Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

ca6ed05df9...13.apk

android-9-x86

8

Analysis

  • max time kernel
    2981632s
  • max time network
    154s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    24/12/2023, 03:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ca6ed05df90d79cfe9f6dbe8e6a54c45c188312264b7bccc8c80c699ebd8c113.apk

  • Size

    6.2MB

  • MD5

    2978cae0f64991f6eb7bf2fc57adf5cc

  • SHA1

    d44529e83f6bf0deb7156d08389036405b8d8bfa

  • SHA256

    ca6ed05df90d79cfe9f6dbe8e6a54c45c188312264b7bccc8c80c699ebd8c113

  • SHA512

    67a52a341aa5b6337b1926b763fc8d2ea9a500e2f84df0d760394c727457d3b47b96105fd714e04ff7ba21096c0856a27c95f1a09833d87a4a48e4de799bdf07

  • SSDEEP

    196608:72dbizR6XwodVPx69xr/J/+uVYheAcmXr/dx:7FR6XTXP8z+uHAc6x

Score
8/10

Malware Config

Signatures

  • Makes use of the framework's Accessibility service 1 IoCs

    Retrieves information displayed on the phone screen using AccessibilityService.

  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell location.

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.baidu.appsearch
    1⤵
    • Makes use of the framework's Accessibility service
    • Requests cell location
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4255
  • com.baidu.appsearch:gptInstaller
    1⤵
      PID:4413

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/com.baidu.appsearch/databases/appsearch.db-journal
      Filesize

      512B

      MD5

      5b2fa59481f02578e13359e5ed582c8b

      SHA1

      2fc459e1f8c062204d05c32721a87a21043245ae

      SHA256

      b7e1136d91725977ea3120208ae417c377fd80176612bef027aefe76d549df22

      SHA512

      fd9177a65ba91dc3d11b1d3b3b77df65d040fed1a5a772d5481a1a46935d12f7f51968546220d24ab3af71f36c5e2cfd1b1d6f82d9209a35b68d042c6634a6dd

      Download Submit

    • /data/data/com.baidu.appsearch/databases/appsearch.db-wal
      Filesize

      16KB

      MD5

      da340aacb4f8a0e185aa22c4798261e9

      SHA1

      e41f4296e61488953a7e0fbc6df44fc3809411a8

      SHA256

      f334d672cf44d723bee8f3cc420b1291da3c1d6b66c9704d0ef807f84423cddc

      SHA512

      ff94f4b55fa64539b0d3ea1abfe3847aedd127695aadccf251c2db2853198567173065f432fb07b91bea69e311218121c01537293bb1ab1bd29ed042d25aabfa

      Download Submit

    • /data/data/com.baidu.appsearch/databases/batteryusage.db-journal
      Filesize

      512B

      MD5

      457b18f69cb1b417c18ab324b239942c

      SHA1

      74e843bf652e4677aa7ea91bbb6eab11a513a7cb

      SHA256

      0209ae9071dda47dbb747bfbfdbeb7b57bae1652dd4a650969129dbe76733025

      SHA512

      31d2d2abf5b003a685cc940383f284bfec2caba88fa2d27fc9bf093b1669179fe12716656eba5209db33155f0796909820ead5f888ad0b623e376eb388e47cdd

      Download Submit

    • /data/data/com.baidu.appsearch/databases/batteryusage.db-wal
      Filesize

      28KB

      MD5

      879883648aeef803d285d8ff88ec985f

      SHA1

      19007369d49da97ebca6122cb086a1b4560f454e

      SHA256

      8eb7244db2f9fc4311cad9ebcb6bd0146eacd8351e3f4359327e2b2cd7a9b094

      SHA512

      8c41d2c63e4ae9a60bbba69da729a7bac2adda3e48390457bc65cdc9ca232265969b79853790683d50d76eb4435366b402b0ba201acb6400b5a3a262bf9619ea

      Download Submit

    • /data/data/com.baidu.appsearch/databases/bddownloads.db-journal
      Filesize

      512B

      MD5

      68b79b5308cbde51faa365c918a28b09

      SHA1

      47bea0ef0b22a37090165a27d19bac9fb670da84

      SHA256

      5186c31c4f112618dd3a4a8da8bf0f325404f985a130a3f3ad7636fa4cf45ae2

      SHA512

      922804d027037546cb3d4688146af38c486fb9e44a5d666a5963d25e47b3670866c490c7a441de2e5f541dc464d704e21ed6c0714e7bd090ed74ff84079a861a

      Download Submit

    • /data/data/com.baidu.appsearch/databases/bddownloads.db-wal
      Filesize

      32KB

      MD5

      b61fec47747818f6f855f9582eee7604

      SHA1

      57a08939f7f144a4898c87c3545b251690e53631

      SHA256

      f7a8493c3375e09a56180eb453f30dccb1accde73032ad0584c93ef0702ffae2

      SHA512

      cd1f1584eac849ccb09d2a207832f6f059c435900e7e193ae2128d3632a84ffed8345f808418810ab78dcfc23914c126ecc764ba4b796bd687d320a6343b41b1

