Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

8a22a10a04...fc.apk

android-9-x86

7

8a22a10a04...fc.apk

android-10-x64

7

8a22a10a04...fc.apk

android-11-x64

7

Analysis

  • max time kernel
    2367428s
  • max time network
    164s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    20/12/2023, 06:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8a22a10a04cad1175c8100b4c93eaf8af2d9e274434ee5c1219243bcc65cf1fc.apk

  • Size

    3.3MB

  • MD5

    9a952386b4fcf7380232dfbee97674f1

  • SHA1

    d1db16cead43aa626fba18da11487fa81d953ef9

  • SHA256

    8a22a10a04cad1175c8100b4c93eaf8af2d9e274434ee5c1219243bcc65cf1fc

  • SHA512

    d90b5f907ffe84b940822ae78ece62a09bf234f13610b29a4642df33e9fd7f91fd2bc40d774a8d1c653ee82ee427f35464c2ddfc03bff60be4645defc55c2ffd

  • SSDEEP

    98304:HImHA8NjiFrCzGB6VCKB8dscYWDH5MbN5zOEHpxCt8uHRV:omg4jArCzG9dscYYAN5zpwt8uHRV

Score
7/10

Malware Config

Signatures

  • Checks known Qemu files. 3 IoCs

    Checks for known Qemu files that exist on Android virtual device images.

  • Checks known Qemu pipes. 2 IoCs

    Checks for known pipes used by the Android emulator to communicate with the host.

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.ylyh.youai.yisou
    1⤵
    • Checks known Qemu files.
    • Checks known Qemu pipes.
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:5076

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.ylyh.youai.yisou/app_crashrecord/1004
    Filesize

    229B

    MD5

    08333950f2da25b4f66d9bb38300e26b

    SHA1

    653da8b883917da209e2987bccacfeb7f49e9cf6

    SHA256

    edb66e80b2bdd867d82b3d7f8b16e2e866f43ef9e22b81e4969600225106f265

    SHA512

    943f8f75fe03c7f458508608fc5564fa42e94cab214cbf87e81c3f9ded3e4ef2c46a5aec60cc64899f7a62094ef5c31c40a0705e20ff96fb3bd0f1717ee3ff53

    Download Submit

  • /data/data/com.ylyh.youai.yisou/app_crashrecord/1004
    Filesize

    58B

    MD5

    0d210bfb2a0e1f1b4c082a6a0f79de07

    SHA1

    bb8ed9e364db79d1d9f2fcde3f15091893222faa

    SHA256

    988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

    SHA512

    536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

    Download Submit

  • /data/data/com.ylyh.youai.yisou/databases/bugly_db_
    Filesize

    52KB

    MD5

    0cc4ef56f1a62f9a65ef7f2c121f6da2

    SHA1

    830fea9b323e5821dd88bc968b2200f66ebfa593

    SHA256

    f9b2964fc10d570423243e9b3599b52e68efc4687b5de7110fa395c274554981

    SHA512

    3ca4db83a0893ca0b69795dee6ac1e6170783dd7b363a9e762a63c632f8f5de18d2b12d507bf79b4f406ef0b23fb161dd8697889bbacce9c94506df52f50ec4c

    Download Submit

  • /data/data/com.ylyh.youai.yisou/databases/bugly_db_-journal
    Filesize

    8KB

    MD5

    d3570e126dc72aed13253ad208dd8f2b

    SHA1

    3d343209a7a0f3bdf45837df1c7a60446f8290bd

    SHA256

    2a2abcef5a432ff62466f638991bcf9caa14c389bc82f81d4a051f29312577e9

    SHA512

    db533a808407bfb88f24b070a0580c13dd7a8f9fe6b501fb9f61e42ef60df7b866ad5ef5bdd34fd8b986277f3658d0d5a950d5da1c7f2e86733f095001a6dd86

    Download Submit

  • /data/data/com.ylyh.youai.yisou/databases/bugly_db_-journal
    Filesize

    8KB

    MD5

    e3626d00853f4499a6d36173a882248f

    SHA1

    382e8d536ea9f64beee3573e35aa092948b0aa16

    SHA256

    77eabf7b7230ba82b21f919db235911b6cd1fb30d966d3cd1f443a81a3c11521

    SHA512

    2e2addb9dd6d3492748923050d90ce6a1ac882621b9740f4285191fd0f41db1a4618a735cedc3bb819b40f0d2af571d8072ca0f899cc4a3166f35eddb03dc5a5

    Download Submit

  • /data/data/com.ylyh.youai.yisou/databases/bugly_db_-journal
    Filesize

    8KB

    MD5

    911f3cf6d643c2245ba5a9c510904d02

    SHA1

    20ea112ed28643a48b6698ef2e0f098c50c998ad

    SHA256

    58af40d017316b964752ba6c9e36643922ae0a87cd27320632b3cf5a352b9f81

    SHA512

    766f5597cd0234a55b2bd4aca1c6ad78d7a4dd42b07ab162e9c48e1a46a65364970d4a3d1f7f9aa9138f36dc819220dec4a528e7e0edbb4b901e790d333203cd

    Download Submit

  • /data/data/com.ylyh.youai.yisou/databases/bugly_db_-journal
    Filesize

    512B

    MD5

    3491f2422771892a2c9865ed0f460549

    SHA1

    6426f9c98fd8375388b0627852562072d7cda90a

    SHA256

    a7e6f17196e4f3e40e5ad95f95baad99908b26603b964587f17530c743f5a931

    SHA512

    20987582c0ddf5f7025377ef23e649c36337560d81922cc1cf6b637ae0a606d1e07d694e584ff699d54944179536bb310d8c72dffbf3d5aac8d2f9b169360f7a

    Download Submit

  • /data/data/com.ylyh.youai.yisou/databases/bugly_db_-journal
    Filesize

    8KB

    MD5

    bb962192246a053201d7789cf2c20ca2

    SHA1

    446d7d4551d24b5802bf3153ae4f22e3539b3e4c

    SHA256

    9dcd3b97a7bf23b830873776faf8f074a4bf8aabb52ad02ac90415d44cbf293c

    SHA512

    6f8118bdb7f9e774c2fea5c0734f59d16670a9ebd4b404f4390ff5127c4bd0dafdb037d1f623dd5d5508885bdcc29d1bdcc7e1064848a9255442bcc2145dc317

    Download Submit

  • /data/data/com.ylyh.youai.yisou/databases/bugly_db_-journal
    Filesize

    8KB

    MD5

    aeffa5dc2de579a0f5e4e987457393ef

    SHA1

    b324467e3f759026f134026704b2662f2cc8356f

    SHA256

    68b339b6f7c7b22eb54445b33f5d1ba3f3e878f06c262bfd838fed79b5db29f1

    SHA512

    8652dae079c414bb55f20a88f2dad82f2ed4cc26fe2547da6a26c36edc3335921f2863ae35d793ed0756c34feedcb19e74d931677d7f00442254a53cf78a2a33

    Download Submit

  • /storage/emulated/0/.sys_public_config/INSTALLATION
    Filesize

    51B

    MD5

    3edadfa6ea3335696902964eb123f63f

    SHA1

    e60ba12643f6c0da16c8fa80cdb395cd8fe9bc92

    SHA256

    3be0e9d43fe308fed5ae8571255a90cf875d0f03a3e93062332ce84aee1e60f3

    SHA512

    abb86c82d2ce2f899b110ca6df14cb12908dabf8f91df4ae4eb8f64dbfe37fa6a0d3b09313aa73b616eebd24ccdf548a42e309ff4dd6a19468fd96755e31ce30

    Download Submit