Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

859f1f3e1f...ee.apk

android-9-x86

7

859f1f3e1f...ee.apk

android-11-x64

7

Analysis

  • max time kernel
    2441065s
  • max time network
    136s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20/12/2023, 04:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    859f1f3e1fed530f8d2a5ebf7df53bc82e58d189fa8027408cf0a38bbbe6e0ee.apk

  • Size

    8.1MB

  • MD5

    c640a44d7fe6a4ed4391f69056dbad08

  • SHA1

    a90e02b7277699ea0311f2ebb9e96efee8560717

  • SHA256

    859f1f3e1fed530f8d2a5ebf7df53bc82e58d189fa8027408cf0a38bbbe6e0ee

  • SHA512

    d82fdd880ae422c56403f12641dfed07e47f4c6bca686bb44aaaba2e647125c9f3a1f57c95a24730c6341d3a5d3043dee52aaca881108e8af98aa6ecb6630fd5

  • SSDEEP

    196608:qONiSbkFEHEzYqCJgoMeiDkG4I2UaTRuK:qONiEuSEpDDr4I2Dh

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.wuyoudai.xiyikeji_info.handyflowers
    1⤵
    • Loads dropped Dex/Jar
    PID:4481

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/.jiagu/classes.dex
    Filesize

    6.3MB

    MD5

    b9a6c631753a0780ad7e21d22f20968f

    SHA1

    1ccfddd5ea931b07e6a6946c757c31a25cdf91d2

    SHA256

    4b40f65f57c92da7808d69482d0204bf67d684694be7d793235907c4bb09df54

    SHA512

    794c7dcec09fbfb8a49dc6b1ae1d73e8415323f5199d6a9e15f406e15add523725aef09fabc0eb977561a94ba79327783a8c1192f61322e78269d44f9a9fec18

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/.jiagu/classes.dex!classes2.dex
    Filesize

    2.7MB

    MD5

    4117252ab00fe8f576c56a4ab2d83f58

    SHA1

    355f7c6c51704b8ede0bbbc38d0cd7c5f6be310e

    SHA256

    6a69767a290cc323742f68e6e811c08f8633f69d69646be2791c48f67d8638de

    SHA512

    350bbac01315219b205e23fbcaa6f0ce42bee76864c174c99af7a6505baa456673dbcc8842602ddf0d94ffc7fc27d8ca6f5ad15afd5042591aa2120b100896c0

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/.jiagu/libjiagu.so
    Filesize

    491KB

    MD5

    940317093cc329d45cf45ea8713b1c1f

    SHA1

    3f9ff8cef8e41d03ea714b8d5f030ad1fcaec0be

    SHA256

    57f0ffa7062aaa03074648a0c9df78ed9d3f78c2f07fb846b11bb1b667e246bc

    SHA512

    3f40076d241bc3a2b83e56d01e826b8cb7d310a67128ac8b1165bdb93dd917c6a7219c1e65dbd8a40432fb38331828c7171e266e8474dfc69db2675e29e2723f

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/databases/MessageStore.db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/databases/MessageStore.db-journal
    Filesize

    512B

    MD5

    e4ee17f7faeda925b1937250f6cbd41a

    SHA1

    a88ae4032546d08b2b3c75893b460013b7ea1b48

    SHA256

    1e0dbe98c9cd443b9aab4f7a0185c41c610882435fe7fcc717e50af5a19ec432

    SHA512

    2a5d2856c90e9d5285914fe1f9f63ad35d7f72145766afb347f43fcdf5cb38cdcf3a6e4d0e28d600afcff88c959d6d00ace64a84b26879b8ef26dcf842601bb7

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/databases/MessageStore.db-shm
    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/databases/MessageStore.db-wal
    Filesize

    48KB

    MD5

    57339b44a10032860545a5731ed44bc8

    SHA1

    e2bfc45570f8e6c8c56bf11fc0828762fd15673a

    SHA256

    74017819ccebb0ddce23832e4f4d8ed94612b50982a404bc40761f8d42cb5efa

    SHA512

    3ac60e1fb9ae192294d1ca8ebe2df91898cebad9631c3d75dda749fd74ffac887569098211cb0136094fe88b73a7945d64ea77631fc2f1da82d96dbe6415a321

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/databases/MsgLogStore.db-journal
    Filesize

