Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

2e8450cf84...27.apk

android-9-x86

1

com.qihoo....er.apk

android-9-x86

1

com.qihoo....er.apk

android-10-x64

1

com.qihoo....er.apk

android-11-x64

1

com.qihoo....te.apk

android-9-x86

4

com.qihoo....te.apk

android-13-x64

com.qihoo....on.apk

android-9-x86

8

com.qihoo....on.apk

android-10-x64

8

com.qihoo....on.apk

android-11-x64

8

com.qihoo....sh.apk

android-9-x86

1

com.qihoo....sh.apk

android-10-x64

1

com.qihoo....sh.apk

android-11-x64

7

tcore.apk

android-9-x86

tcore.apk

android-10-x64

tcore.apk

android-11-x64

com.qihoo....eo.apk

android-9-x86

1

com.qihoo....eo.apk

android-10-x64

1

com.qihoo....eo.apk

android-11-x64

1

com.qihoo....ew.apk

android-9-x86

1

com.qihoo....ew.apk

android-10-x64

1

com.qihoo....ew.apk

android-11-x64

1

com.qihoo3...er.apk

android-9-x86

1

zsrooter.apk

android-9-x86

core.apk

android-9-x86

core.apk

android-10-x64

core.apk

android-11-x64

com.qihoo3...er.apk

android-9-x86

1

com.qihoo3...er.apk

android-10-x64

1

com.qihoo3...er.apk

android-11-x64

1

com.qihoo3...vc.apk

android-9-x86

1

com.qihoo3...vc.apk

android-10-x64

1

com.qihoo3...vc.apk

android-11-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2e8450cf8415e8e84691aabc1fa67627

  • Size

    24.7MB

  • Sample

    231219-qez99sdab4

  • MD5

    2e8450cf8415e8e84691aabc1fa67627

  • SHA1

    0bc567d81ee3a7a244fb95e24fb8831eb297dce9

  • SHA256

    45a0ccb29103ac44b2359dff8de02a55b2f51636ce3bfd86353b71d1d5d56c8b

  • SHA512

    cff151490cdaa63623245fa0c94951016356977c1606f19c73d7245172782e93d761a6b59ecce11762dd8d90ddfad1a37ba03986ecb1361a92aca9439c4d1e9b

  • SSDEEP

    786432:ObIR+b6YP8kPG2s0RQSxJGH+deZwHR4S+:cIR+D1xsK3nvQHN

Score
8/10
android

Malware Config

Targets

    • Target

      2e8450cf8415e8e84691aabc1fa67627

    • Size

      24.7MB

    • MD5

      2e8450cf8415e8e84691aabc1fa67627

    • SHA1

      0bc567d81ee3a7a244fb95e24fb8831eb297dce9

    • SHA256

      45a0ccb29103ac44b2359dff8de02a55b2f51636ce3bfd86353b71d1d5d56c8b

    • SHA512

      cff151490cdaa63623245fa0c94951016356977c1606f19c73d7245172782e93d761a6b59ecce11762dd8d90ddfad1a37ba03986ecb1361a92aca9439c4d1e9b

    • SSDEEP

      786432:ObIR+b6YP8kPG2s0RQSxJGH+deZwHR4S+:cIR+D1xsK3nvQHN

    Score
    1/10
    behavioral1

    • Target

      com.qihoo.appstore.notification.controller.jar

    • Size

      626KB

    • MD5

      97c6b600bd9b50d69d58e42e0cdde009

    • SHA1

      8b9d8e73131e092ddc92606a5042f3bee0154329

    • SHA256

      8f9bf0ae2df8087d18dbe607e81cca651d5f30064ff10a8afdc23d0e20338b8b

    • SHA512

      d65f80fab09accdbf94e6367e2a8ea562ea864b3b0a9e178e0fd25b6f96c7fcfb76e35914eb2f54110ddd40d56bd6c50aa0fc5f5a52717ee5a9076d0d214ee42

    • SSDEEP

      12288:rd/muebFA0htIByLhxu92QaZL+GuGPdDvwGhxJ9axLA936DUOAmNu3JnDxKA8o:rd/h8FAuIByL2ENL+7oZALW3ANu3JnJH

    Score
    1/10
    behavioral2behavioral3behavioral4

    • Target

      com.qihoo.appstore.pay.lite.jar

    • Size

      260KB

    • MD5

      2440eb04289baccc027a4ec684d2a14e

    • SHA1

      4727a55de77c8e779849f6976084c4fa8ace3830

    • SHA256

      fd1fa6bda15e3145f109a643032a43c6d6f0576e2827d15685c934b82e2137b2

    • SHA512

      c09a345d9aaeae7298ca4a0b8533627b4d9d652212b5e76a37a09db3cafa29e3c7163c4e0fbd4f05ba03a781a6f7037609fd77c1bc03cff69cd4dc33a0a37719

