Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

5904571da2...28.apk

android-9-x86

8

5904571da2...28.apk

android-10-x64

8

5904571da2...28.apk

android-11-x64

8

__xadsdk__...__.apk

android-9-x86

__xadsdk__...__.apk

android-10-x64

__xadsdk__...__.apk

android-11-x64

gdtadv2.apk

android-9-x86

gdtadv2.apk

android-10-x64

gdtadv2.apk

android-11-x64

Analysis

  • max time kernel
    2563905s
  • max time network
    164s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    23/12/2023, 17:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5904571da29cf67ae748693aeb467d169aadd565edd45f3c6933764251e62428.apk

  • Size

    15.1MB

  • MD5

    68f0006a9ea0abf4cd738ace2ece7d46

  • SHA1

    9a35be7547a56d8680abb4c8f631d947f033824d

  • SHA256

    5904571da29cf67ae748693aeb467d169aadd565edd45f3c6933764251e62428

  • SHA512

    3b83d770b4e65e8642751bafb526db232a153ca8a20902ca33751ffd0ae9317e8e9725aa0b4271c3cf7235fd3fb6df86f1ed80221f122b193f780dd54a6cff87

  • SSDEEP

    393216:RVCus1MKnmk6N4QXwU3HuHeoKxjo9AVBNd/XG/P:WMKz6hXFObyBNs3

Score
8/10

Malware Config

Signatures

  • Requests cell location 2 IoCs

    Uses Android APIs to to get current cell location.

  • Queries the unique device ID (IMEI, MEID, IMSI)
  • Reads information about phone network operator.

Processes

  • com.utooo.android.knife.free
    1⤵
    • Requests cell location
    PID:5075
  • com.utooo.android.knife.free:UpdateDownloadService
    1⤵
    • Requests cell location
    PID:5130

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.utooo.android.knife.free/databases/apptimes.db
    Filesize

    16KB

    MD5

    a249e8719809d183c8e94144dba45b37

    SHA1

    41a9afbf47ee5c4386092996741ab5570aa2a67a

    SHA256

    f3848f9e027a72b5dbd8aa8d372b94812f13b3619ed43416101dcf9743d7daa9

    SHA512

    5d080dbe90d0683c48cdd6939e02b86508f1901940a149d47f156e5af277d3edccdfaf447bc922b047d2fa06c4d55c5df615aeb1fa97820a1e3f857ff96d10bf

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/apptimes.db-journal
    Filesize

    512B

    MD5

    d8783d4b1d89d40a0da01260b84c3f19

    SHA1

    4baf9c275165c0f66d6eb357f9ec8329c418966f

    SHA256

    ea80218ed9d40be8e39a4471e5a6ce971bb6ab9952e28fede48e9924851c7854

    SHA512

    67cff601351abc7f02089991e64e3d96f59ea2a604c385d0c6edbd724ec00f7e3aec621c231997ab19371f70cc4e621152888e1b27666e738ea6258be9d76b76

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/apptimes.db-journal
    Filesize

    8KB

    MD5

    013098fce85f737f2c907faaea372042

    SHA1

    c758c59a4a46e3bb0ae41fe0268831a5990a959c

    SHA256

    ae4a36bd1309a8f669930bd0477c430dd2a8840fb8464547007d6328e5c239c9

    SHA512

    2d23ff24eacded7cd3b669a4dc512b784d4232fb6c36d9d3621e23056ad1ceedaba3a1383ee41a3b478beefe1ea87def3dde454037d19f0d1c95db0733ffcf4c

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/apptimes.db-journal
    Filesize

    8KB

    MD5

    70f81b5932e0554ef2974d8788d61165

    SHA1

    5babbdf1cc689632d35357589358f1910cdb3c0f

    SHA256

    d3c397b5988b1e91e20a35658e3f20c22c03df2733e7a89c4d473dc5f95706dd

    SHA512

    a43bc708038b87934f98b5221cdea6661db9a007db3f257e72929d6b5a18023762ad2526deb6cd630ee269cb8f8f02fe63d1988bc439ba326cd43db0933e4f1d

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/feedback.db
    Filesize

    16KB

    MD5

    5a89f4b6fc34dc9e7a4b5cb0e7bbe939

    SHA1

    996366986dacd3e9cb23a58146f9346dddd31993

    SHA256

    5cf0b108784c317ffb4e030259c4878f4a25e53e35fdb6f02da61dc51e78ad95

    SHA512

    72fe6c07e856dac6164cc3f8531929eabb08e4d281df9c6b57d63ef8f456ba225c4c71434a21354ef0eb798215ee81a13c9b5ce13e381c31d87ab98d2781b214

