Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

0b34c39ac9...af.apk

 

YQrgDAsDeh...ef.apk

 

YQrgDAsDeh...ef.apk

android-11-x64

8

Analysis

  • max time kernel
    2863531s
  • max time network
    141s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    23/12/2023, 12:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    YQrgDAsDehESdHIdUFKef.apk

  • Size

    14.6MB

  • MD5

    d58b0218336469caa59518fdc3d5edcb

  • SHA1

    f4b74f911e28a355ebba31045789115c34114754

  • SHA256

    16b1eb5f60f84cef2a63bf0db42993990c77aa8f012a7c142cb824d1a26bcec3

  • SHA512

    ba7137c2d25c76e556ef075f8fddaa638deab65b8b2f3a477c8d1c5b2e3a97bc61a1b2aa833eb6802753362dbefbd9866bf171f497f5c937f5a28463794f0131

  • SSDEEP

    393216:pzcFrQaYHexePe1Dz5y3FIDPa6cuFudD9CFoUBGUA2hkL5wmB:20aY7efy3FIRceyD929sfL5B

Score
8/10
evasion

Malware Config

Signatures

  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell location.

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
    evasion

Processes

  • com.izaodao.gc
    1⤵
    • Requests cell location
    • Loads dropped Dex/Jar
    • Listens for changes in the sensor environment (might be used to detect emulation)
    PID:4632

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.izaodao.gc/.jiagu/libjiagu.so
    Filesize

    496KB

    MD5

    0be54d2d5fa1fbbe2969b0e1ab052a16

    SHA1

    327662d1f5f6625ebcc867427680c0592195179e

    SHA256

    737fe51ea6b3570ca3687670edd6026b2e889bbaa0dffdf0a2e1b167b3680c22

    SHA512

    db6c195d9fd6657a7e65caf5dfd5ab33fc076d9d2bd919b8590e7b0178f3ec9ecfb6c00d0df1d2c172a32641a3bb019374a393d62e5d678804e7757ec1c30453

    Download Submit

  • /data/user/0/com.izaodao.gc/[email protected]
    Filesize

    6.7MB

    MD5

    7fcb29dcb81ff296b39ac021bd3d19e0

    SHA1

    1c45ccc2d059419e227c0e98ced577e874a31328

    SHA256

    250c0968c8a939a477172256a7a84369c668df4ec30a97d5f20012b897e66d4d

    SHA512

    f020f7f7cc5429d80ba4bab8d4c9d6c075ebc509287e978e1fbc9d4ca9bd468bf7b981f3f569b57563b1a7b0cccbbb7a1e373927b3a796dc05a8387e31477ca8

    Download Submit

  • /data/user/0/com.izaodao.gc/[email protected]!classes2.dex
    Filesize

    3.4MB

    MD5

    2c0695f07edb295b20b645cd0627bc13

    SHA1

    e39fbabb4e6622f508c10fcc395c621447746107

    SHA256

    2116aec7a4cbe29d1f406a0b14636e02921d11050fc3251fe5a991a7957194aa

    SHA512

    cc27eb88dbd2f564910cd05e509d5e4f723b0ee1dbdf440f126ca64c7e2bd5294e09f9341568c6aff756c50a0e7bb347b4fb89036b2e50189c306973fd4f327f

    Download Submit

  • /data/user/0/com.izaodao.gc/files/.jglogs/.jg.ac
    Filesize

    32B

    MD5

    4715ee7950596d088a3e54168fe5f031

    SHA1

    c52ce93036245b1ecba30bb58c8d2eb60af423cc

    SHA256

    e9008e35f7b2498f644d215e4019c597f5e263aacdb7f93a77d2026ec2ae9546

    SHA512

    da5f2c5989b4713c726c41d2a5b6af53771191ef7841fb9b9855f3447a0050e3360aade66a423b71d693b8d999b0decd37079cf714697c994909a78eff24de32

    Download Submit

  • /data/user/0/com.izaodao.gc/files/.jglogs/.jg.di
    Filesize

    340B

    MD5

    a69ba38e6059ce152c34178eb09f6166

    SHA1

    edaeeebb0ad5e59e0bd45c3ac9667522088ccf78

    SHA256

    843de8c6fe602359eb31afd3300fb42825e70df5c5ccb1b059a4bf6c84c9b95e

    SHA512

    b3502a22bf03b88e9ba16c8f22870369cb8555ca0b226c296ad6528f50e9c338be51f80dde7168880af7cb924ba9b729104612d9fb86235f0a41d75c421a84c4

