Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

19898474b9...b8.apk

 

WeChatPlug...01.apk

 

WeChatPlug...01.apk

android-10-x64

1

WeChatPlug...01.apk

android-11-x64

1

btgame_zipalign.apk

 

res.apk

 

res.apk

android-10-x64

res.apk

android-11-x64

Analysis

  • max time kernel
    2889064s
  • max time network
    149s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    23/12/2023, 12:59 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WeChatPlugLogin_2017090601.apk

  • Size

    959KB

  • MD5

    33fe3799b78b124d5364b73bd5f3488f

  • SHA1

    7ef154d75fde2f46ef49e0ab054009e9ff4caa19

  • SHA256

    8f11eea8bec58de32b0668afbaa438e764e4711d4f6bb7af6acaf17af3c50acd

  • SHA512

    602b6582ddf7ad1ad91232339343904da550aba2fab3ab0481a86eb4aadfe9634deb77bc6230b4544113b6a3707a778c7141fd7a32d09e1e1693c46a4d5edc91

  • SSDEEP

    24576:Riye8SzRtjuRJtaalMcZ+S3mXUw9ayPmdwT:Ri00VArZF3m38yPmC

Score
1/10

Malware Config

Signatures

Processes

  • com.btsf51.wxplug
    1⤵
      PID:4635

    Network

    • flag-us
      DNS
      android.apis.google.com
      Remote address:
      1.1.1.1:53
      Request
      android.apis.google.com
      IN A
      Response
      android.apis.google.com
      IN CNAME
      clients.l.google.com
      clients.l.google.com
      IN A
      142.250.187.238
    • flag-us
      DNS
      cgi.connect.qq.com
      Remote address:
      1.1.1.1:53
      Request
      cgi.connect.qq.com
      IN A
      Response
      cgi.connect.qq.com
      IN CNAME
      ins-0xt2bis9.ias.tencent-cloud.net
      ins-0xt2bis9.ias.tencent-cloud.net
      IN A
      43.154.252.110
    • flag-us
      DNS
      ssl.google-analytics.com
      Remote address:
      1.1.1.1:53
      Request
      ssl.google-analytics.com
      IN A
      Response
      ssl.google-analytics.com
      IN A
      142.250.179.232
    • 142.250.178.14:443
      tls, https
      3.0kB
       40 B
       3
      1
    • 142.250.187.238:443
      android.apis.google.com
      tls
      5.0kB
       8.1kB
       22
      19
    • 43.154.252.110:80
      cgi.connect.qq.com
      100 B
       52 B
       2
      1
    • 142.250.179.232:443
      ssl.google-analytics.com
      tls
      1.3kB
       5.9kB
       8
      8
    • 142.250.187.196:443
      tls, https
      922 B
       40 B
       2
      1
    • 142.250.187.196:443
      www.google.com
      tls
      18.2kB
       11.0kB
       38
      31
    • 224.0.0.251:5353
      3.7kB
       11
    • 142.250.200.14:443
      https
      51 B
       50 B
       1
      1
    • 1.1.1.1:53
      android.apis.google.com
      dns
      69 B
       109 B
       1
      1

      DNS Request

      android.apis.google.com

      DNS Response

      142.250.187.238

    • 1.1.1.1:53
      cgi.connect.qq.com
      dns
      64 B
       128 B
       1
      1

      DNS Request

      cgi.connect.qq.com

      DNS Response

      43.154.252.110

    • 1.1.1.1:53
      ssl.google-analytics.com
      dns
      70 B
       86 B
       1
      1

      DNS Request

      ssl.google-analytics.com

      DNS Response

      142.250.179.232

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.