Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

a05497647a...b6.apk

android-9-x86

1

a05497647a...b6.apk

android-10-x64

1

a05497647a...b6.apk

android-11-x64

1

Analysis

  • max time kernel
    1983332s
  • max time network
    30s
  • platform
    android_x64
  • resource
    android-x64-20230621-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20230621-enlocale:en-usos:android-10-x64system
  • submitted
    21/07/2023, 02:10 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a05497647a879afec62bc7e916005f729fbfee48cfd56423481e0600061678b6.apk

  • Size

    7.7MB

  • MD5

    c1285b8df2599ebe3c8af1b5076d7b2c

  • SHA1

    6c2c5117609c01ec2869d256ae9c750723099584

  • SHA256

    a05497647a879afec62bc7e916005f729fbfee48cfd56423481e0600061678b6

  • SHA512

    fbdbed0db1f9ff75a210249e907d991158008acaf47bd3b1f9ccaac9f19a1b79638c9ce4e90e5bc9fa74137bd4a5cc2aa42e7015e6c55f20622e59757eb98cb7

  • SSDEEP

    196608:vmahQbqtifoW5aL2viPyMi0rS0hw+L3ESj:k2Ef1akaSAwAj

Score
1/10

Malware Config

Signatures

Processes

  • com.ssurebrec
    1⤵
      PID:5036

    Network

    • flag-us
      DNS
      www.cerberusapp.com
      Remote address:
      1.1.1.1:53
      Request
      www.cerberusapp.com
      IN A
    • flag-us
      DNS
      www.cerberusapp.com
      Remote address:
      1.1.1.1:53
      Request
      www.cerberusapp.com
      IN A
    • flag-us
      DNS
      firebase-settings.crashlytics.com
      Remote address:
      1.1.1.1:53
      Request
      firebase-settings.crashlytics.com
      IN A
    • flag-us
      DNS
      firebase-settings.crashlytics.com
      Remote address:
      1.1.1.1:53
      Request
      firebase-settings.crashlytics.com
      IN A
    • flag-us
      DNS
      ssl.google-analytics.com
      Remote address:
      1.1.1.1:53
      Request
      ssl.google-analytics.com
      IN A
      Response
      ssl.google-analytics.com
      IN A
      216.58.214.8
    • flag-us
      DNS
      android.apis.google.com
      Remote address:
      1.1.1.1:53
      Request
      android.apis.google.com
      IN A
    • flag-us
      DNS
      www.cerberusapp.com
      Remote address:
      1.1.1.1:53
      Request
      www.cerberusapp.com
      IN A
      Response
      www.cerberusapp.com
      IN A
      66.228.35.203
    • flag-us
      DNS
      www.cerberusapp.com
      Remote address:
      1.1.1.1:53
      Request
      www.cerberusapp.com
      IN A
      Response
      www.cerberusapp.com
      IN A
      66.228.35.203
    • flag-us
      POST
      https://www.cerberusapp.com/comm/restoreconf2.php
      Remote address:
      66.228.35.203:443
      Request
      POST /comm/restoreconf2.php HTTP/1.1
      User-Agent: Cerberus 3.7.6 - Android 29 - Pixel 2 - 10 - QSR1.210802.001
      Order: xvp8k6vztapaobgbhfp2d6gl
      Content-Type: application/x-www-form-urlencoded
      Content-Length: 28
      Host: www.cerberusapp.com
      Connection: Keep-Alive
      Accept-Encoding: gzip
      Response
      HTTP/1.1 200 OK
      Date: Fri, 21 Jul 2023 02:11:25 GMT
      Server: Apache
      Strict-Transport-Security: max-age=31536000
      X-Xss-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      X-Frame-Options: SAMEORIGIN
