3b8a7fcd8c68111efa1df0cf350fba4e0a21f4cc2fbde52e30e6b12951b8f81f

Analysis

max time kernel
2s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
29-11-2024 16:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b25e3bd5b92ad8fcbeebb20ff1232789_JaffaCakes118.apk
Size

2.4MB
MD5

b25e3bd5b92ad8fcbeebb20ff1232789
SHA1

50661ef2289a1d66aa5d81b37b6620d9a0f920cb
SHA256

3b8a7fcd8c68111efa1df0cf350fba4e0a21f4cc2fbde52e30e6b12951b8f81f
SHA512

74d717481c6869bcd0e89fdda8ea421fdddd112a266807611f0944102853fab8159df0e825e817394a8f870e765e3621e5fa0b645a646c4bcb3e5bfd95476960
SSDEEP

49152:HLVdU3gkHS90XgdXEo0wmF61T5W0aElw7BV50KQ3CoyagrFs/i:HLigkHdQdN09o/1lwD50Qo4Ci

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4250

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/core.db

Filesize
26KB

MD5
9c45b23a93be7dc2e2179931cf8ff5cc

SHA1
5ba1f16802c041e85faa0196e30b70a5da7c9616

SHA256
bfbe842056582a3d3f8c3cc3bbcb0f9f91554be050a02084e58c721b25206d9c

SHA512
ebc900671b13983d33e258c6306d3413e1880d1aebb595885ac2872a5ea39e64c960bf41760ac3d18c228ee281612385d5fbd3191dc4d97f0510eb90f2d6a6ac

Download Submit