Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

5904571da2...28.apk

android-9-x86

8

5904571da2...28.apk

android-10-x64

8

5904571da2...28.apk

android-11-x64

8

__xadsdk__...__.apk

android-9-x86

__xadsdk__...__.apk

android-10-x64

__xadsdk__...__.apk

android-11-x64

gdtadv2.apk

android-9-x86

gdtadv2.apk

android-10-x64

gdtadv2.apk

android-11-x64

Analysis

  • max time kernel
    2590827s
  • max time network
    159s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 17:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5904571da29cf67ae748693aeb467d169aadd565edd45f3c6933764251e62428.apk

  • Size

    15.1MB

  • MD5

    68f0006a9ea0abf4cd738ace2ece7d46

  • SHA1

    9a35be7547a56d8680abb4c8f631d947f033824d

  • SHA256

    5904571da29cf67ae748693aeb467d169aadd565edd45f3c6933764251e62428

  • SHA512

    3b83d770b4e65e8642751bafb526db232a153ca8a20902ca33751ffd0ae9317e8e9725aa0b4271c3cf7235fd3fb6df86f1ed80221f122b193f780dd54a6cff87

  • SSDEEP

    393216:RVCus1MKnmk6N4QXwU3HuHeoKxjo9AVBNd/XG/P:WMKz6hXFObyBNs3

Score
8/10

Malware Config

Signatures

  • Requests cell location 2 IoCs

    Uses Android APIs to to get current cell location.

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.utooo.android.knife.free
    1⤵
    • Requests cell location
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4220
  • com.utooo.android.knife.free:UpdateDownloadService
    1⤵
    • Requests cell location
    PID:4266

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.utooo.android.knife.free/databases/apptimes.db-journal
    Filesize

    512B

    MD5

    370813b5d13ccfd11c5c8bef33a7fce3

    SHA1

    1a28786e00bdddf44b098c71b9687e83b9272655

    SHA256

    cf0028aa887e592ea3eb89bca9ef39a769f9431471ae6b4b66bf68834f7970d5

    SHA512

    1dfe2c6337f6520e0af0985c70e143a5eb2bfe69cfa41574c57f13bcdcd5088b9062f7a417ac1b3c651e35fc864d070296a4aa0c71c939fbccb8aa70b9857c52

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/apptimes.db-wal
    Filesize

    28KB

    MD5

    da4eda55fb1e62b9896f0376daf04413

    SHA1

    0cd1bd6b8307fb9d119a2591fd4adc46f0fb4abc

    SHA256

    a609a89c722e52b23477687fbd69c2cab29e148655158713ebf67a4df807a890

    SHA512

    61c66b864dbbdf8662cfb0c7bda70fd52c6baa0124c2d807549dbc176af1947e604b6bfda2ddf2acc85c6bfc4e7ce62167d7b4da7300d3452455bdcfd61ec8b2

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/feedback.db-journal
    Filesize

    512B

    MD5

    d04492381891510245d7708fad7e4693

    SHA1

    f61b037e239295a2aed62b38b3acc856969d0f42

    SHA256

    80ab267be808e0152403c06208c37eef598218afe38e739e40d371394c21a68e

    SHA512

    8349953f5619cbacace162449b8422c3349564cc95e765d24a45c7974468fd527d4e5e7855a07479928e72c142cda55a61f79f0bb8b1693ef7f17fd0a4b5624d

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/feedback.db-wal
    Filesize

    28KB

    MD5

    ed83f9426dbb7a84ba41dcf03944e886

    SHA1

    742defbc052eade1703dd1b28d903c0b5c731281

    SHA256

    06bab9d3c5bac248abef222e35a1463b9d5e8ee47a4b7a08e18984ea2ea67ab8

    SHA512

    d35e9791d05f43e09e2884545b78a8cbff487ec032e89731c21833dff2c8ffb613f8f3e77af81b6dba866d72771b763525a1b07b48d6b081f65c41194931b16d

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db-journal
    Filesize

    512B

    MD5

    644e0005dd5d7b3f7a07f8e396061ffa

    SHA1

    2acff48c26d631eb1b53fe10c174908db8edaf90

    SHA256

    d6a7f160c21fb2f75f598e8d815faf29a9db8ed63d313fe39fde56691d476f3c

    SHA512

    08763cc98ed7224883d5b80ce253bd8f6ae61a35f65169b2736f5e707b8e460c96fff1c6fde22c4c5931b706e8fcc3fa8093014f23784e8e6b8c5e1b14921c9b