    • SSDEEP

      6144:garGZOh0LeG1d3rUjjCXf7FyZwRMWgigaHjUNA2OcMMmIWmKVQlQ:gYADd3rMWinWgi1INyNMcmo

    Score
    4/10
    behavioral5behavioral6

    • Target

      com.qihoo.plugin.modulation.jar

    • Size

      2.6MB

    • MD5

      4caa63f3d05b0eec95e549dcb06bf397

    • SHA1

      c588aa995401da81c54de9cea17ad2bba6dcb168

    • SHA256

      e5a4416a24746715c4863615ea99101affb18b1769ec4e8ed91c971b8205ba7e

    • SHA512

      a95064c23b727a5369f5135f713c0ac56c1720664f6b2511755b30101b78e89731ca56ea8ca92461ce5a9dea6067bbaaab643ec450acf4c18df67107b9a50516

    • SSDEEP

      49152:pEj24LN0i/5vhcnc4mnB52k2wyX2UwqMytrTeZHidnG+E05SbqSqQFZfrC0H1LKm:pEjxmi/5v+62wHub4+GbqSqKzC0Dt

    Score
    8/10

    • Requests cell location

      Uses Android APIs to to get current cell location.

    behavioral7behavioral8behavioral9

    • Target

      com.qihoo.plugin.splash.jar

    • Size

      757KB

    • MD5

      b70ec555bf986be83fa1e0f6036e93be

    • SHA1

      19e9d2b12e5eaca3ce091ac97e219946e984d342

    • SHA256

      dcd42bf4fd53ccbc2984ff33e65932d8b442a5aae9d21819a3fef9efc118be05

    • SHA512

      23fbd256b979f2094e75e637e614595534e9ba2918be271c21cf941f8ce07c9ae7f9fc50065741c83345fe5e95bb6cb1ce6ea5315c2de4eb3ba4acc045896876

    • SSDEEP

      12288:nXpOPiBm+DhDfBzIAHRJtCIZ2GVdghuxi+gq6NMiB4rgPxRSqADfXnz9xgGL9dZp:nIaBm+NBIgRJocqhv7q6NMNrgPxYXzbv

    Score
    7/10

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    behavioral10behavioral11behavioral12

    • Target

      tcore.jar

    • Size

      153KB

    • MD5

      bc3cb0eef1d19c47cf3f1a2211258aee

    • SHA1

      7f10b763a43b6900cd9925b014c1a794994d37dd

    • SHA256

      79e1eee2d72cb40e0c931ed08e609891a41b0a2802d6e0b98abd7970238b4eee

    • SHA512

      51f66294dbc34d4c618e2b16449c47f73734f1d5a57d2e40927ff5ab808604206fda84af29653cb9b018f30749e54a0a481e796cfc7b016a317ff7e83860df86

    • SSDEEP

      3072:GYRLLNEK/MG/+UL3TMPAi7GGawe/JchKfbNewyfVF4BTP7rLqchL:GYLLNEkMG/+g27GGze/JSi5IuHLBL

    Score
    1/10
    behavioral13behavioral14behavioral15

    • Target

      com.qihoo.plugin.video.jar

    • Size

      1.0MB

    • MD5

      c5502e23887e05a5700d81f48373f0c1

    • SHA1

      5182f27ebea9a6132f2dd94ffaf2c9ae6d0d3bee

    • SHA256

      2613ae897d242c94216813ee4da62ba362ebabb0b7a178578f500244ba338104

    • SHA512

      eb53b88628544cb8d536519c88e8f682dbea0e81f20340aeed5a1810ef1c2e7929af664c63c7f8400c17e60c1b8f48a2eaa61599d500e8a784ab9fa270881af5

    • SSDEEP

      24576:ZtueP2PWBjYJuioBF9lLruSB3liiBLStSire91uj+eFHq31JZHbk:Z4zuSui0jlfjnLorbj+eFHq37ZA

    Score
    1/10
    behavioral16behavioral17behavioral18

    • Target

      com.qihoo.plugin.webview.jar

    • Size

      1.2MB

    • MD5

      53bf3627b47db58e91f5a4aab7655c15

    • SHA1

      333d953e1237700abfc4b5bf51b16e999e5e65eb

    • SHA256

      1cdd0003ddc492b8910c16eca1d3f08777e7137468b98ec299b940cca9eddc10

    • SHA512

      c62527d07015c63d7325bdbb13a65ba1780ca6d0a825b5a73f36abb9bda1765ac0609e0a8affd3625a48a32f28268fceefcdb486dc1efd6007502f2cd8119560