      Content-Security-Policy: default-src * data:; script-src 'self' https://*.cerberusapp.com http://*.cerberusapp.com *.google-analytics.com *.googlesyndication.com *.googleapis.com *.gstatic.com *.google.com *.doubleclick.net *.akamaihd.net *.googletagmanager.com *.googleadservices.com *.stripe.com data: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; connect-src https://*.cerberusapp.com http://*.cerberusapp.com https://*.google.com https://*.google-analytics.com https://*.gstatic.com https://*.googlesyndication.com wss://*.cerberusapp.com:* https://*.googleapis.com https://*.stripe.com https://*.doubleclick.net
      Content-Length: 0
      Keep-Alive: timeout=30, max=3000
      Connection: Keep-Alive
      Content-Type: text/html; charset=UTF-8
    • flag-us
      POST
      https://www.cerberusapp.com/comm/s.php
      Remote address:
      66.228.35.203:443
      Request
      POST /comm/s.php HTTP/1.1
      User-Agent: Cerberus 3.7.6 - Android 29 - Pixel 2 - 10 - QSR1.210802.001
      Order: 0aw9085lqpqwa96m8pq5o66t
      Content-Type: application/x-www-form-urlencoded
      Content-Length: 18
      Host: www.cerberusapp.com
      Connection: Keep-Alive
      Accept-Encoding: gzip
      Response
      HTTP/1.1 200 OK
      Date: Fri, 21 Jul 2023 02:11:25 GMT
      Server: Apache
      Strict-Transport-Security: max-age=31536000
      X-Xss-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      Vary: Accept-Encoding
      Content-Encoding: gzip
      X-Frame-Options: SAMEORIGIN
      Content-Security-Policy: default-src * data:; script-src 'self' https://*.cerberusapp.com http://*.cerberusapp.com *.google-analytics.com *.googlesyndication.com *.googleapis.com *.gstatic.com *.google.com *.doubleclick.net *.akamaihd.net *.googletagmanager.com *.googleadservices.com *.stripe.com data: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; connect-src https://*.cerberusapp.com http://*.cerberusapp.com https://*.google.com https://*.google-analytics.com https://*.gstatic.com https://*.googlesyndication.com wss://*.cerberusapp.com:* https://*.googleapis.com https://*.stripe.com https://*.doubleclick.net
      Content-Length: 21
      Keep-Alive: timeout=30, max=3000
      Connection: Keep-Alive
      Content-Type: text/html; charset=UTF-8
    • flag-us
      DNS
      firebase-settings.crashlytics.com
      Remote address:
      1.1.1.1:53
      Request
      firebase-settings.crashlytics.com
      IN A
    • 142.250.179.130:443
      tls
      145 B
       40 B
       1
      1
    • 142.250.179.206:443
      tls, https
      904 B
       40 B
       1
      1
    • 142.250.179.206:443
      tls, https
      904 B
       40 B
       1
      1
    • 216.58.214.8:443
      ssl.google-analytics.com
      tls
      1.2kB
       5.6kB
       7
      5
    • 66.228.35.203:443
      https://www.cerberusapp.com/comm/restoreconf2.php
      tls, http
      1.5kB
       5.3kB
       12
      11

      HTTP Request

      POST https://www.cerberusapp.com/comm/restoreconf2.php

      HTTP Response

      200
    • 66.228.35.203:443
      https://www.cerberusapp.com/comm/s.php
      tls, http
      1.5kB
       5.4kB
       12
      11

      HTTP Request

      POST https://www.cerberusapp.com/comm/s.php

      HTTP Response

      200
    • 224.0.0.251:5353
      2.5kB
       8
    • 1.1.1.1:53
      www.cerberusapp.com
      dns
      130 B
       2

      DNS Request

      www.cerberusapp.com

      DNS Request

      www.cerberusapp.com

    • 1.1.1.1:53
      firebase-settings.crashlytics.com
      dns
      158 B
       2

      DNS Request

      firebase-settings.crashlytics.com

      DNS Request

      firebase-settings.crashlytics.com

    • 1.1.1.1:53
      ssl.google-analytics.com
      dns
      70 B
       86 B
       1
      1

