Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

25ba48f809...0a.apk

android-9-x86

5

25ba48f809...0a.apk

android-10-x64

6

Analysis

  • max time kernel
    2816146s
  • max time network
    146s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 13:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25ba48f8091d2e29aba6af8b9c3b94e7f3e594513b8f28817c1f9033dd048b0a.apk

  • Size

    12.9MB

  • MD5

    618a9e4d7bf2b8d7530a76e94aa95670

  • SHA1

    7106cd777bc87da91e1f88e1b39dac1ced5fe903

  • SHA256

    25ba48f8091d2e29aba6af8b9c3b94e7f3e594513b8f28817c1f9033dd048b0a

  • SHA512

    7d303e9dce2aeb25a3939ce5a47421a48a63a5683f90c3039bafb6634546e3595f708b49b8787d9146ecb81e35c562e1b6628ecd5561439fe25da67fb8c8b095

  • SSDEEP

    393216:ORrHlrI0MLYdFe2el4B/reU29d80w0LD/L1r3ZIw:OVhI0SY/eyDeJn/pr3ZL

Score
5/10
evasion

Malware Config

Signatures

  • Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.yxxinglin.xzid374
    1⤵
    • Listens for changes in the sensor environment (might be used to detect emulation)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4250

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.yxxinglin.xzid374/databases/RKStorage-journal
    Filesize

    512B

    MD5

    29c3b164d5a3946e3a9f8bbef7a078ac

    SHA1

    0307017d01583358b939bbdc4bcdb98cd150721d

    SHA256

    d03dc92f04252bbdd5eb3aed6916e4016c21f686fb788af1c9eb22a4030eff76

    SHA512

    bdd3c9bd21a5e8cea66a41f4a89a5bce5096846802f847e642cc9ed712b3edbea0326378fbc5bd25af48cc1d2930b891c56550019a4d1499fc2ad73bad04386e

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db
    Filesize

    36KB

    MD5

    5d7ea1a23af19b4340cc8d90f28297d5

    SHA1

    4cfe95b23a9e98378d69c4290af81b51fbe76aea

    SHA256

    474c4a54534ed96beacad7cc9a805a3f53ec9c0522fc7bcc59771cf500a6a0da

    SHA512

    33071f4c92da0a3df01c4a61dd165df7c7e0f4f37753cafe02d19fc876a5e7fcbb01c069c804e140ab8bfa0644a55f50fd1373646d1c439f817baa5ffbd47f7b

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-journal
    Filesize

    512B

    MD5

    375cd1a9439257b385b3dd398e98d8bd

    SHA1

    785b13114567b44f5ea284434a6568ca6847f58d

    SHA256

    165b07e7b278c4913c8fa6ead9aabbe3d129e7cb7998520de077d010d4803daa

    SHA512

    8c7d1aba60f1ac12f248772467777300a2c1f5d050a3f5084c3bfde5df763f3822d04252e6f728cb59bbfe199273be530beaed27b8278477d2c889f6b575e6ff

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-shm
    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-wal
    Filesize

    48KB

    MD5

    41e27e6efa39c0b4143cb839ded1cd15

    SHA1

    0090def547f6e70735dc3f2b868dddbbf97c74a2

    SHA256

    c133417af60d6610d2450bef7d569f7b83718a8d96b42ae8ffe4a2496768679e

    SHA512

    630c99494281122adb68b28c403b01f03434712ddcc341972325d372ca3f48aabf8493c09d987f4831f9f31b2ef850f95941db9852d2842f5a26d9d1799320eb

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db-journal
    Filesize

    512B

    MD5

    bc42d5cdb8534c94d51360ae448ac18d

    SHA1

    de48f1ce0892f5d8fb8ff640c946d359ed05b0a5

    SHA256

    c3ee11be7b5286781618552824053d024beb14e990321bee44c2f9d4c8ae1acd

    SHA512

    9bee619640c120e895439f5bf6e85f8a2b286f8f5773e9e9818564621565f0cbb45b7ba58ff29fe96778d4113feedd805f3483c558fa1a8197f74c7c137cda58

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db-wal
    Filesize

    16KB

    MD5

    9f90b93f51f95d41c4a06d2aae1767ea

    SHA1

    4d9db3900c19e4e18f6713e7a687c94d0a02cc7b

    SHA256

    6b9baf216ff16239fbb8e8216868d939a441b9cf8a5fe69729cd442838353258

    SHA512

    724271fbec992410081dc860915ace7c0b400eeb6ae30f6c75f43dff913bd87264dc4acdf8ee66ea71706a7523bdbcc4854d8483b43094a41be751063a03718b

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db-wal
    Filesize

    8KB

    MD5

    20dcb6451e6ff82d62949a5fab019c94

    SHA1

    01a4b6e60b2f1306cbcb725dd91903c89dc12200

    SHA256

    a35e7d14f78258538d2c26e6e77b17478e3030464d03e82601a805c0aaae0e31

    SHA512

    ca8e52dac458c2dd8f48b5f3b8b4160f62e32d6c9ee097d1e277aa66fc563bfca1d6da8d5c1a2eaf78b53dd236cdcc1a840453bd2590e83be6b63728ffc3ede4

