Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d62540593b72ff1117af2ed819bf16b7db3c9cf05db8ad279eb406f3e176fc8c
-
Size
5.5MB
-
Sample
231224-fjb35aaed4
-
MD5
d19c72a3a1af5b9cc0019c0d43f3e230
-
SHA1
3276d620f6c34cf4b542e09bab5b3f2b5b094697
-
SHA256
d62540593b72ff1117af2ed819bf16b7db3c9cf05db8ad279eb406f3e176fc8c
-
SHA512
1f4b4e8c3465307aaf816340b63676be7e972d470d208e8a7bf3e85e80dca4d3f6d330d63fb7055b425f0e8b848b71dcf32e18b003a131407e508ca13cf9e1f2
-
SSDEEP
98304:u78L3l9c07Ia6QGKZxQkc30iKG1ymrKtenody4YQqIQav89VgeE+u/m:TL1+DxQGPEHG1yVtenJ4TQak9Vgn+u/m
Static task
static1
Behavioral task
behavioral1
Sample
d62540593b72ff1117af2ed819bf16b7db3c9cf05db8ad279eb406f3e176fc8c.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral2
Sample
d62540593b72ff1117af2ed819bf16b7db3c9cf05db8ad279eb406f3e176fc8c.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral3
Sample
com.nd.android.widget.pandahome.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral4
Sample
com.nd.android.widget.pandahome.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral5
Sample
com.nd.android.widget.pandahome.apk
Resource
android-x64-arm64-20231215-en
Behavioral task
behavioral6
Sample
nd.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral7
Sample
nd.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral8
Sample
nd.apk
Resource
android-x64-arm64-20231215-en
Malware Config
Targets
-
-
Target
d62540593b72ff1117af2ed819bf16b7db3c9cf05db8ad279eb406f3e176fc8c
-
Size
5.5MB
-
MD5
d19c72a3a1af5b9cc0019c0d43f3e230
-
SHA1
3276d620f6c34cf4b542e09bab5b3f2b5b094697
-
SHA256
d62540593b72ff1117af2ed819bf16b7db3c9cf05db8ad279eb406f3e176fc8c
-
SHA512
1f4b4e8c3465307aaf816340b63676be7e972d470d208e8a7bf3e85e80dca4d3f6d330d63fb7055b425f0e8b848b71dcf32e18b003a131407e508ca13cf9e1f2
-
SSDEEP
98304:u78L3l9c07Ia6QGKZxQkc30iKG1ymrKtenody4YQqIQav89VgeE+u/m:TL1+DxQGPEHG1yVtenJ4TQak9Vgn+u/m
Score8/10-
Requests cell location
Uses Android APIs to to get current cell location.
-
Reads information about phone network operator.
-
Changes the wallpaper (common with ransomware activity).
-
-
-
Target
com.nd.android.widget.pandahome.flashlight
-
Size
420KB
-
MD5
d7ed82aa742154281da5c6c64baa72be
-
SHA1
833fa9169f66a4fac0a844902d8305da875f316e
-
SHA256
5f54363be719d281f9d64d68af9e7093aba66b0781d99025e331a2375636e271
-
SHA512
222b0664cdf950a8e6d189a822ed379c29f56e2d3e36d35a35b4afc07a800a225df23a8bd1de43455a94eedaf3e8a28773ea5da13009279191d27bca3106594b
-
SSDEEP
6144:KvuvJ1RJBq3MA4DQ1siZAGml4T+fLJ7W1VXS4e8iay+8/faWdhDlE/8MskMZjv7c:KWx1Rm4DQ1cGlTWtINe8C+s3zPXwdp
Score1/10 -
-
-
Target
nd.jar
-
Size
3KB
-
MD5
330e5a7a65f3d6593b4e3693cb6b581a
-
SHA1
97ed25af93827667740ddc0f5f20efaa0db79f2f
-
SHA256
effd679a8cfef061b537814b41f2733a9785d80d1d11f8c61216a78b35c747ca
-
SHA512
3b2234d683cfbfde304d23150678595076eff41c691269dfc0d1d035b784113879e84d19ec732b257ea2146b4170edda2d8ece79449c2a33d948d0ae4e777328
Score1/10 -