Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cc33191a0f4b6adb50409455e0245d48436d6e11f2c3500e5b0faf20a4ff5cb5

  • Size

    22.9MB

  • Sample

    231224-eg9qyafahj

  • MD5

    c38a1b8521e43c0cf060491bcdc9e666

  • SHA1

    ec38a133d814628241335a4c5827cc66f469f03b

  • SHA256

    cc33191a0f4b6adb50409455e0245d48436d6e11f2c3500e5b0faf20a4ff5cb5

  • SHA512

    2e749c08a42c84d66aabbc036e20c7e2fcbcfcef3421320663e67130072b4250ff3fea95b87eeb7d9341157fd50d3df04f41ab0bac6d4e6f58b165f06a6f0868

  • SSDEEP

    393216:MXTIrckuhH1Y7D5KTk6/kvnT+ibrnyGjeicRq1ufdWmkhc1582llzB9ihvk:MEIDRaAMTDHnRj2Rq1+4rt2llzehvk

Malware Config

Targets

    • Target

      cc33191a0f4b6adb50409455e0245d48436d6e11f2c3500e5b0faf20a4ff5cb5

    • Size

      22.9MB

    • MD5

      c38a1b8521e43c0cf060491bcdc9e666

    • SHA1

      ec38a133d814628241335a4c5827cc66f469f03b

    • SHA256

      cc33191a0f4b6adb50409455e0245d48436d6e11f2c3500e5b0faf20a4ff5cb5

    • SHA512

      2e749c08a42c84d66aabbc036e20c7e2fcbcfcef3421320663e67130072b4250ff3fea95b87eeb7d9341157fd50d3df04f41ab0bac6d4e6f58b165f06a6f0868

    • SSDEEP

      393216:MXTIrckuhH1Y7D5KTk6/kvnT+ibrnyGjeicRq1ufdWmkhc1582llzB9ihvk:MEIDRaAMTDHnRj2Rq1+4rt2llzehvk

    Score
    8/10
    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Checks Android system properties for emulator presence.

    • Checks Qemu related system properties.

      Checks for Android system properties related to Qemu for Emulator detection.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Reads information about phone network operator.

    • Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Matrix

Tasks