    Download Submit

  • /data/user/0/com.izaodao.gc/files/.jglogs/.jg.ic
    Filesize

    32B

    MD5

    5b5b6396fa0c33400618f341c93bc40b

    SHA1

    bff4fa5e5c25fd341b015a74bb993c7ab83dc73d

    SHA256

    9729030ba83e6745be8a92bbd24213bfbaf9bc7147c1b141c574e4676cf289e3

    SHA512

    1c80847ae5a418efe9a4e318823fbb84164e9e4f0998a49a2b75ec20b6c0225b31212d3f3280fdcb43d76251033c2c1bd6aae730c3645cbcfcf310b77ef14f06

    Download Submit

  • /data/user/0/com.izaodao.gc/files/.jglogs/.jg.rd
    Filesize

    32B

    MD5

    2ff7fe450b25055bced8b1571ed5c030

    SHA1

    bbe90d3eff0710b666ec21975e588dc6c09b540c

    SHA256

    9e1d3ca8d613fca466e9e8200dcf79967e70a2bd1be296af4d59e24ba859a3a5

    SHA512

    9b63378274e37f549a5aeaf5abdcd4bb6763b367c67df0d20c1097fdb68e0564b099ef1ddf66e0c3a553949f905810162800e3504aefd50fdb1c998f562f927f

    Download Submit

  • /data/user/0/com.izaodao.gc/files/.jglogs/.jg.ri
    Filesize

    314B

    MD5

    03ac1a99cecf5c15b60b6887da71ad9d

    SHA1

    51c663f988c07bee353594edce295ad8341203fc

    SHA256

    2a3ab22a1fa714fb1ce929196a7547d515b4113b0280fe5b16eb4db9abd9d12c

    SHA512

    947b5663ec73d748a52ee846f3f41d06d50676a901506847f16a35775ce055d6f17412439c78c3081f910f63c65621b48ae5e82272dbb2480597bc19bf0fb457

    Download Submit

  • /data/user/0/com.izaodao.gc/files/.jiagu.lock
    Filesize

    27B

    MD5

    923a9170231ab8af7c79caefde1719a3

    SHA1

    f122e45d3408f9ac741bfc4e308242aced825abc

    SHA256

    9dcd02a7609d89c37153c8072eb509c541b1f1d2ad750bbf224bd5c89cfb6308

    SHA512

    85284b8d34bcb845ac1fc32aaa10e3a8018d67765f313fda79e3b754da770cec30d1223336aece11448e8336e4f679a25cd0792741d195bfe65a86cae7745faf

    Download Submit

  • /data/user/0/com.izaodao.gc/files/AntiCheatingLock
    Filesize

    1B

    MD5

    55a54008ad1ba589aa210d2629c1df41

    SHA1

    bf8b4530d8d246dd74ac53a13471bba17941dff7

    SHA256

    4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

    SHA512

    7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

    Download Submit

  • /storage/emulated/0/.tcookieid
    Filesize

    33B

    MD5

    4080ebb2313029ae28f617aa1b01fd03

    SHA1

    e413d8389d08857402c5b53f6452503b1006484c

    SHA256

    8df031164f5cd394ab5dd34c256191b3b4d5be1d62f0c3e6edc8c2ae1dd2254a

    SHA512

    3d8421ce818f86f27916a0823320caf2ceb8258e128852e96a81de5583f28a233a0db12c06c0f763546aa05711f156f69d4f9c194bf3fbddd6ab9a9537b17120

    Download Submit

  • /storage/emulated/0/360/.deviceId
    Filesize

    48B

    MD5

    4c4c5285293d5141f582aefa4e038669

    SHA1

    e01852a72e5a8e6f7d63a21426b515118196047b

    SHA256

    36c5c63f39ddf7a6a9c01946e4f78b95790aa734176802e793e95724a1b5b731

    SHA512

    097aa673273e307f7bfb7c08861ad389d4b5f7fae55d972a5c1636aa66d0b8d23b5eb9b696cefe0e5b942f23969dabf0147397aeca85fb9a4d75e0473104e399

    Download Submit

  • /storage/emulated/0/360/.iddata
    Filesize

    32B

    MD5

    0bd1a4931ac2ee355307f94f7eb4cd15

    SHA1

    fbba7a05c640f9bd37c041f3a43b1fc430fd8bc0

    SHA256

    0e44773d6eabdce8ce7864c555777aceb93e805db5a86069d56163574b694373

    SHA512

    edee66edc6bc8f1842761a30675bcd2e9b96819d5d8d494e148123d558b6f76dbaf34549358f103d9d47c732ad7c5c0309fcc86fcabd057c3c584f090f7ee1de

    Download Submit