Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

07a5c9e097...3e.apk

android-9-x86

7

07a5c9e097...3e.apk

android-10-x64

7

07a5c9e097...3e.apk

android-11-x64

7

gdtadv2.apk

android-9-x86

Analysis

  • max time kernel
    3119227s
  • max time network
    157s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    29/12/2023, 23:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    07a5c9e0976634429b5a7f37cade343e.apk

  • Size

    11.9MB

  • MD5

    07a5c9e0976634429b5a7f37cade343e

  • SHA1

    24dbd7fc7d3ebfe36e920ea000b1408aa5f6ef55

  • SHA256

    69e51037df2645fcef1f900d6f7b507d5537b85a3afe9d259bf8185a0a5cd3cc

  • SHA512

    3ad2dc45b175c78f7780a34a3da70e767c031a79e0b1625043e7cd893d1c4a2814d66428f97118f038a2def7f54a3aa86e4df18a63fccf98f6fc8694a9e5ebb1

  • SSDEEP

    196608:xA5W4KwWfcST1z19IZbeZDKQGgnGmJZSZ/o7SjaD7dw33ixZ2zUq:xUu1hsbeZevOG1xo7yaHdwnI2zF

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • zzp.fke.etxhh
    1⤵
    • Loads dropped Dex/Jar
    PID:4912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/zzp.fke.etxhh/.jiagu/classes.dex
    Filesize

    4.0MB

    MD5

    d738620ebc360981fa8b7ada3b336829

    SHA1

    876cc70f0f0cab3f5a44e96677067ed39be43911

    SHA256

    8de0d86b4ba5d3586b800e73049f601329a3e9ab804beea57c4682f634850551

    SHA512

    b6b6b124f045f8c5d09d4e762394a222c5fed0de801900dabadeee0ad873654617cce5a3c86d452f341164f653c8fe36ec5a5f732eda4095f596a5aa92c7e928

    Download Submit

  • /data/data/zzp.fke.etxhh/.jiagu/libjiagu.so
    Filesize

    562KB

    MD5

    d141f6661f27d70822c7021d752d8af6

    SHA1

    e545f7442dca4490cb67b745f6f13ed782b1971c

    SHA256

    e0313c66404c4fb7d023824265ae5a922079d422509d4b59c6fe45632c60146a

    SHA512

    0b2a4c540c077ed93561f249baa75a65344e75dbfaefdb3a68c0d653d79bb5152fcd42c13f34a87b09583f33f1a40231b4f31416b73c323859885374ca0667f6

    Download Submit

  • /data/data/zzp.fke.etxhh/.jiagu/libjiagu_64.so
    Filesize

    573KB

    MD5

    42abe73319c2521e0fbda052b9d5f1a8

    SHA1

    9ba99e9d00782c0cd94cfee590dc5f540c14c737

    SHA256

    7f33251c6ad0df0db7d313803a1339cd2ee1ce91f832fd7b0bbc651bed74d32a

    SHA512

    0a5362cd28aed0db67bbda3e12e8afa24ec0edd722df732d3b8c645c6351b1864909be9eb155da2ec195ae7d4c42e0bc0b1db083232cac82e39fa4c79dee1792

    Download Submit

  • /data/data/zzp.fke.etxhh/.oabugaij/.fsgkea
    Filesize

    1B

    MD5

    01abfc750a0c942167651c40d088531d

    SHA1

    d08f88df745fa7950b104e4a707a31cfce7b5841

    SHA256

    334359b90efed75da5f0ada1d5e6b256f4a6bd0aee7eb39c0f90182a021ffc8b

    SHA512

    d369286ac86b60fa920f6464d26becacd9f4c8bd885b783407cdcaa74fafd45a8b56b364b63f6256c3ceef26278a1c7799d4243a8149b5ede5ce1d890b5c7236

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.cl
    Filesize

    32B

    MD5

    640abec082b18fc1e78314a7fe59d3d2

    SHA1

    05ac013422f3901bd845d17403cf113826b0f755

    SHA256

    0280d3fa5da22f3f248bc530422771218d365dee65b075eee125596f801251f7

    SHA512

    bac5b50a9a996f856660c8b30f8bff44d779c62b1b78ecab3066fa8fe81e024684e74f50ef90dcb20a224866972be049906f72cbbeb9d22083c54e3438d91710

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.jg.ac
    Filesize

    32B

    MD5

    d4586f7254e1e36c14db197b0b7ab0d0

    SHA1

    1953ee5701fc1121adb84e07aa00e71ae4122f9b

    SHA256

    f3f81754edea5568be8f7ad095090fba808692df0fabc7c2dd723a4cc488bc4b

    SHA512

    b48663c34d8714caf48207d08ff374e74e5a4422c9ac70c829c6feadc24804ba65c2d0a22498a89ebdd9521a95e80a131d6153b048d4e7076dbe5b385b4cc618

