Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

97daa60254...1e.apk

android-9-x86

97daa60254...1e.apk

android-11-x64

8

Analysis

  • max time kernel
    2664180s
  • max time network
    159s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    23/12/2023, 22:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    97daa602549f59888755f0a1ff242a843e5c7d6c11317e7382856f323c9d461e.apk

  • Size

    24.0MB

  • MD5

    5b8d4ccb3963fc9c8e58b8429d18f308

  • SHA1

    186c541c0e271409fb0f91997ef878103423ed24

  • SHA256

    97daa602549f59888755f0a1ff242a843e5c7d6c11317e7382856f323c9d461e

  • SHA512

    79ecb7dc59496f7cc1f3f00f7cccbaa03aab4526fba9b0ab9c52c04d1757c9eed6f3827be903e0ec3d2df6d5d86f6671b6060e2d56bf120d8be05147fbb5a160

  • SSDEEP

    786432:ygmUdUsvsPjy+TEoAIqbK/MtqQ0V9Kb+E/T7:yBuRvsLJTZX5/Mt4nE/3

Score
8/10

Malware Config

Signatures

  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell location.

  • Loads dropped Dex/Jar 4 IoCs

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.

Processes

  • com.firepad.snake.xrp
    1⤵
    • Requests cell location
    • Loads dropped Dex/Jar
    PID:4629

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.firepad.snake.xrp/.jiagu/classes.dex
    Filesize

    4.6MB

    MD5

    3eefe04e0031cb7784cc82008f19fe9c

    SHA1

    c2a729506ba7ab403bf93133998fdaa48f3eaa4c

    SHA256

    a90eb5c13c0f80b9d56f80ac75582178aeecdfe62b968c2a3ce5e278e6868866

    SHA512

    944ce176deb7c767860bdef0a8c747a2e1c6658611e988c8fd52a7b6f440a2e01d89e45bb12d0db586c73262eeb9a5f29cbf77ccc487c2452a463fd3170922e9

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/.jiagu/libjiagu.so
    Filesize

    475KB

    MD5

    5aea02f4e4c77fbf2e7a27f7ca9cc06b

    SHA1

    522db1748608e9173547b29b7aa82ddc3542c534

    SHA256

    5a1c513b347e2a929769e2be67552c1d591704f08f7b5590282b66cc2c7d7bd2

    SHA512

    5c979a11f5e896829db906f533756efc1cf3c5a7e35ecc9e376a0aae818f2dada013441649feac2e188bd51affbbf35156e32fdc6552e185bddbc547f3850316

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/.jiagu/libjiagu_64.so
    Filesize

    509KB

    MD5

    289fb443987b114ee4237b4dd97672bc

    SHA1

    9b898410845dfaeae3af212b5df41177ba9b8f34

    SHA256

    a55e9ee18285b41a4ea1bf375930a5bdb603dbfc530a3dcb224bbded14e68210

    SHA512

    debbf2720c9b132b5923eaa9fcb372a72a97d574bce59789d06b645925fa2d6a27473aae4c9f1e4968614d44fd98a8b0fb1eec217a595fb5c80bcfc056705508

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/cache/image_manager_disk_cache/journal.tmp
    Filesize

    31B

    MD5

    8c92de9ce46d41a22f3b20f77404cc1d

    SHA1

    8671a6dca00edb72be47363a7071be65cf270373

    SHA256

    68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

    SHA512

    30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/.jglogs/.jg.ac
    Filesize

    32B

    MD5

    46b559079ce3531f5b3c739bbdca5a2a

    SHA1

    afb023def8ca0ea1cb95bd6db2b8f98aa4132336

    SHA256

    71979c11ef8c11df6def16ae868cda69f0a5688edaf0ca462174715be3dd8df6

    SHA512

    94446026501dfcbf34fb4c81f39e42488eeaa2b0df3d4a7ca52f1ad55d76171a0bf7209a2a31abffcb1cf24afe3e6ee3db07ff7da83f1b0c09670d9caceed5d9

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/.jglogs/.jg.ic
    Filesize

    32B

    MD5

    72bc9c18a97ff5fa55f87b2f55b9d756

    SHA1

    ec514aa3f712af978b80695a542b3765a38a75fa

    SHA256

    3b9faa93948f9b92b489886165f9d7ceec3e864cbbf71d3c68cb471c83c9eaf0

    SHA512

    5ab180414d5596de1844367307f122d0c5bdbb3763915515ce4411e349b9bc03d29a4c3cfd13762994af0fbe920d3ce63bcec5f3c9a4c452c510b0786af7a42d

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/.jglogs/.jg.rd
    Filesize

    32B

    MD5

    382cdfdf21b8e452c7c458c6d53ea000

    SHA1

    e29ebc47ec29c0929d7ccdb7d0476ce70e0c103e

    SHA256

    ab8065adc9ad04ce1f9feabf65e9ca44124b2bb0591a228219fd9443af065726

    SHA512

    3eac33663af2d4695f6ea6f84954297d3a333ebd4fdd560eb12d40df1b371e141be79c28b1d1662dffa05e0eb8f5e85ed18088187a172d3d2abe0c7c416c15e4

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/.jglogs/.jg.ri
    Filesize

