Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

26bedab12e...0d.apk

android-9-x86

4

Analysis

  • max time kernel
    2819297s
  • max time network
    153s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 13:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    26bedab12e4f0ce95ff53f54e627b14bd58a4f48e139c25a1bc814bc2b12470d.apk

  • Size

    26.8MB

  • MD5

    0532b9e64858bb4b99b088ec5da98ade

  • SHA1

    544a8425805688b31051d53435410e62603a84ab

  • SHA256

    26bedab12e4f0ce95ff53f54e627b14bd58a4f48e139c25a1bc814bc2b12470d

  • SHA512

    f93a4f6fa641ca8adc5438deced067f2be3831cdcef40150cf7be7431576688ca23c897d779fb1fd3c456687cae6bb1c644f702050d46405de59ead632828e54

  • SSDEEP

    786432:3eCkYBjACsMX581+2Rom1gWISrNv6bqw7:3eCLsCsCqPR1PIGNv6bt7

Score
4/10

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.zhaimom.yuer
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4508
    • /system/bin/sh -c type su
      2⤵
        PID:4561
      • logcat -d -v threadtime
        2⤵
          PID:4589
        • /system/bin/sh -c getprop ro.miui.ui.version.name
          2⤵
            PID:4619
          • getprop ro.miui.ui.version.name
            2⤵
              PID:4619
            • /system/bin/sh -c getprop ro.build.version.emui
              2⤵
                PID:4647
              • getprop ro.build.version.emui
                2⤵
                  PID:4647
                • /system/bin/sh -c getprop ro.lenovo.series
                  2⤵
                    PID:4673
                  • getprop ro.lenovo.series
                    2⤵
                      PID:4673
                    • /system/bin/sh -c getprop ro.build.nubia.rom.name
                      2⤵
                        PID:4698
                      • getprop ro.build.nubia.rom.name
                        2⤵
                          PID:4698
                        • /system/bin/sh -c getprop ro.meizu.product.model
                          2⤵
                            PID:4722
                          • getprop ro.meizu.product.model
                            2⤵
                              PID:4722
                            • /system/bin/sh -c getprop ro.build.version.opporom
                              2⤵
                                PID:4747
                              • getprop ro.build.version.opporom
                                2⤵
                                  PID:4747
                                • /system/bin/sh -c getprop ro.vivo.os.build.display.id
                                  2⤵
                                    PID:4772
                                  • getprop ro.vivo.os.build.display.id
                                    2⤵
                                      PID:4772
                                    • /system/bin/sh -c getprop ro.aa.romver
                                      2⤵
                                        PID:4798
                                      • getprop ro.aa.romver
                                        2⤵
                                          PID:4798
                                        • /system/bin/sh -c getprop ro.lewa.version
                                          2⤵
                                            PID:4823
                                          • getprop ro.lewa.version
                                            2⤵
                                              PID:4823
                                            • /system/bin/sh -c getprop ro.gn.gnromvernumber
                                              2⤵
                                                PID:4848
                                              • getprop ro.gn.gnromvernumber
                                                2⤵
                                                  PID:4848
                                                • /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
                                                  2⤵
                                                    PID:4878
                                                  • getprop ro.build.tyd.kbstyle_version
                                                    2⤵
                                                      PID:4878
                                                    • /system/bin/sh -c getprop ro.build.fingerprint
                                                      2⤵
                                                        PID:4903
                                                      • getprop ro.build.fingerprint
                                                        2⤵
                                                          PID:4903
                                                        • /system/bin/sh -c getprop ro.build.rom.id
                                                          2⤵
                                                            PID:4929
                                                          • getprop ro.build.rom.id
                                                            2⤵
                                                              PID:4929

                                                          Network

                                                          MITRE ATT&CK Matrix

                                                          Replay Monitor

                                                          Loading Replay Monitor...

                                                          Downloads

                                                          • /data/data/com.zhaimom.yuer/databases/bugly_db_legu
                                                            Filesize

                                                            4KB

                                                            MD5

                                                            f2b4b0190b9f384ca885f0c8c9b14700

                                                            SHA1

                                                            934ff2646757b5b6e7f20f6a0aa76c7f995d9361

                                                            SHA256

                                                            0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

                                                            SHA512

                                                            ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

                                                            Download Submit

                                                          • /data/data/com.zhaimom.yuer/databases/bugly_db_legu-journal
                                                            Filesize

                                                            512B

                                                            MD5

                                                            5e40efef55900e4da8ccc0cd59dd70db

                                                            SHA1

                                                            eb50c2c5f2e190761f5fbec0c7bc37a0ccb78915

                                                            SHA256

                                                            e17cbc0d6669486523b057333a16d4655e278aa02d1cf94520079a4d83f4232e

                                                            SHA512

                                                            99add5591e125fc0f32114434020a84e0ee18347c4953217fac8fb08a04b615cec00b38a7236055202ea2720f9616bda66532dceec3304095a233433056133d5

                                                            Download Submit

                                                          • /data/data/com.zhaimom.yuer/databases/bugly_db_legu-shm
                                                            Filesize

                                                            28KB

                                                            MD5

                                                            cf845a781c107ec1346e849c9dd1b7e8

                                                            SHA1

                                                            b44ccc7f7d519352422e59ee8b0bdbac881768a7

                                                            SHA256

                                                            18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

                                                            SHA512

                                                            4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

                                                            Download Submit

                                                          • /data/data/com.zhaimom.yuer/databases/bugly_db_legu-wal
                                                            Filesize

                                                            76KB

                                                            MD5

                                                            639737c8ab8a9418df215e95393c2146

                                                            SHA1

                                                            13857afab0ad1be722ecd7dc81b3d4640e51d940

                                                            SHA256

                                                            be561ae0109e527e475e93da9b806f30c52e0bb3bdf468b65f2b1816773ad2e1

                                                            SHA512

                                                            74286389b8c6771b9c42c7803f4315de0f4826e8b3cee3c022b7ad77036595536a2b445e3beffaaa897cb86f65f049911bbf874f7562eabdbc1cee19822c8ca7

                                                            Download Submit