Overview

overview

7

Static

static

6

b4ee1888bc...18.apk

android-9-x86

7

Analysis

  • max time kernel
    123s
  • max time network
    128s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    30-11-2024 05:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b4ee1888bc789d82e59051426b79767e_JaffaCakes118.apk

  • Size

    1.2MB

  • MD5

    b4ee1888bc789d82e59051426b79767e

  • SHA1

    d86509d63a91f5064d2453aad737319c3b3010d3

  • SHA256

    e5bbb0155b64a9b97c580165e5e39cc0f4cc06f513e7940eb2bce83d0b542513

  • SHA512

    c0d5bad522aed671f864d2c747c09ebb7c7d278ec9852aee081a7e97c63bc38e34a4a57cd4139511bb6fb11a2ab3b2ee585d5af4cb8d150c612c43573da1a693

  • SSDEEP

    24576:rBtIQGHWxvaP6LOSrw7VOHOZDP4kq33/zE8Voo846CDDbYSVp+8XJOaJ16KTKJDo:fZGHWvaP6LTrw7VO4D7IE8Voo846Cr17

Score
7/10
bankerdiscoverypersistence

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence

Processes

  • com.mobile.indiapp
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4250

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.mobile.indiapp/databases/downloader-journal
    Filesize

    512B

    MD5

    f6d1ddf41267160f952b7b52a2afaa4c

    SHA1

    88219e838b15efb0cc4ae38be1221b0b5c503ce6

    SHA256

    0cb21ed5966a2eabf2bc4f51bc2155d5353d2866bafb5042f22ef96aa5a46a66

    SHA512

    d48568639f67b3df6a4160a3a1d1b9c15e5c67f12d001b36e169f30bd912a55743331d36fc5fc768b33e35dd322d356add362111217d0e13241b281869250f76

    Download Submit

  • /data/data/com.mobile.indiapp/databases/downloader-wal
    Filesize

    36KB

    MD5

    d9e2145dc8e1a4f589c6d6abb3aeb0db

    SHA1

    ba69a657ce405cbba77ee85a476e19cac42b9713

    SHA256

    01df9612b65ca945438e2af70a390bc1abfcc06348cc1a5f93e2e718a3f22ac4

    SHA512

    e6205be48aac030513fe1be4ba2a3606cd993bb454e8cc8932616d7523eb618f220c2ae8047996618f0fdaaa5c81d364ceb3769a0d29d7433217eebf367ac8d5

    Download Submit

  • /data/data/com.mobile.indiapp/databases/gpoffer-journal
    Filesize

    512B

    MD5

    23032a89e9fbab61e0e58e3ab20514df

    SHA1

    2456757559e17a94598b1eee7207327c01c451b0

    SHA256

    7d5351cb5f20471ca9438052eb846e2eed1cbb5476007988513af65a474ef838

    SHA512

    3a5c3457ddcd0a5b659543c336ef50ec2eebce3c1e0fe7ee5371fc0c2f021cd6b279b7d476cdb9b095aced170584bb83ba179f1737eb3f5a1ec473a0bd315691

    Download Submit

  • /data/data/com.mobile.indiapp/databases/gpoffer-wal
    Filesize

    32KB

    MD5

    1d81cec54532998f7a0bc04fcae02c67

    SHA1

    60af53e566f223256ebeeb75cb0f46c25c83db45

    SHA256

    deec314cdf8d71c89478521d91fe1f6b12023b5a59b035feccf06492c7f479fd

    SHA512

    3bd82615aef786a7dbe9bae1eb80a2da2d122388a1fb9641130ed191cc84ea66d5690ee18ed03bb36ec2edb5dfa41e09507fe182b0d292a5195a77783eec1b2d

    Download Submit

  • /data/data/com.mobile.indiapp/databases/pushmessage-journal
    Filesize

    512B

    MD5

    fe3a416ac4ebeeae0641bf8eda30069b

    SHA1

    e9972e54fe0b14a6968e3e65f27f42ddaa87c03d

    SHA256

    a4dab90e18ac7f291937b3e1f6e8929aad43caf4f640825564b07774f68e26f2

    SHA512

    0aec783457d07dea7bde2d6390fac369939aa59f5954fb8e24b1de20229ab51deeb75f69d2fac64c036c194e0a47b947a847248f9eea776d88c33db6fc65043f

    Download Submit

  • /data/data/com.mobile.indiapp/databases/pushmessage-wal
    Filesize

    28KB

    MD5

    65c2023e0864b849bd3b0e3479548cff

    SHA1

    51f196452299646d45c0bfac1bf523d3cd547680

    SHA256

    c20f14e6ed6a3caa73922498eb30ccddadfabb638ea8b3c7bd512ca9e9daaa09

    SHA512

    709d9bc6645cb74e9a000a6e845ffb7e856d169e6c3e40c05dd7a1cd46fbd6448a67612974068b43eae7ab5370e07361bfc5c9ffcafbe65e3ce1a530132c3a64

    Download Submit

  • /data/data/com.mobile.indiapp/databases/userinfo
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.mobile.indiapp/databases/userinfo-journal
    Filesize

    512B

    MD5

    9aa6abdaf406738fc6793768e176b3a1

    SHA1

    848ac1422317bc297af054bec6a6bbb2ecd283f0

    SHA256

    18eb4b1b42e3137bd08c1f6abe4437c5ddceb605e9eb6c86e244fe38f1853534

    SHA512

    1f2115424716090f46789a7bdeb6f22cb20b747da711bc0760da6a53c20f9885104d72a6ce1337a4cfa278f42363a02de61922f68d52142f167d1eca28d65bc2

    Download Submit

  • /data/data/com.mobile.indiapp/databases/userinfo-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit

  • /data/data/com.mobile.indiapp/databases/userinfo-wal
    Filesize

    28KB

    MD5

    fc8dd5c64ced1102fedc768428b61237

    SHA1

    d73f95edd100935549d41fdd2093ae6f96b108f0

    SHA256

    a6f3e900ce0efd513f60ef16b0d7895da60e1b4318f3c3c20ec748a0cfddc770

    SHA512

    19c52367f5d003c8162188b46d30b25e0c28e5925a78fb5f93c2dc65886dc78a5b87bcd0b520e47d931f4937b951fc75b2570db5a2d94d63ccccaf88fd7594ea

    Download Submit

  • /data/data/com.mobile.indiapp/files/.cm_stat5
    Filesize

    163B

    MD5

    5be3bb3c376e465c814ce9a1a67284b4

    SHA1

    234dfdc6cc6c29eea11e6cef5489e253c9f2cf22

    SHA256

    a1ac2b04b7a6f9ed5289e75f3ad4d9290e8cc90ccab16031d3c43b936a42712d

    SHA512

    8c7e133e8c3c6f8fb690ab015abc0e6d91260077c6b7a14c59d462132c0f6ebf63613f1db8668847a4123d3ddf954dc97165add1e39a1bc059edc51519efd1f2

    Download Submit

  • /storage/emulated/0/Android/data/com.mobile.indiapp/cache/image/journal.tmp
    Filesize

    31B

    MD5

    8c92de9ce46d41a22f3b20f77404cc1d

    SHA1

    8671a6dca00edb72be47363a7071be65cf270373

    SHA256

    68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

    SHA512

    30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

    Download Submit