    • SSDEEP

      24576:X2E6dRud614z/O42PJeEGHc1JEziQIRZLRcaM7AVz0/wcPtTvPWrttNU4h:mEBjz/yPnAc7EzbIRVRcaM7AVz+wuTP6

    Score
    1/10
    behavioral19behavioral20behavioral21

    • Target

      com.qihoo360.mobilesafe.appwatcher.jar

    • Size

      810KB

    • MD5

      5125c13224813438b603578cc2c6aed9

    • SHA1

      a78bde65c5a2d271e0f39dae308a7903bf865ea2

    • SHA256

      6028e29ba78737e4b8c32910ea62ea8c5dfea739785edfb503481803a87c8ea8

    • SHA512

      66498dbad8be892c4f67f90df3a93c815b67cb6ccbe9eed2de4eb8f6568903e1c7bdc4604ebf603139c96549c3acfe2f09c5c033b64c9f6f75eaeb84c7f0b4a9

    • SSDEEP

      12288:3WiuvDZYjZ7YgVjwYGjFoKPMRm4WUmLhFTLYz9rWZh3HAh7ZWl2f4BW0AKTUf/Wy:GGZNwRim4nmLzsxrU3LFpA8GW48QLMK

    Score
    1/10
    behavioral22

    • Target

      zsrooter.jar

    • Size

      330KB

    • MD5

      20d47bb1d32b6220a41499835a20d6ad

    • SHA1

      8bc7eb3cf09d4d82b70c9b19d7ab150c648e222e

    • SHA256

      33569edd1f2fb70fee7042d91f81f7ce116edbfadcf001af09f86ddadf20ce13

    • SHA512

      a529e026ee8e5ff8ce1431b4fd90ae6e2e68aaf2b60a5bde3526bb9b284d8ec3218e21df06820d781913322f8214943b94f84cb94ebf254bba628ecc344adcf3

    • SSDEEP

      6144:utz9THWZhX/HJ6ZG+zd4z15sf4E08peAks4BHsgh0wCg6qXkt6sEMNQ6nj+:89rWZhvHAZ7zQ12f49seA63h0wEqXk/k

    Score
    1/10
    behavioral23

    • Target

      core.dex

    • Size

      226KB

    • MD5

      8331d7d6b119347e1191e6cd88c9d2ae

    • SHA1

      a8071d6c850cee92def6f34a4fb80c80d3c34399

    • SHA256

      08484e56156b4b5eff0abcc02de6e72c80f0631037287b383ab7f3fe3c3baa3e

    • SHA512

      d96f6b77d5d4849f46de5ebf775ae061e95d88e0ae86cb5b0e66c5b29f9722dc4afb3f2bc4fcdd2de427d83193b5af71877bad9de645fc6153080f50eabca838

    • SSDEEP

      6144:O9THWZhV/HJ6XG+zVkz15ofIEE6pGAke4DHsK:O9rWZhVHAX7zI1OfIv2GAqV

    Score
    1/10
    behavioral24behavioral25behavioral26

    • Target

      com.qihoo360.mobilesafe.authguider.jar

    • Size

      431KB

    • MD5

      eb560fd63490b98ed75c81eb4f32f4ad

    • SHA1

      3195a6109deff44317b4ae07e838b1cb3f3f8a86

    • SHA256

      784766fd90c03fe5faa10a9b6f96065c07b2ecee1daa75da1d8a38553184a8bf

    • SHA512

      91a1d5e48c179bf3592d1021e2d90062ec85590a22d41cee06c1e259d011a3d0814d4a0ad4b2a7508ceb1f1bf83ab2206eaeba390303d777b6783b9078cf6411

    • SSDEEP

      12288:Y0/TWxXBpqddo26QQTcJTP1JHtH91xLDDCo9DTu:2XBg2cJT9J6n

    Score
    1/10
    behavioral27behavioral28behavioral29

    • Target

      com.qihoo360.mobilesafe.chargescreensvc.jar

    • Size

      163KB

    • MD5

      e789a5237e6b6ee421a809c4630b85e2

    • SHA1

      ee06cab0f3d5f75dd0ea46c926d5bc4c725ab113

    • SHA256

      932b2dd00eda5a785a887261b39f8244564bc7e7bf621392dded9988db0b4183

    • SHA512

      67dd1ea0afe57331dc1417923baba9d2327dfe8a6a7def76e4183ac5824d4977516a4bd96928ee3da5b672b5af6ffab2edebde69975aa734d9d6591148fcab09

    • SSDEEP

      3072:/L/2WCTBLajnt2lSHo4eobUoVLPAQqZgog6kXrcqZWAYu1N9Ph0WCl7IMJqi:/L/uTIooDeobrqZgog6kX9Wudh8IMJZ

    Score
    1/10
    behavioral30behavioral31behavioral32

MITRE ATT&CK Matrix

Tasks