Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

rms.apk

android-10-x64

7

rms.apk

android-11-x64

7

rms.apk

android-9-x86

7

Analysis

  • max time kernel
    2572136s
  • max time network
    69s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    19/04/2023, 11:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    rms.apk

  • Size

    4.2MB

  • MD5

    99747761c3d1ca513295b1bd76c9f142

  • SHA1

    c1d29249a2d0f2b1f41dc605f8964296b3701003

  • SHA256

    1a7affaef58d943d0e00a878870f12869961d62f33f4637ea7efe490aaff2057

  • SHA512

    4e2673aec7428fbe40edd0a44cf8cd02a67b496f9fbe00573c7987a85cff66a9af8111391676b0d58d9cd69b817952276d2337c61d4c0d58721e667643dc95a6

  • SSDEEP

    98304:lR5n0zt0iiTS78Yy3UUj8T4EwMFwA6CnP5SWtN3i0rXaIzN7A:lTct0KwYy3JEwOnP5SWKIzBA

Score
7/10
evasion

Malware Config

Signatures

  • Checks Android system properties for emulator presence. 1 IoCs
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Removes a system notification. 1 IoCs
    evasion

Processes

  • com.rms.transactions
    1⤵
    • Checks Android system properties for emulator presence.
    • Loads dropped Dex/Jar
    • Removes a system notification.
    PID:4123
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.rms.transactions/cache/1664557424545.jar --output-vdex-fd=141 --oat-fd=142 --oat-location=/data/user/0/com.rms.transactions/cache/oat/x86/1664557424545.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4282

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.rms.transactions/app_webview/Cookies
    Filesize

    64KB

    MD5

    cb7543c4df600f2af58097cce0e334ba

    SHA1

    83cc92f38c27fdb4fa519b1ce2f37912f24af1f0

    SHA256

    64c022ae708f94ffde986e105d88f708884de325720bfb9925c4160a6d417233

    SHA512

    ad51cad0472327bd68aa2d791341cfafed58971752352537bb603ed18b15a3f9185e9150983a28ecd09606e8dcaef6d1c9d93213dd246ef7720f39842eb3d980

    Download Submit

  • /data/user/0/com.rms.transactions/app_webview/Cookies-journal
    Filesize

    1KB

    MD5

    c0602d433d799a612ea48df12ab67ed6

    SHA1

    c174bca4892419c8c4fc10569f6a7e4f4b3b3605

    SHA256

    3fa07a676842f0f2a5ae40337d14a7ba4914e0390cd8f1d82ffb26890997e4ad

    SHA512

    80737c6781844d7c74e6bd7acb32f6b188b39ed03c2212e5eab2060b8a8e79bf4e6bc21a72ba0aa93fac5054717d8b847b97ee1b200d46f12fcd6293de142046

    Download Submit

  • /data/user/0/com.rms.transactions/app_webview/GPUCache/index
    Filesize

    20B

    MD5

    93027d42b314432c4216e6cfca48b384

    SHA1

    43448dd8102979c3926828182579691945eedd4e

    SHA256

    3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

    SHA512

    a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

    Download Submit

  • /data/user/0/com.rms.transactions/app_webview/GPUCache/index-dir/temp-index
    Filesize

    48B

    MD5

    024fd17773862c0987aaa244c52f1296

    SHA1

    a2789516c423bb28e562c011b43cba681368cea5

    SHA256

    660728793237fb6e1833aa7613a6796894d79789a5a610a9d230c01e040c3cec

    SHA512

    240058a915c20afe33613aa2d8ccb0e36548eaba9153284a1188cb85a63852d913f4dce5ec55223910ad9b159d516f45897111746bde34cb4d1721c1a2bbb0f1

    Download Submit

  • /data/user/0/com.rms.transactions/app_webview/Web Data
    Filesize

    104KB

    MD5

    dc79f9ce5f3ab5270b33e61119dfc959

    SHA1

    1844bf222a5144b513dcf2fb50a18c011701c647

    SHA256

    47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

    SHA512

    18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

    Download Submit

  • /data/user/0/com.rms.transactions/app_webview/Web Data-journal
    Filesize

    1KB

    MD5

    52bbeefacfed749347e8f7d13415b116

    SHA1

    86a3c7525db7f175b52468f5cb68b5eba9a6688c

    SHA256

    71124036adca01b408cf978c2a0104548ee59b9ec232eed3f49dac746f84db22

    SHA512

    aefa97cdefda654b319d02daa354b164d1bf4f33d9863d00aa8717c8b21301954138ed45c2e5e645a428a61df3329675f94d8a912bba4f29c604f93d31ccdb04