      Download Submit

    • /data/data/com.baidu.appsearch/databases/downloads.db-journal
      Filesize

      512B

      MD5

      259282118d58e3b05c6358ef810f0855

      SHA1

      9211b053e54abb22b29b93063d7468164afd1ece

      SHA256

      7e86a6cf25c91fb1b249a65e72d4af3ff6aa137080d7b332ff8135248706a2d1

      SHA512

      7fc89cd899d8303a2f8cdd9d6597250ac24722a550a6a3acfef3bc556afa06420c7e9bc6fc486a7a1a2ea4c1fe989bbf4d48e3fb94f4d7522e915631951bb450

      Download Submit

    • /data/data/com.baidu.appsearch/databases/downloads.db-wal
      Filesize

      32KB

      MD5

      412aa0dde6e2df0bde12772f8800c82e

      SHA1

      c1dbf5b42bb7289b7a01e9cc9b4fad50b718e5e7

      SHA256

      af848b38efd0e7bd569bed1833c2a2d031fd70eb1a5593e2ead9f238005affa9

      SHA512

      530098bfdec706566287ab029a346cac584cee5c1c6f5737f40ad1b435d416e538d04f03a19e8759e463e12e8c60dd1c31547edd260011c53ddd79eedbaa860a

      Download Submit

    • /data/data/com.baidu.appsearch/databases/myappstatus.db
      Filesize

      4KB

      MD5

      f2b4b0190b9f384ca885f0c8c9b14700

      SHA1

      934ff2646757b5b6e7f20f6a0aa76c7f995d9361

      SHA256

      0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

      SHA512

      ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

      Download Submit

    • /data/data/com.baidu.appsearch/databases/myappstatus.db-journal
      Filesize

      512B

      MD5

      17df94570ddcb9de319eb4357cde6785

      SHA1

      12bcaf9dd764cc21d3d70b8b4047539a932ac7f1

      SHA256

      bcdb2559d83dea9c9789fff545b966f6226d12e997cda0df2bc9c18e3873b530

      SHA512

      2354d70da4d6847499123a8f7375253164ba79b20f6ecee0027bf3b2601d1a89eb3e25d2c62fac2702136dbff70224a9d2bb21353f1a4efd82c4911ce72189cf

      Download Submit

    • /data/data/com.baidu.appsearch/databases/myappstatus.db-wal
      Filesize

      36KB

      MD5

      e54e8f4dfe5b12934d23a7cba29ef25e

      SHA1

      5f81a28bb081036058e42c443fbcbafecf28b975

      SHA256

      99442dbdec896d086da92380596d71df6fa60e5e70473b91521ec27daf6d4642

      SHA512

      d4081ed44b1839a29d02af651a27f9550fd02b2067ba5368ffb9d1b925d5d239ca861c58b507e0e128bbc7183b5f21055fcab7fd62aa63c868c20444f9b754e1

      Download Submit

    • /data/data/com.baidu.appsearch/databases/netflow_monitor.db-journal
      Filesize

      512B

      MD5

      9d1ad9c04fb6f378c223955a1a45d0cf

      SHA1

      872a1c336da925324a1a873ef475d082187e8422

      SHA256

      fa2819810ff12273d8d5491cb4d521a14f5708a6c3f79c528c622b8a490d6f81

      SHA512

      1b232c5c4e71900c0040da0e66a6e38710e6afcdc8ee85c6cf4911055b8a8f04f370a7369964b31a880f113d2b88eccaffe9b54fc51094a0366edf00e2c1a8ca

      Download Submit

    • /data/data/com.baidu.appsearch/databases/server_config.db-journal
      Filesize

      512B

      MD5

      dc0628fdd0e33032163465f3b082aa08

      SHA1

      2df8f9a23f9c89e3bdc463392528346ddb851ed4

      SHA256

      1db83929b886b39d70a17bd430607c27b7723f168d05d835bbe9b429aee8d1e3

      SHA512

      a62f9afb64d85bbe56c53ee72935cc2694d122358f264950001217112951658ea9351d850e2e5a49cd2fc0e8d2f12848fd7910e1663345581ed20d23c930c33d

