Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ac62a56b37ada17642f9ece330750ff2

  • Size

    22.5MB

  • Sample

    240228-vftlbsha79

  • MD5

    ac62a56b37ada17642f9ece330750ff2

  • SHA1

    b290d9fe1777a96c8a1c3ec4331515bf0a265855

  • SHA256

    b7ebe24517cdd860b17151f5c420290e5444ece1d215ce2dd452281d4b8fbe5f

  • SHA512

    ac1f92a2de28298761236ca157abd11d0c72f27715c0f7703f85c7c9b6652d78222bbac8b4039408b12556dd03e8c51eff09b41d4c067c5aa4695d488492b268

  • SSDEEP

    393216:vQXmZVfO1+cVvpPPbUsMjSUylbz5Zmicp+r2tF9YM3c7gf/dgMRGA:vWmZpi+kFQjkp3mpF95sc2MAA

Malware Config

Targets

    • Target

      ac62a56b37ada17642f9ece330750ff2

    • Size

      22.5MB

    • MD5

      ac62a56b37ada17642f9ece330750ff2

    • SHA1

      b290d9fe1777a96c8a1c3ec4331515bf0a265855

    • SHA256

      b7ebe24517cdd860b17151f5c420290e5444ece1d215ce2dd452281d4b8fbe5f

    • SHA512

      ac1f92a2de28298761236ca157abd11d0c72f27715c0f7703f85c7c9b6652d78222bbac8b4039408b12556dd03e8c51eff09b41d4c067c5aa4695d488492b268

    • SSDEEP

      393216:vQXmZVfO1+cVvpPPbUsMjSUylbz5Zmicp+r2tF9YM3c7gf/dgMRGA:vWmZpi+kFQjkp3mpF95sc2MAA

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Checks known Qemu files.

      Checks for known Qemu files that exist on Android virtual device images.

    • Checks known Qemu pipes.

      Checks for known pipes used by the Android emulator to communicate with the host.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    • Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Mobile v15

Tasks