Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

69be43d6ba...e3.apk

android-9-x86

8

amap_resou..._0.apk

android-9-x86

amap_resou..._0.apk

android-10-x64

amap_resou..._0.apk

android-11-x64

autonavi_R..._0.apk

android-9-x86

autonavi_R..._0.apk

android-10-x64

autonavi_R..._0.apk

android-11-x64

Analysis

  • max time kernel
    2642307s
  • max time network
    159s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 18:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    69be43d6ba607463370ce4ba30b04feb4eb008905b1bd44a8505e9e9e5d5fce3.apk

  • Size

    21.0MB

  • MD5

    de621229aa2423f636ee6c734f42fbbd

  • SHA1

    2c01b791e4d2033eabda6b9cebfba64be3135303

  • SHA256

    69be43d6ba607463370ce4ba30b04feb4eb008905b1bd44a8505e9e9e5d5fce3

  • SHA512

    67a926afe1b4f53d3509d23dceac570da3516c2058fdc8010312fd6e9659886f8e8c530a6dd5145ed0c4dd097bfe029f1696044ee9dc9d8c1c82c0b934d596c5

  • SSDEEP

    393216:JchAQ+Zi7tfK+vGI747fJ9Z0rq5c7yOzgM4A/D3g1cSt0w7rDYTLFUQv39DLOxfE:NnclK+vHU7fF0rq5Sl447gX2q4HDv9DV

Score
8/10

Malware Config

Signatures

  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell location.

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.zz.yidaijia.sj
    1⤵
    • Requests cell location
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4260
    • chmod 700 /data/user/0/com.zz.yidaijia.sj/app_bin/daemon
      2⤵
        PID:4288

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/com.zz.yidaijia.sj/app_bin/daemon
      Filesize

      4KB

      MD5

      523de7515af8a598d30a7d9f18bde0c4

      SHA1

      cea8ee3213e98047e3eae290cccad26e0e7ba437

      SHA256

      45f030d8b7e24a21ebca110ebba8e513474c3e719edb411e08223bd7205898a1

      SHA512

      5a98e60c807f828f7546621630075dec398073cb756982175b6d345cecf1a10af6c552e7ae78a9866ef9141a612626147235f1a38b87e73af8e161aa65a0c09d

      Download Submit

    • /data/data/com.zz.yidaijia.sj/app_crashrecord/1004
      Filesize

      58B

      MD5

      0d210bfb2a0e1f1b4c082a6a0f79de07

      SHA1

      bb8ed9e364db79d1d9f2fcde3f15091893222faa

      SHA256

      988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

      SHA512

      536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

      Download Submit

    • /data/data/com.zz.yidaijia.sj/databases/bugly_db_
      Filesize

      4KB

      MD5

      f2b4b0190b9f384ca885f0c8c9b14700

      SHA1

      934ff2646757b5b6e7f20f6a0aa76c7f995d9361

      SHA256

      0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

      SHA512

      ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

      Download Submit

    • /data/data/com.zz.yidaijia.sj/databases/bugly_db_-journal
      Filesize

      512B

      MD5

      00ce4983c2d6748055d1dec149015507

      SHA1

      9f1ce60246dd4ce7a078c7fe90c5fbe579d4ac7c

      SHA256

      60cee7009772bec5aa27184e430c79bf3f007d7135a7c214fb4b5d6843247987

      SHA512

      8e54a7d1ab82e6ab52928544030659304f87a1fc30054690183b804b099c1b561f564fb362e04dc8b53a0bb47be023bf53253b77564c4924154311688ae86099

      Download Submit

    • /data/data/com.zz.yidaijia.sj/databases/bugly_db_-shm
      Filesize

      28KB

      MD5

      cf845a781c107ec1346e849c9dd1b7e8

      SHA1

      b44ccc7f7d519352422e59ee8b0bdbac881768a7

      SHA256

      18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

      SHA512

      4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

      Download Submit

    • /data/data/com.zz.yidaijia.sj/databases/bugly_db_-wal
      Filesize

      72KB

      MD5

      f35f8cc16187a31056afcd37c078d0c7

      SHA1

      4ae94ed2067497622685209c80c8e1c538d2d464

      SHA256

      66ec188bc40db49a9e886ed5bd7ea932494e869d24e49f940e4d40490ec21ae7

      SHA512

      0674d70770dd81636faf9329e34f62880b7d0a5fbe4aba501344186687a1bdfd499063b8a45f9c56a99f08a4ef3a327cc4f818e448a48ddc883ca888712949aa

      Download Submit

    • /storage/emulated/0/.DataStorage/ContextData.xml
      Filesize

      111B

      MD5

      d5fd87895b454108dbe55c78f5b28c18

      SHA1

      878e87c64f121c052f93fffc5adef47f6235a213

      SHA256

      bb3bd42f85564d6943ffed25e4c9925553fb39ac60a315065ecf662d3c9646f5

      SHA512

      0dce86de52ff7acf25e30412a431e47f10a2920f30ef8583451aedae8ff3b573b09c208572f22f930be37e3b18693cd7759eba6cf9273120d0d702dd9dd124dc

      Download Submit

    • /storage/emulated/0/.DataStorage/ContextData.xml
      Filesize

      213B

      MD5

      9915759d7fa89c568b7f12050a4ef593

      SHA1

      5f12b3765f1b0eda1239619240a50848ebed645b

      SHA256

      ea6bd67fee6b22b72f7845d1b7ebd9c1b85758614f9ea5397271d68642edf8e6

      SHA512

      e8fdaccf1f909553641df8221c0496ef3289b1d8e732bf7f6fe77f604db2460a2581237083ebf6c8e827c63d48e0633b2e0d1d4d465952b69176e1eb6e18adf5

      Download Submit

    • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
      Filesize

      65B

      MD5

      9781ca003f10f8d0c9c1945b63fdca7f

      SHA1

      4156cf5dc8d71dbab734d25e5e1598b37a5456f4

      SHA256

      3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

      SHA512

      25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

      Download Submit

    • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
      Filesize

      111B

      MD5

      d92da8025060801d4b5e6b3d689040f8

      SHA1

      88abdbd29f203d91ea9db2eaa93aaeff5823e92e

      SHA256

      c1008f8218035784ff38d86aea190e0bea076e25ba6505b6fa1fec4c3425d401

      SHA512

      28a042f786dd2a5198ac6a1131e979dde2ffa590e65aab5671dbcb52d80a3f984c29752b67f32036a1ae8f25673c941b6318536d766950a62960adc839182b3b

      Download Submit

    • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
      Filesize

      167B

      MD5

      1d54e05a92ed5840a807d76706f68aa6

      SHA1

      91853e19d2dfa28f4542735e21d8871130a4f750

      SHA256

      3eded3fbed3e86766e8036d531343827ac9145f49f41d95f09c19d9b37dd9f2d

      SHA512

      2177652bac146ce45106a90ebc70e4781740f7244859ae8d4922e9a7eb4e71c8126ae3577a96c3ed9e4e39f90f857da749589d99cccd819e68e7ca39c9538775

      Download Submit