    512B

    MD5

    0676a4212b2987c044c849a117035242

    SHA1

    96d57c2efb0a34fab74ecd2d1de51618c112babd

    SHA256

    4f1f16d00c4ccc4112ce0538b01353328cce7222d36323983be84479999ae747

    SHA512

    fc0cfc95fb7c33845252e2dac7ab56dbd5fac6c9500128b931e258ff740b61933374fdc399ab1d117a72c0b653e35d9d5ebcdd8ed897256e5bc775ac2139db0c

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/databases/MsgLogStore.db-wal
    Filesize

    68KB

    MD5

    ad1409284cdb74206eb745ad61c394d6

    SHA1

    5fca89e291cb2795306593f19b1b74be33f22002

    SHA256

    170932c0cc4afbdcc82c38597f7353e179e55c28d7cd44f0c87b0c0e9327501a

    SHA512

    a07afa2fef3aaea4cb87f5ddc6aa05882142d696f48ab1de645b16a88ee82bc811c1b3e233487e8edc061852fa65f74d33e66d426ca2c0c20766610fa724defb

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/files/.jglogs/.jg.ri
    Filesize

    307B

    MD5

    a718326def87979f9dc225f1a99be332

    SHA1

    580abdd6cd94080afeab77ea12fa4d864cee1c49

    SHA256

    7ac294009e0519ff2b4b7a3745128c1ca8d3898fa390d67c325a7040cb932ce3

    SHA512

    fbcf404c3ffa10716009438142d2c380da6469d3f6cc7bf78b2b373b1e0f2436ad6c118dc70fc21c4cc35e2d717a392f172d2ac71f4c1303d52927a69595e177

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/files/.jglogs/.jg.store.report_cf
    Filesize

    32B

    MD5

    fcd78ac2d16e3ab5766d08bff628c654

    SHA1

    df156dd961fd9d92225f98e4003a623b72814ef2

    SHA256

    183674485b1069a5b82c02760d4731bb66dc05038b158d4c138bb76731d7bc59

    SHA512

    b4986a45251c91333a4a6109940487f11469e3b94ddb3a0986e4c2b4db0a1dccbd0723a19abc6c104d92275f7128c2ca09b18cf670e4b8c626b856d9f670f476

    Download Submit

  • /data/data/com.wuyoudai.xiyikeji_info.handyflowers/files/.jglogs/.jg.store.report_pid
    Filesize

    32B

    MD5

    a3d690b36706e11afee5bc808bcf333c

    SHA1

    e625b2a09b4967129279d899ec3834f50bbdf050

    SHA256

    e52f9e36b71362644d0c5183dc5916499e3058c92d50b47db7158d41a1e0299f

    SHA512

    dc259d11d8d3873cbbade55aa7afd5a596e073a6df1789b78a240a0c1359128695e38c036515daf43fc7c5ea52b38662fb7bb8aa4ade837db8c86d89300a36f4

    Download Submit

  • /storage/emulated/0/.DataStorage/ContextData.xml
    Filesize

    111B

    MD5

    c25f6903cd639cdd5c5563c616ddfa1a

    SHA1

    7fb21056d0b09797beda31ca28d7b5912691472d

    SHA256

    228194ad41aecf76aea43e2cb9c55973586e0187404808f60f8f118f6a0950b3

    SHA512

    e9ad4caf406d01173bcd92c3c8b20ffa56d4e2d0d505b8b5b3f3c15ec9a4404e529c533dd92f19cec9b26e5d4dfd160c4107a83b3fb77a15630da4fc5ee317f6

    Download Submit

  • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
    Filesize

    65B

    MD5

    9781ca003f10f8d0c9c1945b63fdca7f

    SHA1

    4156cf5dc8d71dbab734d25e5e1598b37a5456f4

    SHA256

    3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

    SHA512

    25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

    Download Submit

  • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
    Filesize

    111B

    MD5

    f125d0e4f2d1275af7307b0b978a9a4a

    SHA1

    c16efac485aa5a85d250ed0bd893bf92bda4ab74

    SHA256

    be9a976829d2a1b9b430e99ff4f0a7aecebb77dc46f387de8105a9ac9f355a2b

    SHA512

    2debf17697d39e06f1b328874d099091a309f66a957d902f4536eeb51026bb62e5806e508962e4516406aa846f72bf4e2c3f235b71d10dfd7a2fb03607704080

    Download Submit