Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

6ca071500f...6b.apk

android-9-x86

4

6ca071500f...6b.apk

android-11-x64

6

unicom_resource.apk

android-9-x86

unicom_resource.apk

android-10-x64

unicom_resource.apk

android-11-x64

Analysis

  • max time kernel
    2595649s
  • max time network
    161s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    23/12/2023, 18:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6ca071500fd3b7313c0af173507152e0ce8669baef78f606495626456ce7e76b.apk

  • Size

    26.0MB

  • MD5

    4a64eadda75a4f94ff775e3873c566a4

  • SHA1

    3cf2f3dc39190d25d0d783ef62ab5f8488c2d596

  • SHA256

    6ca071500fd3b7313c0af173507152e0ce8669baef78f606495626456ce7e76b

  • SHA512

    4521972a6f536de6ba1285b1a3a292358d493da63238c5c2d3a7f2a41cea580f1242367de7ed0fd93bbf87fb4b5b58514b3c2e74754b2129184343bb7afa8729

  • SSDEEP

    786432:6PXxomyQri3kNmfyG3snkE4eHSF3ZKKOITZP+H0E:6PBNyQGo/G3sFmV0KXV+UE

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell information.

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.sg.hlw.baidu
    1⤵
    • Requests cell location
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4641

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.sg.hlw.baidu/files/TDtcagent.db-journal
    Filesize

    8KB

    MD5

    7a7c64d6562c58e5472d4b104e2df803

    SHA1

    849d1f3b25fb23408e9d41f2abf8a419c10f682f

    SHA256

    c927f3346f4cabe27004f62490c715b3f8bbe579f2559c70f21f5901ef094c9b

    SHA512

    919015419aa84be1bc69ea8b3fd94639e9242c24aed238534ec149313cdb46c36989c15fdc1a9f8914a57a7f82e27a281a015db3498112259a6e319c6dad26b4

    Download Submit

  • /data/user/0/com.sg.hlw.baidu/files/TDtcagent.db-journal
    Filesize

    4KB

    MD5

    bf49b83474adb3107c1f063ea824209e

    SHA1

    a87ac7c6b1e065e64ff0add4ccae2f4a433439b9

    SHA256

    ffb8d4a56bd6a6adbf73accd1a3a00e09fae9b40c9f19f66231ff115b1e3aa9b

    SHA512

    574aeeda222009f37c911023907e69d2b299a5b692b6da63ae079345d30c9c6884339699a28b4e6cd281f2c9a9bab7295cf015d37deb3c21eb8f66366d092217

    Download Submit

  • /data/user/0/com.sg.hlw.baidu/files/TDtcagent.db-journal
    Filesize

    8KB

    MD5

    c7d1d5f8949d835dd23c9cc9ccff9f6b

    SHA1

    bdbdf433e519eb9bf88e8120b619d29355892e37

    SHA256

    66298fc0faf62ec7e54fdd3c433e3c5cfc81d0a2cf63c3804f6351a21930c943

    SHA512

    cc68c9564fa64572e7273574d102c842f9b90bb4abed26d6465656dbce0f3f1da675b885b07ee9f730d9e25901cab9fec290b45d9cd5702a9bf01f60f6f70870

    Download Submit

  • /data/user/0/com.sg.hlw.baidu/files/TDtcagent.db-journal
    Filesize

    8KB

    MD5

    1fb318bf63b4dfc4e62e2b9855d3a87d

    SHA1

    3681f4f68e411a12c9222496216f2ed5dc40e081

    SHA256

    f3366b363038d7ab129d6c2f24a7c64b5914c1fabd2941432a2ec986a32b85e1

    SHA512

    d1f649834595a3ca8f5993a68dbdd471abb9856f9980da21630920df318de93e38b4aabe51a799a8372612eb7aed303ef008fad4ba51af062fd9b90379691988

    Download Submit

  • /data/user/0/com.sg.hlw.baidu/files/TDtcagent.db-journal
    Filesize

    12KB

    MD5

    7f6c082da3e90f63d66c3ccd09bfcc68

    SHA1

    e064e252da400bf300dd5d8ae088b20c3913033f

    SHA256

    371bad8bad5034b52099874131e9526730d8911f2ae6d351293208ff84f76cf5

    SHA512

    516a0d2592349263c11b9a0d2915e3455b091f375f94698b3caa8d5229e4115ad39e1caf3366be9fb6df8057ee4157d17877023e6f023ae7c00175ae0a3e4de7

    Download Submit

  • /data/user/0/com.sg.hlw.baidu/files/talkingdata_app_process_preferences_file
    Filesize

    21B

    MD5

    676a2d96871579cb7f2efae3fbd3a8d8

    SHA1

    bcf25fd8188ff2f041d2bb4a455a41db510e7ed2

    SHA256

    9e98f17df54b426a3feeaed222c5b6555ecc356bfa6f185e4be074ea32ad227c

    SHA512

    d2c97af04c139ca2307da1885e3689f8f2830d250a4ad7b0a642c22bfc70523b47c179a4003ac1f6348d5c986e04fe4d650fa156573b4264dc980f5839f6f14f

    Download Submit

  • /data/user/0/com.sg.hlw.baidu/files/talkingdata_app_version_preferences_file
    Filesize

    2B

    MD5

    4e732ced3463d06de0ca9a15b6153677

    SHA1

    887309d048beef83ad3eabf2a79a64a389ab1c9f

    SHA256

    5f9c4ab08cac7457e9111a30e4664920607ea2c115a1433d7be98e97e64244ca

    SHA512

    e053886e1b797bc5a80f932302f0201265a599d82e2502d41941d6e652614ef88fa058e009094d26655f880200df12c2100f690254fd1e5bae75d7441763cd33

    Download Submit

  • /storage/emulated/0/.tcookieid
    Filesize

    33B

    MD5

    000d97a48db941ca963b11b8aaa61c2c

    SHA1

    08fd93d97f044a5ea3d070aaafc91c67209f98bc

    SHA256

    631a4fb022f188769dca465685e79060ab6dda5f203a65ef8ee4e532a4a798c3

    SHA512

    f258df71b3db5a3addd2d22a6f01768b2ad9dec19d74bb9812e1230414439067045aafa62f2c12d29925cc61b8d58a77d3bafcc0272e682201a02cadaf070e84

    Download Submit