Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e9d72a7568df3b0b9cf1c5215cf24b6e_JaffaCakes118

  • Size

    27.7MB

  • Sample

    240409-m49nfsge8y

  • MD5

    e9d72a7568df3b0b9cf1c5215cf24b6e

  • SHA1

    88c72d6f62a371f2b3e22f86275a23911b006949

  • SHA256

    f8967c02f4067054d749ceb2e59c9c5ade9dcd66004770a802fb3b794075d46f

  • SHA512

    2a63c63d8268380d5bcf1c3ff18574d095306f5ae20075415cfb6179b042e4c3c2ae875ad4f40f058ef70a51d06eb88d6ac01f2ca4a5fb892515f7ee36714f11

  • SSDEEP

    786432:HXGwfXArvPRcz1dV5MurMTDJ7GNwdcMDWvdA5yI:HWmXWvP+z1dVRgZ729Malc

Malware Config

Targets

    • Target

      e9d72a7568df3b0b9cf1c5215cf24b6e_JaffaCakes118

    • Size

      27.7MB

    • MD5

      e9d72a7568df3b0b9cf1c5215cf24b6e

    • SHA1

      88c72d6f62a371f2b3e22f86275a23911b006949

    • SHA256

      f8967c02f4067054d749ceb2e59c9c5ade9dcd66004770a802fb3b794075d46f

    • SHA512

      2a63c63d8268380d5bcf1c3ff18574d095306f5ae20075415cfb6179b042e4c3c2ae875ad4f40f058ef70a51d06eb88d6ac01f2ca4a5fb892515f7ee36714f11

    • SSDEEP

      786432:HXGwfXArvPRcz1dV5MurMTDJ7GNwdcMDWvdA5yI:HWmXWvP+z1dVRgZ729Malc

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries information about running processes on the device.

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Mobile v15

Tasks