      DNS Request

      ssl.google-analytics.com

      DNS Response

      216.58.214.8

    • 1.1.1.1:53
      android.apis.google.com
      dns
      69 B
       1

      DNS Request

      android.apis.google.com

    • 1.1.1.1:53
      www.cerberusapp.com
      dns
      65 B
       81 B
       1
      1

      DNS Request

      www.cerberusapp.com

      DNS Response

      66.228.35.203

    • 1.1.1.1:53
      www.cerberusapp.com
      dns
      65 B
       81 B
       1
      1

      DNS Request

      www.cerberusapp.com

      DNS Response

      66.228.35.203

    • 1.1.1.1:53
      firebase-settings.crashlytics.com
      dns
      79 B
       1

      DNS Request

      firebase-settings.crashlytics.com

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.ssurebrec/databases/com.google.android.datatransport.events
      Filesize

      112KB

      MD5

      c00e56432fec53a3af4cb74375486250

      SHA1

      0c0836763aa016d67ceaab90f46ae1f039ff5754

      SHA256

      511fd696d23abfeee7a721f47ca97e7f429104b1c04b5a7cee39e56ba2dca2df

      SHA512

      538dfc872ee37da8257cf7da239e47031069bd7292e2e8e5aaf77d4ea61e2fd25f45bd0d89a3bae191e0624b440e37168645376bf3c5886fdab91928d2c08fda

      Download Submit

    • /data/user/0/com.ssurebrec/databases/com.google.android.datatransport.events-journal
      Filesize

      1KB

      MD5

      97b4d31810a462733f25ac05cbe46af7

      SHA1

      3847d51f194cbd66f785fa00b28549b9c574cdc8

      SHA256

      4e26a9c0f629b9e05e86167a74ce4ee9618dec7051799d581b9385a1a1110e80

      SHA512

      fa424b9e53bc65952041c110dc20a5e6d86a9e8a3e8753a8fe600560da32b812680b669a3121b3457c2ed3bd027f714a822ae795e757eb409c7c536f984b7810

      Download Submit

    • /data/user/0/com.ssurebrec/databases/google_app_measurement_local.db
      Filesize

      88KB

      MD5

      7bd7e08b7c157fb7a04f9701b6965b65

      SHA1

      19ed78cffffd879509071b091ba60776c18e8d97

      SHA256

      c3aa0e8a52b6dcae0f988502bb3887f94c13148a8f36c3fcf5036c7c99afbdbc

      SHA512

      a668c141cd4d48396e9d67e79ec1036a8ad4498293e0f16d108e8c4d842f76714f561bbe440a3a5dbcfb6b7ade257ffed7fa07c56566c8ea938589c61943d4cb

      Download Submit

    • /data/user/0/com.ssurebrec/databases/google_app_measurement_local.db-journal
      Filesize

      1KB

      MD5

      94ed6700ce224dd7e19cdc99b1cd0778

      SHA1

      6203ab382fb9359549422a3a439f7451f547c08f

      SHA256

      9237c233944c3e490e07441571ebe7cad5cbec0b4a6f62d49fb620812d22c163

      SHA512

      aa1c23643bf19c8129581deefa7d2e35fd44398b933b6765e4b29c59587cc5fb25a9bbf4e50a0f2531cc5a8a3ed63be8097bbe125d5a1e5c17e9918dd9970c26

      Download Submit

    • /data/user/0/com.ssurebrec/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-64B9E93B0346000113AC844BB403987A.temp.tmp
      Filesize

      16B

      MD5

      c33583fae4e0b61cde1c5b9227963237

      SHA1

      fe2ebe4d27469af1460f7e852031a04208ef629b

      SHA256

      35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

      SHA512

      fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

      Download Submit

    • /data/user/0/com.ssurebrec/files/.com.google.firebase.crashlytics/report-persistence/sessions/64B9E93B0346000113AC844BB403987A/report
      Filesize