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/feedback.db-journal
    Filesize

    512B

    MD5

    2bd9cbbeaf717549bb6bf0ca762bea06

    SHA1

    fa82696e1ffe8f47d9be0ea7e5a7aaeb04364a6a

    SHA256

    f2e5d5e88a7e869ec44074f52accb0adba2c2bd9a9767952b7c92129ddb63a8d

    SHA512

    61a3e80093fe9117e6683b5d475448da74c8c19a295784727d4dca272df18398d3c24f8bf6c11ee37c193369e21f60f025da6d2174b3022d1c37c2b74ccaed57

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/feedback.db-journal
    Filesize

    8KB

    MD5

    9db9684f15cff2fc53903783cee0bc63

    SHA1

    1eb41ac1c77f429400d57aa8bce521ad53b56cb5

    SHA256

    fce7b02cea0e2ea69fa4f942fce2169c2df2fc8f3efd2a19818da2e88ff688c4

    SHA512

    beefcdf90ead9e56333435c82a6a60b6e06943dc6e604234a764abacc241a6acab18ecd8e01f728c371b6956cce6c9faac52d68f2ebf202948d69dea32c02f32

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/feedback.db-journal
    Filesize

    8KB

    MD5

    b3fe0743dfae7f722f6237a10ac92156

    SHA1

    f6fc547d1f1f7b5eecc19056c8e2be67aa175026

    SHA256

    3c6d9a295c3442816f9e35a37089e02af1c676522ca2822c1686410ca1161b3e

    SHA512

    fe861e7b680a6716e6828f5e59732f0fc7a27a588d947aeedd1a6d28f8b78248211e99ea71918488484559af730bd81ca8ec32fc9e7365609cb9f5670edafad8

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db
    Filesize

    20KB

    MD5

    cb1c8c8eda6c98e230d0e3dbab206a58

    SHA1

    d929ffedc02ba859d982d39ad05d42d188cfa149

    SHA256

    06c0105064c9dd006bd192d5a802c0589d3d71bd542246fe993aa78b1f8d6cd3

    SHA512

    aa053ad7308b793258cbda93488f477db507a5a05a74d4748ff850472cfd68a11989c193e6e0e1da5a882ff89954587769e5c6e8a6bda7725ed63c3338cddd9e

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db-journal
    Filesize

    8KB

    MD5

    e093718bcde32045228ae528969a6c7b

    SHA1

    acd1ef3229c6dbca7388af213d09cda49caa87f8

    SHA256

    1f8271a5e5dbc490e5cb9c33d3c9c66a10e3c5d655e8d263b777fa201f0797aa

    SHA512

    d26e2409b5267c22f1200b29c889b938cc8405df6851c725667e9a8a23b2215f7bc58a479c11ffbda4ee34ede46772431d5c018bcb53c6c52d91c1a5c2458eee

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db-journal
    Filesize

    12KB

    MD5

    5dd1d1db0de4b511684f8e10586c73fb

    SHA1

    f9656730e80fe30cdfbd953f11654adf2c0c977c

    SHA256

    1dc7ffebbdd81241291bf3db8489b9540886adb3159523dcbd6fb4e0d946941d

    SHA512

    10fc3a27c3fcf29cd164cdc73f565578c74e5c5c6a6c3eb33a766b2fed62d6fab4a46f45435bb5b22fd68247a07e7a27814ba755da66ce7780d7b82379070b82

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db-journal
    Filesize

    8KB

    MD5

    b81f41bd9f53a903ed91306159bf4e1d

    SHA1

    5d56c768b01ea921a76cb1da4015611658a17d00

    SHA256

    2383ca9e77a743880dd181c188229b96dac6380018cd64184cceb3ee490f7ce9

    SHA512

    df3f279aedf6a55ecf24cc55d583fda744e51c1ee1e624647f9d665d5998ddd830a12cf8937d8e2f92672759a6ff33d228a5d443b6f8f69b670997b25354141d

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db-journal
    Filesize

    12KB

    MD5

    f360468aaef48b031bb9638b24d2f12f

    SHA1

    fd138e3d88a565967b740b8d82a69582c67870d1

    SHA256

    1c71dea16fe9a97d686784b879d98c7313880a8d60a3c4bb42ecf8697924ac77

    SHA512

    236c5d7bb2a7698f4d44a349d095fd5734b7a096459dfbe5cf30333e9e1cf7dca3e78c5bd245a8d6980e03ce13dd1caa33173d16ad39775d2deb5511b4aa36a9

