Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

f165905b65...da.apk

 

f165905b65...da.apk

android-10-x64

7

amap_resou..._0.apk

 

amap_resou..._0.apk

android-10-x64

amap_resou..._0.apk

android-11-x64

Analysis

  • max time kernel
    2801288s
  • max time network
    158s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    24/12/2023, 07:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f165905b65dbae0d81ca0a819153be8fd326e8d99c109bd86135e62b939a86da.apk

  • Size

    20.0MB

  • MD5

    1a87e5df3a0dca23911dfbe9ad887efd

  • SHA1

    720cfe335eef738c4e94a1872906f6b87ef816ef

  • SHA256

    f165905b65dbae0d81ca0a819153be8fd326e8d99c109bd86135e62b939a86da

  • SHA512

    8d6a986cbc95583d29afdca62aec363bb878891b8738bb82ca47ca48e3cf8ef638fa9864f3ecd063495bf2019d3adb25e53ce67f5a2dd69400a2570cd67d51bf

  • SSDEEP

    393216:V7nqYf6uRfAigqeQGKp0DDVDDPQ+yNMSyqsIWyGpSdN6wCX:1nymAbqenVncyqgdy8

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.dk.tengzhoubus
    1⤵
    • Loads dropped Dex/Jar
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4983

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.dk.tengzhoubus/app_bugly/rqd_record.eup
    Filesize

    347B

    MD5

    0d4ad25dcdac698dc84aad4bdf161d64

    SHA1

    cc1a448748b8dfa6da6914813c070694fdb2f6c2

    SHA256

    0fe0baa2c1854d53b1e8d49137ec981dd2ee09321337b798003e551cc3be3069

    SHA512

    eeab81b48fa1020df1447645a89c6b42c307ab1f75427286926348b6b55ea98505bb30d1478d3ee41ed1bf6f589c1a32880e173cffac829483be90b62197e882

    Download Submit

  • /data/data/com.dk.tengzhoubus/app_bugly/rqd_record.eup
    Filesize

    1KB

    MD5

    98b5757330c14b497ddf8eceb10b3cd6

    SHA1

    0b2287fe561dde727004957dd5cf812ecd218e2f

    SHA256

    ea1556921f873cc34400c0d4330727165538d79956559fe1b5c10b7d482ff7c4

    SHA512

    0a21d53d9109d127a14a20217e3b40d81a993f9d67b4362d1be1ffc568a7bffbcbef45992f060816aa208be90961f41b154488b21f6af530367f8f78f384a921

    Download Submit

  • /data/data/com.dk.tengzhoubus/app_bugly/tomb_1703608330285.txt
    Filesize

    56B

    MD5

    bd0f8f8f3ad93fa07623422ec6e72003

    SHA1

    c3589295e7a4ddcf35bcd7a2c13bfd381783821a

    SHA256

    7fe875398dea7537a57a77c5275cbc8647aaf63ab6fd9148443b65df2e1d0647

    SHA512

    2ec3e073321262b667afbf98fe4e9f51e4c0c58baaad506b120239031f10699d699b94470bef13007bd6199df3d3b03f1eaf147c0cba5178aee7e267072b1c0b

    Download Submit

  • /data/data/com.dk.tengzhoubus/databases/bugly_db_legu
    Filesize

    12KB

    MD5

    ea628e04765adaf4238a5dcdff4bbd51

    SHA1

    a801947619ea8c368efe9c006a324dc6339ac60b

    SHA256

    885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

    SHA512

    c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

    Download Submit

  • /data/data/com.dk.tengzhoubus/databases/bugly_db_legu-journal
    Filesize

    512B

    MD5

    033d7e0ae7a3010e30ee66220438d4de

    SHA1

    e295e8510e8454661b2d6955ef1b49cbf49930a3

    SHA256

    8e766db4c63132b09533c8fc8bc96ad567c3f20c680183c23369c5970f2146c1

    SHA512

    898af0fef09bba37f98a59786dc39672e06cde9cb33c5391badae18372131d1ab347b7ce7b71066965a04837dd794533ff7f4523f5bcc1c38f4c0a47c45edf3d

    Download Submit

  • /data/data/com.dk.tengzhoubus/databases/bugly_db_legu-journal
    Filesize

    8KB

    MD5

    740edf85b4103dbc6334ec9435add2c6

    SHA1

    a91f762ca19b1a2ebdef7e9447258b91f6e5364e

    SHA256

    99805c5ef232bc59ebc960fa6c000724120ca747ba8eae894f43680dafc308d2

    SHA512

    d8127c6d27d2b41f801feb45567f5a8c885357f1034b786827150a4b04eb8635f8b9c0ae0f7dc1bafbfae762c29945a331fd3f1a44a4d2aa0db2fcba41d8e6da

    Download Submit

  • /data/data/com.dk.tengzhoubus/databases/bugly_db_legu-journal
    Filesize

    8KB

    MD5

    b42b55f0dde4872d97565ab7da6f3d55

    SHA1

    23cd62c4a4a1fdf121f9d12c95aec0d1e3a79693

    SHA256

    0b31e1b8ebf0c01bbbf78239f9ca707db15bdd7673997ce9a6e5256cdd8eb152

    SHA512

    03f05f5c7d6f601de07471454ef7466e3d583a651fa66f64738a8aa7cf455299af1945f7b0438f7248936490959baa4946179932be2f2840407bdfd44d6ca724

    Download Submit

  • /data/data/com.dk.tengzhoubus/mix.dex
    Filesize

    292B

    MD5

    63f77f99bd2c2b772a479923bde11974

    SHA1

    c7632e7d301e4463fafce85f84e9c3d7da3fdbbe

    SHA256

    4c76a3af64cdd2f8713ffe2733dea50dbe714d0ca41c17d1847ee5b62a7ca615

    SHA512

    3aae4a89d1ed51fdd911cb367eb10afe3c2264e4222085891b18a60d5412f85d10bf5c8f3c6642db70abb9aa42732bac5c42c42ee32d587100f53c21b5beb16c

    Download Submit