Overview

overview

7

Static

static

6

9f095c697c...18.apk

android-9-x86

7

360sdk_1_2008.apk

android-9-x86

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9f095c697c987e4a003f1ab2b4f4736c_JaffaCakes118

  • Size

    21.5MB

  • Sample

    241126-btf3lstkhq

  • MD5

    9f095c697c987e4a003f1ab2b4f4736c

  • SHA1

    c29d4f764b2e14e4615845340b35bff0522ed373

  • SHA256

    7b771359544178585ed382274e765851f728c201afcd51d271c1f4ac899d3504

  • SHA512

    1f42d4e89e7f5054e39f8080999de0bffdc9096b961ef6fe67879fb640b111e701ba60841ba7442858afee6af0dfd35269cb1964cc0e83c54ef726e533dc1f3d

  • SSDEEP

    393216:JrhXBcS5zlY5mKIF8giKpRaycYgEPJrN56XJSxOCHkGH5HR9zfMs:JrrY5khiecdEPH56XL49zp

Score
7/10
androidbankercollectiondiscoveryevasionexecutionimpactpersistence

Malware Config

Targets

    • Target

      9f095c697c987e4a003f1ab2b4f4736c_JaffaCakes118

    • Size

      21.5MB

    • MD5

      9f095c697c987e4a003f1ab2b4f4736c

    • SHA1

      c29d4f764b2e14e4615845340b35bff0522ed373

    • SHA256

      7b771359544178585ed382274e765851f728c201afcd51d271c1f4ac899d3504

    • SHA512

      1f42d4e89e7f5054e39f8080999de0bffdc9096b961ef6fe67879fb640b111e701ba60841ba7442858afee6af0dfd35269cb1964cc0e83c54ef726e533dc1f3d

    • SSDEEP

      393216:JrhXBcS5zlY5mKIF8giKpRaycYgEPJrN56XJSxOCHkGH5HR9zfMs:JrrY5khiecdEPH56XL49zp

    Score
    7/10
    bankercollectiondiscoveryevasionexecutionimpactpersistence

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      bankerdiscovery

    • Queries account information for other applications stored on the device

      Application may abuse the framework's APIs to collect account information stored on the device.

      collection

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

      discovery

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Queries information about active data network

      discovery

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery

    • Reads information about phone network operator.

      discovery
    behavioral1

    • Target

      360sdk_1_2008.zip

    • Size

      5.3MB

    • MD5

      3d9752761aadec2bf6c196df4cb5c4c0

    • SHA1

      c44c2ce8a61db7136d73e848ebd8115f36be4263

    • SHA256

      e2478863317f7368ef43665a9053bac6d8065ffa8374792a7dbdb3f5a8682d7b

    • SHA512

      12cd0560c0527f11370f8a21e80b2c8c2087f0d6b460360d44226d18e5dac976d265f8aefbcb2069532165b11b2a496948c3656884efa8889c090c5bed04a10d

    • SSDEEP

      98304:8PcUP/vgXq2Xi2fnVjEpRBrVMqz/ggLnqdKXNlB0YBySwKRDMdSuf6+mTbjZ71qQ:/UP/vgXG2fGboegKdlqqTwKRpJMh6Esl

    Score
    1/10
    behavioral2

MITRE ATT&CK Mobile v15

Tasks