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db-wal
    Filesize

    44KB

    MD5

    2260125daa5724673a3fd8de70a42dd2

    SHA1

    7dbd404f3c53741f5365ca22d353cd62a1ae9484

    SHA256

    2d78933d0faa75c6882d05573f64e81ec771320585a2eb1056cb8d4bc0bfce4a

    SHA512

    46b8c7d786753b395c52c081d97aabf959fbb3e26a09d84188ab8f8e7ba28ba0a85ebb04d4fb33ed199cd3462ed41642c85df26f844b9f13124e22d2bae6b4b5

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/xUtils_http_cookie.db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/xUtils_http_cookie.db-journal
    Filesize

    512B

    MD5

    d88acc33c07928078b8d77373969fe6a

    SHA1

    5d8ae23309fa23f7ab321742bb7e3cc6fd90913d

    SHA256

    7b739770911dc9e5af4a5ebc8ff26cfeb45ff3f562d04a6922adb47cfc7c7ebc

    SHA512

    aabe5c1a93c6c7abea75c3350cca57c07455be979bd960febffebb20efc9ab0bae92c6526ab88791620097c5d14c9092d56d1ab1db8d8c9d3a855574c1361040

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/xUtils_http_cookie.db-shm
    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/xUtils_http_cookie.db-wal
    Filesize

    20KB

    MD5

    abb181773a7ac1c9541dabed71d86d7a

    SHA1

    a57ad8525276bdf9df4f85ed39c565d1fb12abfb

    SHA256

    cd6a3ed1522feebb9c3e1b5ac47468b3b9817991fa823f6b2b19828075b49cde

    SHA512

    204035ca2373f0b9a9d49c44c7c89173d817aef1ce4258b2ee4ee6248bf50585ad8259bf7120722febbd3a2f9641955b7912efe96b4807bd5563b97f6ada113d

    Download Submit

  • /data/data/com.utooo.android.knife.free/files/.umeng/exchangeIdentity.json
    Filesize

    162B

    MD5

    573b40b30e26de2e500f78f8272a50fb

    SHA1

    8172842c2fecc165e8ae81b6149649e76222d878

    SHA256

    9e6bb0ab95ab9deb851b99a7c2a8e5cf01f202111fa6bc17d0220adc86c67744

    SHA512

    7c0734562d0ccf87e443a824cd82e4a1a7450232ca3e93a5a2bdc1e39da5cd5fff0fce39c2898f046eb8bbbe40228907793adf8ac3e18f5abe458f91f823cbe0

    Download Submit

  • /data/data/com.utooo.android.knife.free/files/umeng_it.cache
    Filesize

    415B

    MD5

    031382305eedd9af40dfc028e485e2c9

    SHA1

    21ce44e751e884ef66d62250ec5f18516e2feeeb

    SHA256

    6cc75987f9bde4fdb1cc4481d79318f0eff6996ab48ffd4b30a7c32f5123a787

    SHA512

    c73961c90cbe12acfc7ebefe4085aa6c04092d7df84eb4bc835914a4db15e768ee4c44be52a9b64f1c6e893f08e58a75eec3e2af6945e74048b148d54f25f19b

    Download Submit

  • /storage/emulated/0/Android/xml/android_uniqid.xml
    Filesize

    138B

    MD5

    e27748fea3d9d3b145317382ba33841c

    SHA1

    e4befac168457be33583e038777547f76ae5e7f8

    SHA256

    f979a2e2d0caab8b00faca9ef69d1a019832b54cafe2304c4555373a622d7d8c

    SHA512

    be3b76effe1f46eea0bc89b0d8fb7b3e5b4b57deea4549b9f035073d5a978cceeaaab4630ce6f69ec16338caec02ca03b0069dc1927792634f87b50d2a5d6b98

    Download Submit

  • /storage/emulated/0/baidu/.cuid
    Filesize

    89B

    MD5

    d452331ee66bc22be66c649ac1edd995

    SHA1

    ce31e38aa9340ddcaa7cb72c6bc8662059c2cb37

    SHA256

    12a6f87a03955664c1ebc5262f6a84345f685440b8dc888f1adf8063410e3c99

    SHA512

    300055145c2f562339b8fd345ef85bb085689d245dae49868c59f8bdf88c581649479cf1c431055a70d206af31eaabedd0190b59d2f3e322b43bb6ba6113521e

    Download Submit