Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

259a461cf8...4c.apk

android-9-x86

7

Analysis

  • max time kernel
    3162349s
  • max time network
    12s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    27/11/2022, 09:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    259a461cf80e78b3a6831debfc42e4ce96756c85cfae75c2a9461ed74ec1014c.apk

  • Size

    2.3MB

  • MD5

    f68ab408637c4f6d09ed84008d8d6255

  • SHA1

    3fe0c52177d08e4fe686f826b7c0f70882f33bf4

  • SHA256

    259a461cf80e78b3a6831debfc42e4ce96756c85cfae75c2a9461ed74ec1014c

  • SHA512

    15fcc01acc7c99ed48722dfb6811d8de91a9aae38ce1f128ca31165919cf9374a9df7187f35692211dd3ca744bcdeefcd116383c3b54a6b86e0e1c3f8b1b0097

  • SSDEEP

    49152:/EJAWVEcY9BAbYKm41w0AX8KRC/oPliyp70wk5UhmLJ+et:sKuYbMzm4ORC/oPliyl0wk2hUJ+et

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 4 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • gd.wnpopfioavffo.cyee.g87454163a8b.q8b456
    1⤵
    • Loads dropped Dex/Jar
    PID:4063
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/files/4851eb7608f6314e19c3ee0f7575697c.apk --output-vdex-fd=44 --oat-fd=45 --oat-location=/data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/files/oat/x86/4851eb7608f6314e19c3ee0f7575697c.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4133
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/realshell/b928dbd1c204948389fa73b1b132bd8b.apk --output-vdex-fd=45 --oat-fd=46 --oat-location=/data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/realshell/oat/x86/b928dbd1c204948389fa73b1b132bd8b.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4181

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/files/4851eb7608f6314e19c3ee0f7575697c.apk
    Filesize

    103KB

    MD5

    c83a590601e4f27e0b9dfb74f2ff00a2

    SHA1

    51e7c5c9e69855c4345eb1175cd5df5b2982a995

    SHA256

    75fbbe0e842004c494ed90f99ac981ae290c70dc5d26d97a2dfa41456f88e353

    SHA512

    9387694e1600e7ac8c662975900e8d949c19d44c3b2c927c1e4b56b3103409f857aacb7b27f3ebcc45a79ce4580825b7f72008f070370e0064ec7eb744215232

    Download Submit

  • /data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/files/4851eb7608f6314e19c3ee0f7575697c.apk
    Filesize

    288KB

    MD5

    1db84f6f8c2d096da5a83c137e79511e

    SHA1

    2814b8e5f8a7a6c06e4662fb91d8ac1b1d6b9195

    SHA256

    d3f1b3585e9430557381f09b242b4630a1af78d9bba09e210e7ba08814dd64f6

    SHA512

    d4e044e779bb3187ab9cbb06abd6abcdff840e04a7184d0e2516f18e54f327abdb2d69fced3b5735f18f936bbced6ab4ef445c1601c1e727a97809169d09f161

    Download Submit

  • /data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/files/4851eb7608f6314e19c3ee0f7575697c.apk
    Filesize

    288KB

    MD5

    0e2a853b212e3ef9db48ef47ab08c038

    SHA1

    43b06143242dfd3b7cb1c0fb94606474ec5b64b9

    SHA256

    daba9efb2bd7e79d9f30be5793918e98219bb7665282096a20d1f0f162d5c591

    SHA512

    38a4176060533d02d4a7686d9e166376f8b90db1ccbaf4ee4f37735b0edc0c3e787faee65dcab45d6045c889aae5586f9cc46482ab9666d5a4dd8b9e53a9cbff

    Download Submit

  • /data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/realshell/b928dbd1c204948389fa73b1b132bd8b.apk
    Filesize

    1.2MB

    MD5

    5295e92a0860cfe1f5cddbc1decd9971

    SHA1

    b1f0fd097fe451213520ed6140d320453ad95310

    SHA256

    6fddf9a8bb5fc051e33c3aea7171c2c98b8fa09d2d6cce70668de3968ebb043e

    SHA512

    39bc8e391094698d9dfa815f53ffccdb82123603cfc7c207ecad2e3f666c367c3aa75c0be9ff3b33f03d923901214cc2edeb6917381c0f5c6722317a3ea02f34

    Download Submit

  • /data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/realshell/b928dbd1c204948389fa73b1b132bd8b.apk
    Filesize

    1.1MB

    MD5

    c8942b85ffa4a9966485e446c4457f3a

    SHA1

    b38aafaa386ca4f4d25dbc9241f1a6f73e5173f5

    SHA256

    28d8a6d03d15b83846472b5612bba1fc5e25719603f57224963e2c46bc2b773b

    SHA512

    aff62c1532006b7f3319fe263dbbd52255e02ae1f367e3993e5bda4a509e676126c1e2f848c3fe1494ad70d535d73aac4eb42cd7c4ee497e747fdc70ff53d53a

    Download Submit

  • /data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/realshell/b928dbd1c204948389fa73b1b132bd8b.apk
    Filesize

    1.1MB

    MD5

    7e6756d93146e5d9dfcdcd7e4dd9d003

    SHA1

    86813f35eee20152d063b2d519fbe257f9a0edaf

    SHA256

    91a0325fb73be0489804b942adf411e04f235adb24f50c41d0989c371027a866

    SHA512

    04b907f2cf7c6636c007da368bb325b3a105773d35e82b4ebd0f11ed9c7a36427c7365a3d8680e5c59fe905e8d860e54f356c071aac9cabf20fdfa87de11a4f3

    Download Submit

  • /data/user/0/gd.wnpopfioavffo.cyee.g87454163a8b.q8b456/shared_prefs/APP_START_TIMER_INFO.xml
    Filesize

    117B

    MD5

    314b6e5c7b34ca67c17513c6777637fc

    SHA1

    8ea9015be8a3479400ffe9202aebd1a4806533fc

    SHA256

    6edd66a10410411a82858c03fe866cd6cc91170670bc83ccdd6299f0c72df24c

    SHA512

    3d46ab7b6d3b00cf580e5094bfa439012fa85689978db6121b98bd58cc431ea9e24610c18d0065fcec02c49e1ca4f6c710a0eae6d70656bf1aa6e5bf4bf97e9c

    Download Submit