Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

c681682068...8c.apk

android-9-x86

6

c681682068...8c.apk

android-10-x64

6

c681682068...8c.apk

android-11-x64

6

Analysis

  • max time kernel
    128s
  • max time network
    165s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240221-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
  • submitted
    13/03/2024, 17:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c6816820680f2dda34b9a3fb70eeb48c.apk

  • Size

    30.6MB

  • MD5

    c6816820680f2dda34b9a3fb70eeb48c

  • SHA1

    beb3423e7e608a52d3cc8ce1b1e9d1952277b37e

  • SHA256

    7e9645b7f890b956da1b3ba387a8607aa586a0991b493cfbd55046aaa4f006b0

  • SHA512

    06a910668bb3f353ebb76391a8f3c3c3ee379cadab0330cae27c37dd0dba723f2ff2d27df4d54452900b781fb1e186bca48ec0c024e337a92a2835a362c14460

  • SSDEEP

    786432:BRA55G02Iw4MaX3ITMBixOc8DjtMFTtf8qSf0R:Ba5rhw41XUM+lw6Hf9Sf0R

Score
6/10
evasion

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Checks the presence of a debugger
    evasion

Processes

  • com.wmrpg.arpg.darkslay0
    1⤵
      PID:4373
    • com.wmrpg.arpg.darkslay0:ngds
      1⤵
      • Acquires the wake lock
      PID:4413

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /storage/emulated/0/.ngdslog/com.wmrpg.arpg.darkslay0/pushv2_part_one.log
      Filesize

      450B

      MD5

      b8ba16894a669928244a52794ef17102

      SHA1

      370d8a9fffcb6e9a29f9b67d6daa220662631a31

      SHA256

      2541140bd89cab981bf62779042325a26341e43c5309e6865e989e1e34a30510

      SHA512

      e453248632498550c3916adbbda2d31dcc829dbe0b389e67ef8b0053213639366a78222672bbef5cd1ac08e4e84bb0e3c24675bd9dc848a06764e50182a1ecbd

      Download Submit