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.jg.ic
    Filesize

    32B

    MD5

    06a1c9977c5cb81a5a874e44a3bf65e8

    SHA1

    e820c5f78f32e0ecafb04cb6dc293c339ee12867

    SHA256

    c72b4b08808903266850a3ea9b83171b81299836aca22f0129193597185717f4

    SHA512

    8a0f43f48946c164d3ec421e076297586cb4519de46394bead8b8861e15315b03590e84cfeedd9e47add4d8eb7ebd5263992bb5cb03af2c6c8ec60b143589d42

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.jg.pk
    Filesize

    32B

    MD5

    0a30e6bc0892ffc066b8e8917b3106f2

    SHA1

    5f7c586c13f029d1c59ccc9969706ab5ee5f90b5

    SHA256

    33088fb76fd33eb08ad377f9e3e7a4bba9dab26b08f9b1823cd1ff6c041226ba

    SHA512

    13d4e7d17331c6b7bdcb5202b066741cbfda2ce842ca9ffdcad6cc53970cd00c1548b5051bfcf504dcd4d2eaa58b8cd22c679495c4866d30c5ea4e93dc93341b

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.jg.pk.h
    Filesize

    64B

    MD5

    8958a90a0dedc4832711fba5c6da8d96

    SHA1

    57dfc74bcc70666ffbce97b47c375e399b2ce664

    SHA256

    d34b35e2d24447279880bb70ea34ecbba9a31d0edea771f05340802547baaba6

    SHA512

    279915296fde59d28f7b3f09adbd59de8ced07d9f5e2f385f109301f25e122936ce1a7529684592cfee948a2bb683c69cd19485252c58dedbef819c4cec560fa

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.jg.rd
    Filesize

    32B

    MD5

    e4d2249796ed0542b0e4e6335fe65c5f

    SHA1

    3a771d0fc6389cf361395a4fd379d3c45059de6b

    SHA256

    1fd9675a0017cdbd12409a7a252a954ce4162f71a51004ef2b57e889aa00269e

    SHA512

    32b2ea50876f8ad1872dd93d7ab4cf2dc66195262e954369a8978536113be1ccd377d0960a3bb3d13227c99a905369b3b937edabf0b2e93b83bf3dbadf9f2869

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.jg.ri
    Filesize

    307B

    MD5

    7020297421427b49062f4e093513c457

    SHA1

    df5a47ace12d8e2cb60d6f74d5de3673514074e3

    SHA256

    fa18834fe6750e79c519903f2eaabeb594e9f0f988de8aa0672c213d835f510c

    SHA512

    feeabf21daf6d38f3ed3b6a3b0eefcd3424febe08b0b84011084bd7729b291ad76e1f907e8f127be891b1eba5cffce793d2bd8208b5c9edc8882484b29c63ba3

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.jg.ri
    Filesize

    314B

    MD5

    026f7ad17db836267e2fe624384c9620

    SHA1

    7556bb8a4c34e140c579809d1b03858ccce34ce6

    SHA256

    b555560b0da90cf5ca0d878876449d5ca7f359f7a5c56e5e1c224e4787520781

    SHA512

    c129e4b4f19c9192f159ba37c805f7699b131f19e0eb6d7419f8167b526aa9604eeb3260447918a7c1b0fe0e0ed38190d9ad8404e4b598e32698b438274a6a03

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jglogs/.jg.store.report_pid
    Filesize

    32B

    MD5

    5521368ed981f241d4672613705503c1

    SHA1

    01f870b2ce6ed572d0a6c7a00585bdd1bf45dec3

    SHA256

    c5b77fd5dee29e48341d6fe9647a4324bcf495fa2c7357a12eff1211aad608fd

    SHA512

    f0ad719fa9cde400391333c31cd7fc6f5951b36f52159c1adb7ee59cd3c0675365674dbee811759113dc898d6f1736cb83028c7471a671c0db7b628d72518ac5

    Download Submit

  • /data/data/zzp.fke.etxhh/files/.jiagu.lock
    Filesize

    27B

    MD5

    6f997022eb9cce465fef022199cdf6f5

    SHA1

    ab9bda8977b1b1f61f0c1db02e2a952364c22ee6

    SHA256

    25b9723bfc77f4edb731b658f268460daa10f98363f1848e5a8bac4ea988bdad

    SHA512

    37f6cb8d4c6e8c9a8ee9a07914c88e00e2ca94c73d6315491eb27a6cbb9620450cac041697983b0c2250b18a3b4feffde62f852a431d38d19f3e93dbc94202ed

    Download Submit