      737B

      MD5

      811ceef16314528d153e222e925a36e0

      SHA1

      feb4260bbb2178635e745091fc72bfcc5c57da3c

      SHA256

      a14b86f46274bac2c83bd126e17f8c5eb9f7261aff4bb1766bec02bbe58e975f

      SHA512

      43f3d8e0e68f699a0e8f3a163e8092efff7d3b38c53bf9eec5ff6a5bb6bcd149a90854fb405d74deb779e9907b449534bf2eabca1390cc10bb7d62909519f0cb

      Download Submit

    • /data/user/0/com.ssurebrec/files/profileInstalled
      Filesize

      24B

      MD5

      ba6d553fb5537b9793ebd15538b40179

      SHA1

      3436963b6d01773183cf798cdf5d22a864e46f71

      SHA256

      a546d24c59aa860b4af1551831599b14366c479bcc4badcd64e06a75bf93cdf3

      SHA512

      592c6d14490649fc17ea5004742326bb6110d379d46d98f593c12e23de98715f18b958335756cf1ff2cc9a8f211d9c07596da6b1924636bc12c8242f4a5834e9

      Download Submit

    • /data/user/0/com.ssurebrec/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
      Filesize

      8B

      MD5

      390645c4b19c3bf4747d8c80d1d8488e

      SHA1

      259e0d8fc15fc6e8f92f8ed946f9b027c43cd22c

      SHA256

      3f698bc4a0106cebfd8eb8922c8bb17da69f5cd1dd87d8d770d663fd793baa8f

      SHA512

      39a3bfe5b262a562ff321a51f75e583f12fc9e2825f96c21c0cfdb818ff8a8dfff0b2729a7023a2f329f78ccbf452b8b8ff671e3c064a4ac8c0cc6b9b08a5979

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/FirebaseAppHeartBeat.xml
      Filesize

      239B

      MD5

      29c75e2f11c91ca4748429c347ef4e70

      SHA1

      5a16662746f9be6b578fa948576daa75e31f0322

      SHA256

      bbb8668a1f68c488d3e4a08a6647f25ca976c7f29d787a3e207c2f5ec25f1008

      SHA512

      507af4892cdcf797d13d1cf802a58acc64435e8b74891e17fc110e8be6d5b393987a7a17a86d6b2ff0f46e15d78d279be2bf585828993cd0295511b5b41a5ead

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/FirebaseAppHeartBeat.xml
      Filesize

      134B

      MD5

      8b9c9769b214ba0564808208cedd610a

      SHA1

      f74d7045636473b844d1ce18f7f62593fa08379a

      SHA256

      887890c0470dbaae71a0fc0c2b8b8dd2426b86123892a87f1db3e2a149f5645e

      SHA512

      0b29e1fa45a9515022f6fa2fc7d7428876a807f5c7e2edcbd4f217cb93cd0c2744b0cf2bf509e1a941e8a222dab9383c45006ad6d098dfab6f27f254b54af320

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/FirebaseAppHeartBeat.xml
      Filesize

      188B

      MD5

      b0e3a07c4f9671a94573616e7c7c074e

      SHA1

      7e6bc39f6cd4f704c6dd9d0d605b2d8177f9f279

      SHA256

      0c95eab1a538848ab8afca82c6781bef77e04fb15bdb66ab389b112147a96aa9

      SHA512

      1e61e8ca09591db3ad38110252f2308ef5a32d61e3d4fb3b2a2f5c73dacc8d4eef7dbfc014f6fa28dda3a24810e297637b8641807fe4c41c7c41b2c7189130f1

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      389B

      MD5

      993ef82f54a7a30c946e45162f95be96

      SHA1

      9a49ee77ebd8715e93565463bffcfe752b026498

      SHA256

      2664ef95fef4769a532c20109428ab07235dca294bfd829955841380d80dbb26

      SHA512

      8e5395ac9ee7118e931ec63b5b1c759bd1fd03faf0bb6a913c9a1d0620a7a8ab3e81196c82de4bb70b2b5d8cbae7c68b56aa06330eecc89948bb14045d9f121f