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db-journal
    Filesize

    512B

    MD5

    42261116504e9bc579166629764fc644

    SHA1

    e38b6be8fff35071f658051fa7a16654d53ed6a8

    SHA256

    5d75440eaf78e216e4464c4cd460d7ad26631db01d01925881dcb27ba2c48bee

    SHA512

    95403d644b44da46a700a728abdcf627f4c9e720e3aef925a8ca3df098eec89db1d83d3ea8806161e68f306f9264afe76bd80a9e8df061a8635fc29d15c6e75b

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/uuflow.db-journal
    Filesize

    8KB

    MD5

    a2046e749433921ab6d137d838b3de76

    SHA1

    588d4f37b470254e4d58bacf8522f4e71c4cc324

    SHA256

    094e9b84133bdbc41b06ea54ea82c4798840f5a685e70aa02e465601dd763303

    SHA512

    9ad100ed967fed7dfa0ca546e68f055d597ea03b80f2b685ecf63a577e4471a74a218cd0e9fb192899a6fd5d14044ac5ca930dcdd44c7de9d76c2b134a37bd1b

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/xUtils_http_cookie.db-journal
    Filesize

    8KB

    MD5

    ed7480e357f64b858389fc64cfc18e41

    SHA1

    9dafbf19a48a6ae7242fb2298afe83da8010625b

    SHA256

    94c2d8a8d990857ffa6715b599f2b961bf1afbba5cfce0f788b61abc1a124c2c

    SHA512

    e8371deeed0ee13f9992bc544e1c7022141bb11128e51eb84b83ff80d2a1a744f2dd1b67fc201828ed3ae79b2652b9a40aeed6c1955c2669a1448623f34ad615

    Download Submit

  • /data/data/com.utooo.android.knife.free/databases/xUtils_http_cookie.db-journal
    Filesize

    4KB

    MD5

    4cc9063163ab9f61132d0760ec7e06c7

    SHA1

    9fb8cd703110be85d1d6de307ca82e5eb709d9c6

    SHA256

    fb4762154c8a5d9bfab285678893ab58a3268ce3b349515b1b3217e0ff47ce95

    SHA512

    1d7d3e3f4051e5e37e24c231a433f981eecc572b1c296320050f003f2868ad619c2f309583065177cbe814c28d5fd5ebb8ba19c10dcacd2f73425009809ab71a

    Download Submit

  • /data/data/com.utooo.android.knife.free/files/.umeng/exchangeIdentity.json
    Filesize

    162B

    MD5

    c843384951f1a93dc7e7182771796320

    SHA1

    e5f43585dbb3eed79bf5ef1c389b8a6e29112049

    SHA256

    27c6c92e2b16e61c80f6ad67124e9a9663a814c3be0e59bad156ed8d60e6ddae

    SHA512

    5a16fa78e9860ee980284dcc1018621ccaea361e985089228336a95c4865a01eedb7823766eb44f68dc6e519175c9e62e28481110c7461a5ce3d36ab6501394f

    Download Submit

  • /data/data/com.utooo.android.knife.free/files/umeng_it.cache
    Filesize

    350B

    MD5

    d6c9c9c865f0daaa07051fbd0665bf73

    SHA1

    cb6c530ba64a5b19359366498b0a45093c420266

    SHA256

    fc9496d864e94762989ae120b7a26f2d508a73470a293b89aa81694bfe120e13

    SHA512

    3f1a29b96ce491c7eb3ad781d3177db2624afde847bcb938631bb91f2b8aafa92e376c47cc442af5b2055d74cf1c7582a9934bd66edf29bde62d330f9c1d79fc

    Download Submit

  • /storage/emulated/0/Android/xml/android_uniqid.xml
    Filesize

    138B

    MD5

    e4838132f41cfe52fa1f64597fd8fe35

    SHA1

    302d9510baa3e92cf744ddd44579bcb6950582f0

    SHA256

    ec4423e9bccc2c5489a196cfc4ae3e6c165088860e8c056f9135ff2fb3c8b07a

    SHA512

    0eeb1678f4faf6650fde93b6be5f899411e55c8a4c61dc96cd8740c7b08e1174f0ac1d3449928466e57d60861f1dd80f011d9da86bb62b8e1a11b150de787930

    Download Submit