    d6cc9607ca63f9502569c1029719adde91762038

  • SHA256

    7439a3f4cfb68ea281b8079cd132187b5432d8632022c062b402f548811747f0

  • SHA512

    583e17e403cca1c3f72eaa9b834089a192e52b9daaeb8a9bfb6e96bcdea815e459fcc0511a701946e26722a985da907a81a47b7ffe2f77da26241773e354b9fe

  • SSDEEP

    196608:suG3FGhNObo/2GTHlcQ3iXCXLZRc7g+AgEJd6qggY73vUaKRp5hOFv:s50qi2qHPSylRavArH6qIcDp5UFv

Score
7/10
androidbankercollectiondiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      9edd6bdf56eaf03d6f6c4b39aad63c34_JaffaCakes118

    • Size

      10.8MB

    • MD5

      9edd6bdf56eaf03d6f6c4b39aad63c34

    • SHA1

      d6cc9607ca63f9502569c1029719adde91762038

    • SHA256

      7439a3f4cfb68ea281b8079cd132187b5432d8632022c062b402f548811747f0

    • SHA512

      583e17e403cca1c3f72eaa9b834089a192e52b9daaeb8a9bfb6e96bcdea815e459fcc0511a701946e26722a985da907a81a47b7ffe2f77da26241773e354b9fe

    • SSDEEP

      196608:suG3FGhNObo/2GTHlcQ3iXCXLZRc7g+AgEJd6qggY73vUaKRp5hOFv:s50qi2qHPSylRavArH6qIcDp5UFv

    Score
    7/10
    bankercollectiondiscoveryevasionimpactpersistence

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      bankerdiscovery

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

      discovery

    • Queries the phone number (MSISDN for GSM devices)

      discovery

    • Requests cell location

      Uses Android APIs to to get current cell location.

      collectiondiscoveryevasion

    • Queries information about active data network

      discovery

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery
    behavioral1

    • Target

      alipay_msp-3.5.2-1000261.apk

    • Size

      332KB

    • MD5

      17c548f15a7c90375b94bc3a56025a1a

    • SHA1

      46b2d0dbde500c2417b6438e8ecb2dc32dffd37b

    • SHA256

      14c5526a13cefa6d82095df76cd4f0445962911b607cbdb72a9c3ad0117b6868

    • SHA512

      5ae294dd9426d421426ab7cebbed04b5ad327dcb801044528ae8eaded04a70fe2372b26dbf63aa8c5d687b09cede52207e1d608f115beeac10b9f11e0793dfc8

    • SSDEEP

      6144:cBMjVfYqEF229WaIDNFM9wzfkRdGSrfPVX12GHBNd02vpbQTN1xUS52fnzmgvV:csVfOF229WjjfkbGUHdT10I6N1eS52f1

    Score
    1/10
    behavioral2

MITRE ATT&CK Mobile v15

Tasks