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      600B

      MD5

      4a705ce9daeda030c9aaab4a2fc5f018

      SHA1

      20c7ea7be2f913e91e282378c4499e32daa5b01b

      SHA256

      04bee97f8e1237b334967fb0c5109bf2c2c5df666ee36b0f273ec8c3cf3308d4

      SHA512

      f27e774007b28f877f0e69452959bf43ff631424fb62f4683e740d2a5bb057c0bb1b4770abe816ec69db45015f27c5bdbb6451528a6db84bbf3cbf0d4820c980

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      601B

      MD5

      b3d17d107b6dbc638dd62ab8d53b1c4c

      SHA1

      0b4fabf10bf02dc2755b48da969302081fca7a07

      SHA256

      c3d22524d718f8e2ce00550fc5b41de5ba68ab13f3fd6923c92facf58866d667

      SHA512

      7c5065786dfec9f05cdc4560ee0f0ee5840c163f04b0f59c1f5bc733668bceac34819a251bc7b97506332a2f6bcd2dab18e65172968465449d03c5a5dd559182

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      713B

      MD5

      4fc5ff426ea9e91d45d3d4c7457092b6

      SHA1

      38f728be312fad76d5aa0531d4b3581dc4b5a4a7

      SHA256

      22d469b43f733c91eac7e1d38c103b7e594c1141e940e739a5779a83a6aa4df2

      SHA512

      ee490237332a4f9ab6ecf9df5f9c195ccc4804434ecb247e1c61b2785e8d58cfda19535d84b61107ccfce9690cfe27f904be721923d25b75c1db64c70dee6cf0

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      790B

      MD5

      d02f7a2360b381302b95f4f1d6b617d2

      SHA1

      2c94c01e486d231521e5aff57a773a8bb2d3f2e7

      SHA256

      9ce20fbc2359cd12ff55d39fbb35a7248ca6212f5e429ffc8c9ed895fa8604a7

      SHA512

      d5e6c15c532db2feb24ad1863ad691c3827e9b47c8f884597c40d3c89d8cd514b5780e844fe2513fc99f048d9855a0a268fc3edde79fcb65911ec1d0e38756be

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      122B

      MD5

      250b4caeba60ddf53228405750ba66ca

      SHA1

      422ab714feb34e9f3b4f1cbe669887bcd581ddb1

      SHA256

      2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

      SHA512

      373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/com.google.firebase.crashlytics.xml
      Filesize

      146B

      MD5

      b89d1759ac4fc1f050b4759539da7f9b

      SHA1

      97eddcee81e339e48ee6c2252725938028bfc068

      SHA256

      d6872e21bb0349f636eab3968a69ac8cdae194593f4ff7226eb4ff65c4554f10

      SHA512

      4c23c6a2662979ff7b0d6e7f6081f95904f3320a959a14b08f4dd6ae6dc5fbddc60a6362b8988df3e139a2af2eab0d1d519466da59c4d4fd968467eaabcaac96

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/com.google.firebase.crashlytics.xml
      Filesize

      311B

      MD5

      2d6e21ef41df542b9b1ea1156d470ba1

      SHA1

      1486d5fb1f4dc32e6a8f3c40d82b97e0a37e6b72

      SHA256

      731172beaecab802553c8ad25e576b275a4b82a1383196ecec46c3e84d8d89ad

      SHA512

      b323f1d1921f6165e5167714bb16fe17dae76a3960b3ab00720e1d4e9e65572754e0e0727027d16f12d1338e7340acbc9461409409b3200a439132305a62a275

      Download Submit

    • /data/user/0/com.ssurebrec/shared_prefs/conf.xml
      Filesize

      116B

      MD5

      75dbfd7cb8f7935da0054091284ddc6b

      SHA1

      561acdebae34cfd4a3ebca1eddcaf809850d5f21

      SHA256

      7da2af7a9f6ab089d0f4d0189d7af63d418430bc039f3df69164470975120410

      SHA512

      d0d72b069ca5bc556330db3956dca7afc43980769f8b587222af644e6d050eebdbf9248d93e0553764b7bef480d99994387e6bd8800db51caf19d168be3dd6d4

      Download Submit

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.