    307B

    MD5

    acdfe12ad3bcc40276b97e40b12f34ad

    SHA1

    45f7531e635c3de444f096e811e6d7fec6682b66

    SHA256

    dadb638431dc45cfadaf20511c8d0c6d337a854dd1112c135f8b2cb5b8d955fc

    SHA512

    8b8042001c76673c7c93322108f75ce0a879fa468b74437c949151c2e494dab423286ab83d826ca00e5857345d42c2e7db5a7419b7d8304777b5260805829fa8

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/.jglogs/.jg.ri
    Filesize

    314B

    MD5

    c4faeacdab560f11dcd0293839ee2d94

    SHA1

    5e5a58591be84d182795a91632babd9878520aa2

    SHA256

    7becbdcbfe7bdf3c15ef3e32616b315aac0c90e729d24279e62ed8d56c96fb51

    SHA512

    c95a19af9ddc001b86e1dfe0cce94bec79469df0cfc0139bced2c47c214bd3b94da2c96307e005078cec997938dee3573019ef3438faae14f8f62dc8244be186

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/.jglogs/.jg.store.report_pid
    Filesize

    32B

    MD5

    9c3e6990140ff12c782ba8fb20c04c97

    SHA1

    532956fb49da1915d4b36b59ce15f61c6d84494e

    SHA256

    ace30b05ded2c2714ceb8bc5901a0cb72dae6b489c0ab97e384314faa9a60288

    SHA512

    49ab8bbdc2cd81de8054675f39816220fe7a2aad9f3cdd49c2bd96384ea64d282e789ad1acdf05c4f19411174250a399bf248be3a5de11239f72d5dd171e2bb8

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/.jiagu.lock
    Filesize

    27B

    MD5

    b1eea9c581653ccb27031bc1d7e2cef8

    SHA1

    479650c5f915571c815cb3a18049f34557c2cca4

    SHA256

    07e789c46072f3c1b750fd76104c3dc58f6f9b8c33887b14e20c036a559e58e8

    SHA512

    395ae8088e1829eb5e75c60aea1c79d3bbaa006d0b188db1ba8a51c9d2bd69d05943921a79c9b132060457227fa22190962393f163fe83a337c74b504571ec4f

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/adbase.jar
    Filesize

    152KB

    MD5

    40673b3ddc4e01246a5def6584282273

    SHA1

    795b345aacaca08604bbba653d0e8b06f0049e09

    SHA256

    e8dc297a5643ac3d9d9bcf1befff154356b02eb96ad3c2d8ecbcc8ac303e9f8c

    SHA512

    8715c59e8605be1b1c5348e04b7791ec6190f4877e52f5922cce21614f4ed4725cf4f3eb77bd852b20f85e5935caa7daccc6530879a0256eadc63f0a1b2fb06c

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/adbase.jar
    Filesize

    272KB

    MD5

    5687998376ff266e6a8731654fbee93e

    SHA1

    b465a823068a4edf99d2ef7886f03d525fd38e0c

    SHA256

    fbc1c7aa99036f25c79cdf90463d98e2420a92cceaf9ff1464e33edf04c22dc0

    SHA512

    e39c08e6f1befa2ecd8c373eb00078a1540750c545d178fbbfaa907738fd95eec68f22110e3d6cbb4fe92f8c1574bf2afeda6f582f0572231bf8c9e1cfa3f12c

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/extend.jar
    Filesize

    26KB

    MD5

    c17429ecc92f0734270b12c0872a0672

    SHA1

    1ef7f4b4ed8e69de899e68b3074929ba5a972f1c

    SHA256

    beac644a161f16cec4fc72aaa289e65d27e83a601bdfa36be602de33cbe3cd41

    SHA512

    76501c14093a9e293ebd36efc79f7091b4446acf6db9b955b6a502065041446165de36f59e19dd1be94030b33ca37a2bbdc381a108a3017c1db9a281cfd07b9c

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/extend.jar
    Filesize

    58KB

    MD5

    efbe6c369ca83fbbca6fb6d4f310eefa

    SHA1

    118c33b7d35e2495ad683d8fcd527d3b7a3d17b8

    SHA256

    272b17547fd31e07d421156730825a902790859c902ad77244a4ca0a2fe8b634

    SHA512

    cfd0a1efffa2b920c61c13b17e71a24a2c853e46c0a587d5ea6cb81467dda054bd01835e692c3b48bb4d5fddacf0e315af2fa791dfce3c3f2aa38eb473dea046

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/gd.jar
    Filesize

    691KB

    MD5

    977e422bd68727aa50852f8ea37dacf3

    SHA1

    46fc3adc060f1b048dba6f7bd8686e8ffa3f6c36

    SHA256

    cd89d75818c06410a3ed1f3c1ca326902a2ae276f04b0bc82846f9faaec5b07c

    SHA512

    43b30e7c2202301e5b33eb81ccc96a9b5c128409cc80d133002e23ca95d08f4f226e39331536ff10ef86882e0e58b474c7303bac56662481fc85c40d6fa927fa

    Download Submit

  • /data/user/0/com.firepad.snake.xrp/files/gd.jar
    Filesize

    152KB

    MD5

    539b79b0434963091a476041aa1ee2b7

    SHA1

    20666ed22946bac5c9876c67fd4c227f33be7dbb

    SHA256

    9a186f16d1234fa33e909bee82d819014382466fb43ff09c8e61ef550d12c2ae

    SHA512

    6640fbc2cb1b121a3512bd13571e2a451df900d1376a95190b0384893a46a8df630649d9b090f088db7f852b5ec9dcc2cf6eb90120c92ddac8307437f7315c5d

    Download Submit