Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

c8d7080d63...45.apk

android-9-x86

5

c8d7080d63...45.apk

android-10-x64

5

Analysis

  • max time kernel
    67s
  • max time network
    158s
  • platform
    android_x86
  • resource
    android-x86-arm-20240221-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
  • submitted
    14/03/2024, 14:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c8d7080d63a583d37921e37b8e404845.apk

  • Size

    5.9MB

  • MD5

    c8d7080d63a583d37921e37b8e404845

  • SHA1

    f836247941c9b9b15014cb479781793f61f1a664

  • SHA256

    65cab20cde078316ec9c766266a8c9373653bbaac997286a75c58a331e7c9e88

  • SHA512

    f89c54af38de7017882cafad5cb48962c5ca8b2da9a93539b3c2e5a0abee56bbda37489f6516a3180685690794bfe4f1e74af26c1802b7fbb27c47ac49361250

  • SSDEEP

    98304:DSmIoAFE48UJNU7ai0t9XMohdcgPcOifp7oyU1MhLeqBW/npMM2yhzH5Tsckw/HE:mLVFE42a75hqyij0uehqM5NTWw/HX68W

Score
5/10
evasion

Malware Config

Signatures

  • Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.dgahbgackhmcmlno.qiangshendoudou
    1⤵
    • Listens for changes in the sensor environment (might be used to detect emulation)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4235
    • su
      2⤵
        PID:4291
      • /system/bin/sh
        2⤵
          PID:4430
          • ls -l /sbin/su
            3⤵
              PID:4448
          • su
            2⤵
              PID:4468

          Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/.um/um_cache_1710426484848.env
            Filesize

            586B

            MD5

            381fe226b55d289ef396171eb75797b8

            SHA1

            f05f878b31dbc9d5a00e80caef356848f0f925a3

            SHA256

            c7cc51d0d24263ed8a9e0129f79ab54c1607611964e2196ba9393aba5ddbcc2d

            SHA512

            98762e9cb14b98358517816d47a2d42f4b2959b367b4ddfc282b3c4c0d1cd97d8d8f2ff2574e9acfc11239fe7eaca5406a838297629c8488f47b06c264e27b64

            Download Submit

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/eventservice.jar
            Filesize

            217KB

            MD5

            1b0d940ba231198229eee34e553c2136

            SHA1

            d09bdb266f147eb28bcaaaccb94d4d5343055867

            SHA256

            ecc1b051d8857a396902697418cffc8f54627f26515742283f3cae7c47e23e71

            SHA512

            8c1bf4c6726a32dd91bfa34be3a46ea5dadd060d98437f8674c051af7f57383de23ee73af6a257be5274e71ab4344f805d3f473c7794c3d434a4215156dfece9

            Download Submit

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.atc
            Filesize

            7KB

            MD5

            20d3a7d53c72a37ca3c91d449d851c8e

            SHA1

            2ecb168acbf428ce9cc4bc226070422ab3088755

            SHA256

            6fa9776cfa0fdde7aaa7ad1215b4fab2d7e4b34a7556a6cced3fc360ae78bbee

            SHA512

            4267c17f4a2ba6b06f4d66ec04e3819b00513f83b5f313ab8f710ab23ebbd9ab03a8b6aab44d1a356d56496dadbc6e43067351c81754fe0aaa5506cb23f830e7

            Download Submit

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.lc
            Filesize

            1KB

            MD5

            705031d29d536ce084020d289461282d

            SHA1

            878134ab4cfd1222e29916b0f4a40e41cb7ef63a

            SHA256

            5eca1bd35edef0f9c5b11b6fadce13359eb1225faf78adf548b01af8963fffe1

            SHA512

            cbf241a1537ef8a721792583d00a754f992b87d82abb89c8d22ffd8b24d6c227be22f3046f1cb5daafe469eab19220813a62371245c5a5367d2bc6ac25565b90

            Download Submit

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.prop
            Filesize

            307B

            MD5

            0e2bd76ab3ba2df6504df4f33bc1b32d

            SHA1

            fd7b091b59ae4cf5f2da4b7b66eff9145a0d889e

            SHA256

            77df837898d3ad864a8db7ffc79a6935df5bb77a771b54708c91c179ca09d35b

            SHA512

            20348b5267282aee16814ba2bc977498ac2fc8cd42bfc9c32f11b36a451059f4a2870a4ab5b4b398aedcc400cbff0ee0719cc606530aa455ad9d8c16d0031d48

            Download Submit

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.rtd
            Filesize

            1.4MB

            MD5

            7c845a3044cf356bab346891c0b9a6e4

            SHA1

            6d0a9544e8c5f88047114e2b3b474bc3679c8852

            SHA256

            3e72a1011339f1a8e38d8b1553e564ccfb395e2d3e7a3064240d3d5cebfaa0ca

            SHA512

            82aef06f0caf2079e72f556de0c96eaa6ac54cfd24921dd8c304b51d404047673a289b016cf6587a0dca78cbae12f3bef7b05b89d5d64aef4bc543e3d0e70224

            Download Submit

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.ui
            Filesize

            1KB

            MD5

            65bd87a4d0f8b33c63c23089965fcaa9

            SHA1

            5231f6690d0333123d1673b111ab0054fec72004

            SHA256

            91261f80f27a9c4c57fd757f500b50148d9b52281a3183d8c339185359c59d31

            SHA512

            ca2e57d1c6326ddb50cfc2a166f8ec0c7d25d538b7c41c4890a063645b3019c08461a41e797a53a7d20a232d1b4e12d8af01e150df0721826fcc8368f054a5fa

            Download Submit

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/start_eventsrv
            Filesize

            327B

            MD5

            cc047ddb391c30c3be2ec6524ac741fe

            SHA1

            bfdf62e60a73a59a427755b047d543b047725963

            SHA256

            f7c1b46451abbd19d4ec899b9e1f71323dc6bc546b82576a31801c6beae947bd

            SHA512

            feb763d4909c08f099a6fed14a4ba8a7ac4fbc5524897f0e3b47760b89b91af9b8b7a0f94aa37d00cbfd9aee2a5021fbdf629d0fadcebd10fe94b0fe7c6545d1

            Download Submit

          • /data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/umeng_it.cache
            Filesize

            310B

            MD5

            803602623820728a4b0e4f8760a17210

            SHA1

            defd23b64cff5806c4205b990ff0bfb8fcc24f28

            SHA256

            3a393de52af9b33eebd8606c6724b89fc9fac767a96f4c2cc56743ca49b0d5c9

            SHA512

            51c6d77bab87795856cd171084720cf8c8ee79b9357d7be24199a80bc299030054c3070142b3ff2203f0a90a312b1e6277d5be88fe9435b15906ddf973c7d37e

            Download Submit