    Download Submit

  • /data/user/0/com.rms.transactions/app_webview/metrics_guid
    Filesize

    36B

    MD5

    ec539d586fedfd532213e7e06d06a7b9

    SHA1

    334ae8c90b4e69743e20d49ef9748ada0cf65fa8

    SHA256

    1be261c5c2ea7910b85e8e84b3e97c562dd3f5ba60493ac0d133f609ec1f6a2e

    SHA512

    6f6d444712cbb0c12b9aa2880154e3c69944796cb3ab346aa057b6b945edff0a753d49f8ce9b5827ff878f6f16822d918aa1a2ee5ba394ac47dd8e14c7169806

    Download Submit

  • /data/user/0/com.rms.transactions/cache/1664557424545.jar
    Filesize

    21KB

    MD5

    14972f5db30e896521c77152798d4da5

    SHA1

    db0131492568fd8677a051422dcb8676471085b1

    SHA256

    659df5912b1192a870743a67d4019d04b73bf5d8b10a1c5b4a47d2b66f8770f6

    SHA512

    a48c7a89ac9f2b603582c8587fba2fb158c32dde3e896d70368b1e2dcce8a3016e3dc471468e53e254b2d1d383bbb9b6151f5e76f58b3c45fab0e96f25843b0f

    Download Submit

  • /data/user/0/com.rms.transactions/cache/1664557424545.jar
    Filesize

    21KB

    MD5

    722310b17c81cc3d780d23e1a63eb450

    SHA1

    0a0c1a939f923570e5da88aa5c7b105052f056e3

    SHA256

    9f2d7ff525ca785553557c351812252c0beface31440517e2f19929fe76472b1

    SHA512

    1a48e9383a0befb0c6b4755a8b56f352fba317910308f701e13ce8189c465cade6b0af510165d586745f1913a61cc68f91395949202394336a59c34596691a91

    Download Submit

  • /data/user/0/com.rms.transactions/cache/org.chromium.android_webview/a33d23c25bb7d919_0
    Filesize

    129B

    MD5

    557e93fc2e379bc9569274488af434e4

    SHA1

    5b2183c75dd473407fb00bc691f13c8bf8b76873

    SHA256

    781c67cbb400d73cbe81de9cd0ba944e667daacee3f0ef14d0a8cc7dfb1cf829

    SHA512

    cf9d2383a30fedc0f548b8bbc5fd8d752ebb3c913c95aec13173dcb0c6947a3b21af6f73a8dc6c054f94f3e741b100569f10fa627db11d8fc195309f0bdab20c

    Download Submit

  • /data/user/0/com.rms.transactions/cache/org.chromium.android_webview/f038e94cb33282ab_0
    Filesize

    188B

    MD5

    0314e5e190f9342a334f687618298fe7

    SHA1

    8651b0387f228dd3ef3d7add733a51354327fe93

    SHA256

    2533be3d142e830b5d9c8d6f1e2242d5df85de822283e0f8a082b65a0738eae7

    SHA512

    92153a15a681fe2b00631a5aeb8025bc80d604a085649337ccae9bf740acb538c95afbe5a77aaec027704a17eb7c689662ffaef94b9fd65d754a9a45985c1083

    Download Submit

  • /data/user/0/com.rms.transactions/cache/org.chromium.android_webview/index
    Filesize

    20B

    MD5

    93027d42b314432c4216e6cfca48b384

    SHA1

    43448dd8102979c3926828182579691945eedd4e

    SHA256

    3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

    SHA512

    a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

    Download Submit

  • /data/user/0/com.rms.transactions/cache/org.chromium.android_webview/index-dir/temp-index
    Filesize

    72B

    MD5

    09501800c4fa07eea8f023172690d7d5

    SHA1

    6b5d93a017c5ab535db5b0eec690c6824387b387

    SHA256

    d77a5928b11d8921e6deb64c426b24e61454be791d0774fc442313de60ea0371

    SHA512

    f02b68781846bacc87c0c971c19d68283de8523646e8b68b16921cca148f5ef4e8eeb643abd07717c8d788e6c49911c14faf5762a1bae80d4dcbde9c923e6184

    Download Submit

  • /data/user/0/com.rms.transactions/cache/org.chromium.android_webview/index-dir/temp-index
    Filesize

    48B

    MD5

    9327c9a36ff85e3c586320b01aa43978

    SHA1

    48d54a940c6fac5544e9806601395ec5f4be442f

    SHA256

    8a50eb4279b7968b432b90c98a3d53f053e13565c39eb063e76fa8a54dc92eb1

    SHA512

    379139a580bd411d26d161c5da6e9182fdc34cead63eaa21c4b6d783ac4f04eb6dd714de69f2f63119ce6ac2c86fe09fd9b9852f434ce6d7d2c314e2c0fb3782

