Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

com.astrok...ic.apk

android-9-x86

com.astrok...ic.apk

android-10-x64

x--- mockup 01.png

android-9-x86

x--- mockup 01.png

android-10-x64

x--- mockup 01.png

android-11-x64

x--- mockup 02.png

android-9-x86

x--- mockup 02.png

android-10-x64

x--- mockup 02.png

android-11-x64

x-000atl.rpyc

android-9-x86

x-000atl.rpyc

android-10-x64

x-000atl.rpyc

android-11-x64

x-000namespaces.rpyc

android-9-x86

x-000namespaces.rpyc

android-10-x64

x-000namespaces.rpyc

android-11-x64

x-000statements.rpyc

android-9-x86

x-000statements.rpyc

android-10-x64

x-000statements.rpyc

android-11-x64

x-000window.rpyc

android-9-x86

x-000window.rpyc

android-10-x64

x-000window.rpyc

android-11-x64

x-00access...y.rpyc

android-9-x86

x-00access...y.rpyc

android-10-x64

x-00access...y.rpyc

android-11-x64

x-00achievement.rpyc

android-9-x86

x-00achievement.rpyc

android-10-x64

x-00achievement.rpyc

android-11-x64

x-00action_audio.rpyc

android-9-x86

x-00action_audio.rpyc

android-10-x64

x-00action_audio.rpyc

android-11-x64

x-00action...l.rpyc

android-9-x86

x-00action...l.rpyc

android-10-x64

x-00action...l.rpyc

android-11-x64

Resubmissions

06/08/2023, 10:47 UTC

230806-mvsnksah2s 7

06/08/2023, 10:44 UTC

230806-msxvhshd34 7

Analysis

  • max time network
    25s
  • platform
    android_x64
  • resource
    android-x64-arm64-20230621-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20230621-enlocale:en-usos:android-11-x64system
  • submitted
    06/08/2023, 10:44 UTC

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Payload did not run: unable to install sample: Exception occurred while executing 'install': java.lang.IllegalArgumentException: Error: Failed to parse APK file: x-00action_control.rpyc: Failed to parse x-00action_control.rpyc at com.android.server.pm.PackageManagerShellCommand.setParamsSize(PackageManagerShellCommand.java:528) at com.android.server.pm.PackageManagerShellCommand.doRunInstall(PackageManagerShellCommand.java:1282) at com.android.server.pm.PackageManagerShellCommand.runInstall(PackageManagerShellCommand.java:1248) at com.android.server.pm.PackageManagerShellCommand.onCommand(PackageManagerShellCommand.java:184) at android.os.BasicShellCommandHandler.exec(BasicShellCommandHandler.java:98) at android.os.ShellCommand.exec(ShellCommand.java:44) at com.android.server.pm.PackageManagerService.onShellCommand(PackageManagerService.java:21646) at android.os.Binder.shellCommand(Binder.java:929) at android.os.Binder.onTransact(Binder.java:813) at android.content.pm.IPackageManager$Stub.onTransact(IPackageManager.java:4603) at com.android.server.pm.PackageManagerService.onTransact(PackageManagerService.java:4305) at android.os.Binder.execTransactInternal(Binder.java:1159) at android.os.Binder.execTransact(Binder.java:1123) Caused by: java.io.IOException: Failed to load asset path x-00action_control.rpyc from fd 318 at android.content.res.ApkAssets.nativeLoadFd(Native Method) at android.content.res.ApkAssets.<init>(ApkAssets.java:302) at android.content.res.ApkAssets.loadFromFd(ApkAssets.java:173) at android.content.pm.parsing.ApkLiteParseUtils.parseApkLiteInner(ApkLiteParseUtils.java:238) at android.content.pm.parsing.ApkLiteParseUtils.parseApkLite(ApkLiteParseUtils.java:226) at com.android.server.pm.PackageManagerShellCommand.setParamsSize(PackageManagerShellCommand.java:522) ... 12 more
Report Analysis Logs

General

  • Target

    x-00action_control.rpyc

  • Size

    3KB

  • MD5

    caf3da7b12820b75f7fbcc4292f4ab3b

  • SHA1

    19ca5c12959f3e1db56dffd560d1fcd5cb8a95a1

  • SHA256

    1ca117c2b32c3b7985f79c161b3c273d551ecd4ae6d44bded3d6bdd360d17191

  • SHA512

    7fcbdc033ccfb5527b13915694ee0044990df97239570d00b8ff234054e4574e7192ddf711d5455e1918efe54bf12de6ef5d86cad807a5806b97042aaba0786e

Score
1/10

Malware Config

Signatures

Processes

Network

  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    216.58.208.110
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
  • flag-nl
    GET
    http://play.googleapis.com/generate_204
    Remote address:
    142.250.179.202:80
    Request
    GET /generate_204 HTTP/1.1
    Connection: close
    User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.32 Safari/537.36
    Host: play.googleapis.com
    Accept-Encoding: gzip
    Response
    HTTP/1.1 204 No Content
    Content-Length: 0
    Cross-Origin-Resource-Policy: cross-origin
    Date: Sun, 06 Aug 2023 10:47:30 GMT
    Connection: close
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
  • 216.58.208.110:443
    android.apis.google.com
    tls
    919 B
     4.6kB
     7
    5
  • 216.58.208.110:443
    android.apis.google.com
    tls
    983 B
     4.9kB
     8
    6
  • 142.250.179.202:80
    http://play.googleapis.com/generate_204
    http
    549 B
     466 B
     6
    6

    HTTP Request

    GET http://play.googleapis.com/generate_204

    HTTP Response

    204
  • 224.0.0.251:5353
    2.5kB
     8
  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    216.58.208.110

  • 1.1.1.1:53
    android.apis.google.com
    dns
    138 B
     2

    DNS Request

    android.apis.google.com

    DNS Request

    android.apis.google.com

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     1

    DNS Request

    android.apis.google.com

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.