Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

00ec2ebc56...f2.apk

android-9-x86

5

a.b.c.d.e.cache.apk

android-9-x86

1

a.b.c.d.e.cache.apk

android-10-x64

1

a.b.c.d.e.cache.apk

android-11-x64

1

a.b.c.d.e.apk

android-9-x86

1

a.b.c.d.e.apk

android-10-x64

1

a.b.c.d.e.apk

android-11-x64

1

Analysis

  • max time kernel
    3228675s
  • max time network
    148s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    29/12/2023, 18:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00ec2ebc56c5df8cb3780d69bd19d4f2.apk

  • Size

    17.0MB

  • MD5

    00ec2ebc56c5df8cb3780d69bd19d4f2

  • SHA1

    9ccbc1dd9aff6186d3339c561052f66f4597417c

  • SHA256

    a0d9939dc229848eaeaa2d6e7a2404168c356b632dcabfc609db5f035f64889d

  • SHA512

    0d8087feaa625b4e4d18cbf5a512751de2244725a6003d77016d56f637c1e9bbf475a4deb08e490788cb4ce1766b2782683fa159f078fc6989111cfeedc35f89

  • SSDEEP

    393216:2jIBpdUQc2xJ0cMgijBTUYhoiN6MGpaLtr9:TphL0cMCx1MG4LF9

Score
5/10
evasion

Malware Config

Signatures

  • Checks the presence of a debugger
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.sdkljfklewjrhjlk.werhljk
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4246
    • /system/bin/sh -c type su
      2⤵
        PID:4297
      • logcat -d -v threadtime
        2⤵
          PID:4323
        • logcat -d -v threadtime
          2⤵
            PID:4336
          • /system/bin/sh -c getprop ro.miui.ui.version.name
            2⤵
              PID:4364
            • getprop ro.miui.ui.version.name
              2⤵
                PID:4364
              • /system/bin/sh -c getprop ro.build.version.emui
                2⤵
                  PID:4390
                • getprop ro.build.version.emui
                  2⤵
                    PID:4390
                  • /system/bin/sh -c getprop ro.lenovo.series
                    2⤵
                      PID:4418
                    • getprop ro.lenovo.series
                      2⤵
                        PID:4418
                      • /system/bin/sh -c getprop ro.build.nubia.rom.name
                        2⤵
                          PID:4443
                        • getprop ro.build.nubia.rom.name
                          2⤵
                            PID:4443
                          • /system/bin/sh -c getprop ro.meizu.product.model
                            2⤵
                              PID:4467
                            • getprop ro.meizu.product.model
                              2⤵
                                PID:4467
                              • /system/bin/sh -c getprop ro.build.version.opporom
                                2⤵
                                  PID:4495
                                • getprop ro.build.version.opporom
                                  2⤵
                                    PID:4495
                                  • /system/bin/sh -c getprop ro.vivo.os.build.display.id
                                    2⤵
                                      PID:4520
                                    • getprop ro.vivo.os.build.display.id
                                      2⤵
                                        PID:4520
                                      • /system/bin/sh -c getprop ro.aa.romver
                                        2⤵
                                          PID:4545
                                        • getprop ro.aa.romver
                                          2⤵
                                            PID:4545
                                          • /system/bin/sh -c getprop ro.lewa.version
                                            2⤵
                                              PID:4572
                                            • getprop ro.lewa.version
                                              2⤵
                                                PID:4572
                                              • /system/bin/sh -c getprop ro.gn.gnromvernumber
                                                2⤵
                                                  PID:4597
                                                • getprop ro.gn.gnromvernumber
                                                  2⤵
                                                    PID:4597
                                                  • /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
                                                    2⤵
                                                      PID:4622
                                                    • getprop ro.build.tyd.kbstyle_version
                                                      2⤵
                                                        PID:4622
                                                      • /system/bin/sh -c getprop ro.build.fingerprint
                                                        2⤵
                                                          PID:4647
                                                        • getprop ro.build.fingerprint
                                                          2⤵
                                                            PID:4647
                                                          • /system/bin/sh -c getprop ro.build.rom.id
                                                            2⤵
                                                              PID:4672
                                                            • getprop ro.build.rom.id
                                                              2⤵
                                                                PID:4672

                                                            Network

                                                            MITRE ATT&CK Matrix

                                                            Replay Monitor

                                                            Loading Replay Monitor...

                                                            Downloads

                                                            • /data/data/com.sdkljfklewjrhjlk.werhljk/databases/bugly_db_legu
                                                              Filesize

                                                              4KB

                                                              MD5

                                                              f2b4b0190b9f384ca885f0c8c9b14700

                                                              SHA1

                                                              934ff2646757b5b6e7f20f6a0aa76c7f995d9361

                                                              SHA256

                                                              0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

                                                              SHA512

                                                              ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

                                                              Download Submit

                                                            • /data/data/com.sdkljfklewjrhjlk.werhljk/databases/bugly_db_legu-journal
                                                              Filesize

                                                              512B

                                                              MD5

                                                              eddceac716d9b63e0fc4137f1ce25167

                                                              SHA1

                                                              828198f274900fb6f5c9b6c1b7361588710d99c8

                                                              SHA256

                                                              1fe01b21abd7d2f0a96f160023e3fcc0d07bbc5dcc3f3c0eefba37598c248d51

                                                              SHA512

                                                              fbe4a97eb3f812d19207025938e991954b517639715e179a7fafec48da606246887212036fc0e33c0d4ca1c81c20b32b16179f8196942224f654c06401947549

                                                              Download Submit

                                                            • /data/data/com.sdkljfklewjrhjlk.werhljk/databases/bugly_db_legu-wal
                                                              Filesize

                                                              16KB

                                                              MD5

                                                              86602acfea389d9b633331301da27ae0

                                                              SHA1

                                                              5aad98a7e5ebaa1de51714ab0ba2c5c13e706258

                                                              SHA256

                                                              4d4c7636553fdd3063d1363bc75f5314adbd12a899bd96adf948f0b19b66ae0c

                                                              SHA512

                                                              8e62c916bc36a86512380cb121bc57973e11ecb393e6223621893b970c61185bc9144c38542396b957f5715ffb5c1ce0f72e9c3e7fd020e03890144f3ca96b5e

                                                              Download Submit