    Download Submit

  • /data/data/com.yxxinglin.xzid374/files/.imprint
    Filesize

    993B

    MD5

    45aa8132bacc64cbd70740bcc22bfabe

    SHA1

    e3dd947f55bf2001705ec3f5fb3894f97c88e27a

    SHA256

    18e598399f019b448fc8f5d9702ce2e0d89f26e01321b390c5e73e5bc6818a97

    SHA512

    f53b2c7a437f71da389fe07cb94d21fa2225ec8e03c0ffd4c86f8618771c48d621e941b9ee5749ac3fe57d7c4628fab1f0b078bc46c8e2a43aab36d057dc42a2

    Download Submit

  • /data/data/com.yxxinglin.xzid374/files/.umeng/exchangeIdentity.json
    Filesize

    162B

    MD5

    7e69e0b59ca717e92c630008378b2e3c

    SHA1

    9d13b50e8eb47530ffefe5b17211ea0d20c21936

    SHA256

    4c3826d5d5fbd575bc42ac95ef12a02c1162ddc12ebe2d77de7eb8d7ffe8cf73

    SHA512

    7996dea6d2606fd9c35d7bba00d0826b70ddd7bc923a4c9182398eb0578f2f4b746a8cbdaeaff5f41e40c30576e21c5528ef2312def6d389bd8a06907824366f

    Download Submit

  • /data/data/com.yxxinglin.xzid374/files/exid.dat
    Filesize

    50B

    MD5

    308d53220b9ee97ac34817847b4b23b1

    SHA1

    3c42e35a299a103124f054648f1425741c34458e

    SHA256

    995e3c0e84451b7e9fa70872eebd85a0bf9afd25ad762446a3e38446df889693

    SHA512

    86d4fe2b95858f2e7e56f47737ce53286b4dcb708e3f4682d7422e516b2e9241471c06e319eb60b660f27b55fef49bf15f8b056ad93738074e0088635c31d52d

    Download Submit

  • /data/data/com.yxxinglin.xzid374/files/umeng_it.cache
    Filesize

    211B

    MD5

    991079e16d7422ed4c6408e90c7331eb

    SHA1

    8dba190a1c369733b1ade1ba20ada956e2ba7972

    SHA256

    ad3bd7122009c67cfc7aebc33fb18b4648e2352789821311eec2e92d82ba20d5

    SHA512

    790073e84f448a4cd090a9929f39155183b41219e78c87e6676e4c57cd699b4b2d7a50499eac4c30f268baa32699572b6fd014a3d368b5f7e695c679d6de83bb

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/dso_deps
    Filesize

    148B

    MD5

    4adbe6d801c1bb9bfd9af83be52cd8ae

    SHA1

    bf30c126b39fcccc49a95c438e826279afe70724

    SHA256

    89f0c0eb6d902af4daf01198b13df99157b8cc3bd5252bf76463bd9e83a81dbc

    SHA512

    b0b922db5b0dc131939aeb85958230e350efab656831f8d94530f16f628aebf4cc2ddd1bb94e74293cc24934db9abd019a7abb02a4ade98b48ea709d08ac678e

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/dso_manifest
    Filesize

    93B

    MD5

    f049019de27a3a937680ead2d2ab0491

    SHA1

    da7e30a8e411aebc0174a4029287a911bd8ab260

    SHA256

    055b4a2335955bb0b7fbf290cf19489b457757b0f5ff4684dce994a88aa9df03

    SHA512

    04089120a08f9e18fc528d84f727349c5197e6a6dd494921d7e293e6dd5824d56a10eb832b5d058d6fb8dd555c2e645c00f338ca9ca7734a6b9f70ced405e2cc

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/dso_state
    Filesize

    1B

    MD5

    55a54008ad1ba589aa210d2629c1df41

    SHA1

    bf8b4530d8d246dd74ac53a13471bba17941dff7

    SHA256

    4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

    SHA512

    7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/dso_state
    Filesize

    1B

    MD5

    93b885adfe0da089cdf634904fd59f71

    SHA1

    5ba93c9db0cff93f52b521d7420e43f6eda2784f

    SHA256

    6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

    SHA512

    b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/libjcore110.so
    Filesize

    77KB

    MD5

    304c4775c940633d9bcd763ef3c59ff6

    SHA1

    88cec29d0123a91bd5fc01adf460d75137592998

    SHA256

    718cdf15c87ac89607e548ac80b4e22499afbbdf5f5df77aa8fb3e2776e719ad

    SHA512

    8265e7dfc99e7ab6195d879a6fe3ad0cd5e33919d75c6ecf33d38d301b754a2c576bcaa73e56c8b305838f726577fc042ee7e8ddd88cea05e25eab4fec82cc43

    Download Submit

  • /storage/emulated/0/JXCP/aff/com.yxxinglin.xzid374
    Filesize

    6B

    MD5

    b3f7bbfec740f4cbe5de472d061dada8

    SHA1

    5e06fae01dd3612ecaa8589fb19c87fb341ce88f

    SHA256

    c225b781250b0274762d16e0505db81c49c8f290fa130be159407aaa5b84c546

    SHA512

    cf42afdd3f9d85d10c8eb5458c9f8b9d728a8e653fc7b61e610ff6b7b1d14a375667745fc884506697b62f7866b510037bf29074a9dab4aabec2bc7c402e7548

    Download Submit