Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

ca6d13f8ba...c7.apk

android-9-x86

4

Analysis

  • max time kernel
    2994262s
  • max time network
    141s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    24/12/2023, 03:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ca6d13f8ba55868609e59feb2d9e83d49f530bc8c968b1d813d7c9592b59e2c7.apk

  • Size

    18.4MB

  • MD5

    a3fc267bc672f89351ee8726d1afd424

  • SHA1

    3e029e728274642983ee2c6b1e7bb2a14f9cafdc

  • SHA256

    ca6d13f8ba55868609e59feb2d9e83d49f530bc8c968b1d813d7c9592b59e2c7

  • SHA512

    2af8a616d72f66d8deedb02a06e5a086bc8f43bc039eccebc1a2b35ead98d10a1eb9e75750fe0f1756fa7450da13506b789bbb25327e092457775b859f336d23

  • SSDEEP

    393216:ueC120xO6sFMJqYM7/l5WIHHqzcix1aIbMJrqgpmyKZdNi:ueC190M8YKlhHHqzrxkegpm1Y

Score
4/10

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.huishengqian
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4253
    • /system/bin/sh -c getprop ro.board.platform
      2⤵
        PID:4283
      • getprop ro.board.platform
        2⤵
          PID:4283
        • /system/bin/sh -c type su
          2⤵
            PID:4312
          • logcat -d -v threadtime
            2⤵
              PID:4339
            • logcat -d -v threadtime
              2⤵
                PID:4357
              • /system/bin/sh -c getprop ro.miui.ui.version.name
                2⤵
                  PID:4379
                • getprop ro.miui.ui.version.name
                  2⤵
                    PID:4379
                  • /system/bin/sh -c getprop ro.build.version.emui
                    2⤵
                      PID:4405
                    • getprop ro.build.version.emui
                      2⤵
                        PID:4405
                      • /system/bin/sh -c getprop ro.lenovo.series
                        2⤵
                          PID:4430
                        • getprop ro.lenovo.series
                          2⤵
                            PID:4430
                          • /system/bin/sh -c getprop ro.build.nubia.rom.name
                            2⤵
                              PID:4455
                            • getprop ro.build.nubia.rom.name
                              2⤵
                                PID:4455
                              • /system/bin/sh -c getprop ro.meizu.product.model
                                2⤵
                                  PID:4484
                                • getprop ro.meizu.product.model
                                  2⤵
                                    PID:4484
                                  • /system/bin/sh -c getprop ro.build.version.opporom
                                    2⤵
                                      PID:4509
                                    • getprop ro.build.version.opporom
                                      2⤵
                                        PID:4509
                                      • /system/bin/sh -c getprop ro.vivo.os.build.display.id
                                        2⤵
                                          PID:4534
                                        • getprop ro.vivo.os.build.display.id
                                          2⤵
                                            PID:4534
                                          • /system/bin/sh -c getprop ro.aa.romver
                                            2⤵
                                              PID:4558
                                            • getprop ro.aa.romver
                                              2⤵
                                                PID:4558
                                              • /system/bin/sh -c getprop ro.lewa.version
                                                2⤵
                                                  PID:4583
                                                • getprop ro.lewa.version
                                                  2⤵
                                                    PID:4583
                                                  • /system/bin/sh -c getprop ro.gn.gnromvernumber
                                                    2⤵
                                                      PID:4609
                                                    • getprop ro.gn.gnromvernumber
                                                      2⤵
                                                        PID:4609
                                                      • /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
                                                        2⤵
                                                          PID:4633
                                                        • getprop ro.build.tyd.kbstyle_version
                                                          2⤵
                                                            PID:4633
                                                          • /system/bin/sh -c getprop ro.build.fingerprint
                                                            2⤵
                                                              PID:4658
                                                            • getprop ro.build.fingerprint
                                                              2⤵
                                                                PID:4658
                                                              • /system/bin/sh -c getprop ro.build.rom.id
                                                                2⤵
                                                                  PID:4684
                                                                • getprop ro.build.rom.id
                                                                  2⤵
                                                                    PID:4684

                                                                Network

                                                                MITRE ATT&CK Matrix

                                                                Replay Monitor

                                                                Loading Replay Monitor...

                                                                Downloads

                                                                • /data/data/com.huishengqian/databases/bugly_db_legu
                                                                  Filesize

                                                                  4KB

                                                                  MD5

                                                                  f2b4b0190b9f384ca885f0c8c9b14700

                                                                  SHA1

                                                                  934ff2646757b5b6e7f20f6a0aa76c7f995d9361

                                                                  SHA256

                                                                  0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

                                                                  SHA512

                                                                  ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

                                                                  Download Submit

                                                                • /data/data/com.huishengqian/databases/bugly_db_legu-journal
                                                                  Filesize

                                                                  512B

                                                                  MD5

                                                                  7d6f3cbed088f53de0bfc9c1b8066d17

                                                                  SHA1

                                                                  4081d1f22aa1196c67d72c64455d92a78456b43a

                                                                  SHA256

                                                                  358593883fb5c4526acb3eedd82f3176895c32459d17637ae4b04a0f0b6673ce

                                                                  SHA512

                                                                  2b48b7a8290fcd706d44cba6072d7744a5d6160bc5d10e6f049763e1016d354106c670c5bf7644c28bbd1deeb1d60b0f9d111e2e7ded3cc7700a1b8b556710c6

                                                                  Download Submit

                                                                • /data/data/com.huishengqian/databases/bugly_db_legu-wal
                                                                  Filesize

                                                                  16KB

                                                                  MD5

                                                                  bf404fe68fbef6ac6a2435c5ab7ba543

                                                                  SHA1

                                                                  d0bdc5fea6c8bfb63510c1b2eea9f23abb46ba88

                                                                  SHA256

                                                                  15ff23f33204998329ac59b8987b332b951dcd6b1332fabc10e4daa256a48efa

                                                                  SHA512

                                                                  1833da2abd844edf6423e24073ae9cb8bbf718b216606997f2e4bb5ac9b7645f414c6f219eec3b97fb3dc982fd15ad6bf1176a88cb61c915d920e4ee014befa9

                                                                  Download Submit