    Download Submit

  • /data/user/0/com.rms.transactions/databases/google_app_measurement_local.db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/user/0/com.rms.transactions/databases/google_app_measurement_local.db-journal
    Filesize

    524B

    MD5

    afe0d3205fdf909fb69cbf1154816853

    SHA1

    9409ed7dd8719ae5a3ddc0eb6ae3f595e1057ad7

    SHA256

    0b30b538a0a474658c5edbf05ab688599dd503add72ed6752376830fc0f00db5

    SHA512

    64ccf078a15bf539a148792b7d21f95e524aa00620cd344aa3fcc1ce940a16a3a37151ff47cc94c641873f2612d73ae835bcaf30604f047cb0bf494e7cf73bc9

    Download Submit

  • /data/user/0/com.rms.transactions/databases/google_app_measurement_local.db-shm
    Filesize

    8B

    MD5

    7dea362b3fac8e00956a4952a3d4f474

    SHA1

    05fe405753166f125559e7c9ac558654f107c7e9

    SHA256

    af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

    SHA512

    1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

    Download Submit

  • /data/user/0/com.rms.transactions/databases/google_app_measurement_local.db-wal
    Filesize

    36KB

    MD5

    a592eddefba7739bb82fe0a9d3756589

    SHA1

    ae0a5eb971dd69171275343fa9e89c23aac6bb98

    SHA256

    989b610ed1d11d18b737582cedb70f0d13f6e758164b52939179c34c9bf9381b

    SHA512

    e6c7b0af61d35901450aad64522886178fba1d176e754dbe985926446091b281bd861cab15e11dd3f3532f18572f8d19bf7a3747a2f3d87c39acc68d40218bb8

    Download Submit

  • /data/user/0/com.rms.transactions/no_backup/androidx.work.workdb
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/user/0/com.rms.transactions/no_backup/androidx.work.workdb-journal
    Filesize

    524B

    MD5

    fb340fa8f98e922db234b8cd669b6821

    SHA1

    4879ce28eb17e1aa9e2b5f7a79cba9e8ba110a1f

    SHA256

    b1606a34a91bd1fb0d32e5a9a92d2136041442a7da63021962ea5553b92a6703

    SHA512

    a5ce4000b1cf9f8026f291856a09dc609be9ae64044b906602615455c952f639193e6a8b041b8fc1e0eecbcfc34ff589a3875e38eaea96f51409a5014780a424

    Download Submit

  • /data/user/0/com.rms.transactions/no_backup/androidx.work.workdb-shm
    Filesize

    8B

    MD5

    7dea362b3fac8e00956a4952a3d4f474

    SHA1

    05fe405753166f125559e7c9ac558654f107c7e9

    SHA256

    af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

    SHA512

    1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

    Download Submit

  • /data/user/0/com.rms.transactions/no_backup/androidx.work.workdb-wal
    Filesize

    241KB

    MD5

    7b8c6754321901ebef64eb6511b05c3e

    SHA1

    5047732e84b9a2b1e3de2778d45ec7eca4e17556

    SHA256

    e3ccc28610aecf0188d7ec482d1f9132dceebbd70371637c80346ff4fe1e5f4f

    SHA512

    c720cd25bc25123e4006b86c1b6208ccff14ab3136219dcc3791f040e2b5d2b6f952799bfb9ce2c2bf618fc5c74aab880287a375c5ffb71385ea77ec6251bd64

    Download Submit

  • /data/user/0/com.rms.transactions/shared_prefs/WebViewChromiumPrefs.xml
    Filesize

    127B

    MD5

    21223e9184445fe043476484cd8cb1f9

    SHA1

    2b4813f849121d60ba35eb0889080668bb62c778

    SHA256

    bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

    SHA512

    be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

    Download Submit

  • /data/user/0/com.rms.transactions/shared_prefs/admob.xml
    Filesize

    133B

    MD5

    e03e0d4993985a05fed76ae2f06aaf09

    SHA1

    b78b1790d145747aa193dd370a3aff3233454556

    SHA256

    21a862b79c1fc0f652876e7567123524b6cf67f36dad96f0987098084e2603c7

    SHA512

    4f97c339e05902ffae095bf95b7199c9e9a799b19398494ddc8f31db8e99216c339153030815f6a0a042bda5a46f889e92f88870f3bddb9d1091089e27150da7

    Download Submit

  • /data/user/0/com.rms.transactions/shared_prefs/com.google.android.gms.measurement.prefs.xml
    Filesize

    122B

    MD5

    250b4caeba60ddf53228405750ba66ca

    SHA1

    422ab714feb34e9f3b4f1cbe669887bcd581ddb1

    SHA256

    2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

    SHA512

    373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

    Download Submit