      Download Submit

    • /data/data/com.baidu.appsearch/databases/server_config.db-shm
      Filesize

      28KB

      MD5

      cf845a781c107ec1346e849c9dd1b7e8

      SHA1

      b44ccc7f7d519352422e59ee8b0bdbac881768a7

      SHA256

      18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

      SHA512

      4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

      Download Submit

    • /data/data/com.baidu.appsearch/databases/server_config.db-wal
      Filesize

      28KB

      MD5

      05b2b5cdedd0b54116a0622cc5b30d83

      SHA1

      6e4870e2629bb6a20b843ef31725946873314fef

      SHA256

      8fcee0aa795e8aa804299cc660c354c43f227da0e718a5e236e3e813ec1377b6

      SHA512

      c3027ffd9eb213029fa1dad81f005bbbad0dcdaa4c55dc91391ca922f67935a49f9e4dc74c7a89089657d94a282cfcb7a362608de02238fd462f27697eda327c

      Download Submit

    • /data/data/com.baidu.appsearch/files/__local_ap_info_cache.json
      Filesize

      2B

      MD5

      d751713988987e9331980363e24189ce

      SHA1

      97d170e1550eee4afc0af065b78cda302a97674c

      SHA256

      4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

      SHA512

      b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

      Download Submit

    • /data/data/com.baidu.appsearch/files/__local_stat_cache.json
      Filesize

      25B

      MD5

      2d805b13f2f28dc3ca9bbcc000f49bb5

      SHA1

      9eac165b4d81258fd3967cde5cc53b53b1dabcb1

      SHA256

      c8a6624f390568f0ddcb9841336aec6a564460fdaf6624e562b32935b8956f19

      SHA512

      5db8c57bab36bcf9db698c1dce70318cbffc156dd1d1c1e09e5b7ba60aff07b598ebbf26c4bd8a2b03bd6e59ef2dde2d944a22a8d8a19ecc8378e83afb7c83b0

      Download Submit

    • /storage/emulated/0/Android/data/com.baidu.appsearch/cache/2smkash5seyk5inff5m2rgn7u
      Filesize

      23KB

      MD5

      56e2471422b4d08e4f0ed838efef17db

      SHA1

      5e82550db718249731d8bcf094ac3fe74bce98b6

      SHA256

      ff3e688910d1218dbd8097cbc5aae63a921c12a05bbd2a7c05fda505391ccc3d

      SHA512

      48cbdc8e74f05806fb24650b16457e410883efd5d9050e2e8f4ea7d71400ae1a3f860fdd1c4353020f9d8a810366e9a6ac8d6dc127f98b2ef1e69e23369289bc

      Download Submit

    • /storage/emulated/0/Android/data/com.baidu.appsearch/cache/5n9skcod0fwq1x7sglu84kf36
      Filesize

      20KB

      MD5

      fd682b9804be4456a2ed29b5fb3f6681

      SHA1

      9432d6496e153b350c973cdf79dd53c3d2a49d99

      SHA256

      c3945760b76adf8e9b616f106eb66e6ec94bd7b386d285ed4fd5fadda7c60cef

      SHA512

      22087fa097d50a0ea434fa5a7fdb091306756c86cca2df60dc43a55ef529d54f88f5b0879a4f0bf8692f9713a981619e617717944318ee1fe557411391f8de30

      Download Submit

    • /storage/emulated/0/Android/data/com.baidu.appsearch/cache/76pbirue643fu5ne9mi8gpe44
      Filesize

      17KB

      MD5

      53450ff729f9e7374d2ce919863ce5af

      SHA1

      aff1b400cd4d81e1a4d4a7a310c8fd1c427d9c59

      SHA256

      e3843a9fe3e66f732728c414740255e7b72d08d8554da666c7987096acd735a6

      SHA512

      d666558d5a066afd243d7edc001176e45b065fcbbbba6e8b232534b3e13d0b52c9227dfb14cf69615a13b910c7e5af8870924604df0ac2bb9a45b5e1324048dd

      Download Submit

    • /storage/emulated/0/baidu/.cuid
      Filesize

      89B

      MD5

      ae87226c5af8ff017ebe0b6545cc04bc

      SHA1

      988658e2bf2f3d6e0e003b40e06b29cf123dd420

      SHA256

      673b0c359b4651bf9552749c701e0d9dc9e218961bac0be40758d41d3fd0e9ec

      SHA512

      70547bb9af2032452248d3d45cda2996e5f39f04de38fc14943c55f287b23685cf4d1778db8edcd35e5fe3f98eeb1661165514ede47333c529642d8ddfd7440e

      Download Submit

    • /storage/emulated/0/baidu/pushservice/files/.info
      Filesize

      89B

      MD5

      fe52d5882ae20c97740bfbcfdb64b3b0

      SHA1

      03e2e2967cb8e1a0cfe586d27405462cd2ab0593

      SHA256

      f516f88b49a3bd0be29702c7f5fa2330e531d76e72ba8fd5109f44ad055ccf9d

      SHA512

      0806f4465474f482c47e4a5a5fc5271a06a2df217be680b5f61fece3afd7a49f9c7faf301e1c4642fdb0376814cb2b72017fe63cf8f95411ff3fec154f8a3aff

      Download Submit