Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

ee7e5bd525...7f.apk

android-9-x86

6

ee7e5bd525...7f.apk

android-13-x64

6

Analysis

  • max time kernel
    47s
  • max time network
    136s
  • platform
    android_x86
  • resource
    android-x86-arm-20240221-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
  • submitted
    10/04/2024, 08:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ee7e5bd5254fff480f2b39bfc9dc17ccdad0b208ba59c010add52aee5187ed7f.apk

  • Size

    9.3MB

  • MD5

    ec61811cc450d01ffc88d62d99e0585a

  • SHA1

    69ad30ee8dbe115f356c6badb3011ff33d8814a4

  • SHA256

    ee7e5bd5254fff480f2b39bfc9dc17ccdad0b208ba59c010add52aee5187ed7f

  • SHA512

    a5e44491a7804e7fa3e9ba66d0918e7e2edf9e6840fbd648a1e19cfd8e8cdfc606cb3a02bfb247bef0be08116a7111cd2bbb3de74ca2c89964a07bbb01f8e7d5

  • SSDEEP

    196608:ylPRsWU3/jCNWW5X1a7jSN3hx+dN1/0LhOqhL:yXzU0ZXYeN3oN90Lh/hL

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Looks up external IP address via web service 2 IoCs

    Uses a legitimate IP lookup service to find the infected system's external IP.

Processes

  • com.dem.aitim
    1⤵
    • Acquires the wake lock
    PID:4226

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.dem.aitim/databases/Marshmallow
    Filesize

    36KB

    MD5

    fe70530b536fa55deb1b8911e7281933

    SHA1

    fe532c303f69678e346186bbf0cd7d2787bbde99

    SHA256

    086894a5a6ce1adbf9bd56b2952f850943b893fca483d2617043ba996f9f54cb

    SHA512

    51618f25899663e427bf143c522e5a68871d11de7d91912e1b269b9c3afd09fde156763c603f76f7b4ac173ceb9db8e8e1a85985f080d98cd5a41c28c8c96664

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    ff3cb7df43c6dbf0d082315b0bf68ff7

    SHA1

    5bfb627ed03b79da6d5e1cf791aabacb5daac825

    SHA256

    b959115e4d1b5b0674a3acbeeda223131f2adfdaead63b76858551b00acb3c91

    SHA512

    567b989236c962bddcde824a531f18171e351654f40aa38807e638f19844431e56ac9528551cc6bed58d0c5b966564458da02a86e72860b87984e40ba08eba79

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    0582eb34c8576f3b0abdec445e8b3b30

    SHA1

    22814aa8e827921854c14e10ff0ee0cac8041b13

    SHA256

    f2d07fc1f8f4ff023530e4653542e39ff898f2a648df167811099f64d14ed2da

    SHA512

    6f88ca1b9b16aa92c50b32d85aed0f1d62c043135a898290faaef512e2127ffa0b782ec37ec6f26d96275cff50b36a6f03e9b48e553e81bb35f45242c6a8497a

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    c20a7992a72d6863c07204e1fa1e72f0

    SHA1

    dc00430a6000a0e6150d4c837c750792b279b25d

    SHA256

    f17525de157cf198b71e43b53286feff4d1638e8fb48db61369be1302e23d116

    SHA512

    6ba45c9580e68ad08e365f1e83a5c7461af55eb31bcd0de0480ce2e318b41942ff73d82d958624ddb279a72305a174fea01ab10d17d055d290442949a6f8aad0

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    62b121170798adf8a5d89e4c7d7b9193

    SHA1

    be33ae3c95018f87add3e08e7dcc957d67d021cc

    SHA256

    b9a07f1b8521889d884355183207308e9b824dd6e071ff3ee7548fbdff0da52b

    SHA512

    aee08f18f81bb68c65f480ee4e193c50a816e4bdba84d969b2e35737359fc578d708177fbe704e55608a7d83b0e94393c002d6cd61aa49470e4d5811ba6ec1e5

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    c706b946de7feea954a9e2c66492b23c

    SHA1

    3783c5f3919a76f9ebb46555b54308e68a66bf5b

    SHA256

    3f72534be76bd5b405e36a21cccb81fac09c295efc7e41772ba645cf5a99e65e

    SHA512

    6adbef74e47c2d4cccecb268c67d9fca8b77d25014689f1a9635032c524a38dafdd206b054dc04b5ffcc4284bc1de3981908278c212d87d861fd275f179fccf7

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow-journal
    Filesize

    512B

    MD5

    4ec7b982d841775b5d20a8ac08010688

    SHA1

    ce2e7315a9b504840b02402f98c8d4f8bcf166e5

    SHA256

    bc7b1fd9e4d803ca15410c870cfa53a28b98b38f3db4c655d0fa9461e5efbe0c

    SHA512

    27a4fa19ce5819c16228d9648d4e0c71fb40333ca7dd0d1b9cb8ecaa04ecc04b91d96efbc969e4671c7a8af076d654c935feb467d5c7470aa53846a37cc45642

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow-wal
    Filesize

    52KB

    MD5

    120bf8249c870bade5ab73f6c4932251

    SHA1

    4b5666761e58d545ffe76b4463f7fcefe57ede16

    SHA256

    c490294a9dbf2edbbd21549120508b3cd270bd58cd26bc038860e718630c512c

    SHA512

    3b6d59708ab671fcd728a6e64ea742f20f2598f9abfcc5d50f403cd6522b5aa2c6ee4e375e2b13156aea456140152e1c5b1e53c2f57a1cf08a5a9f0f86bd81a4

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow-wal
    Filesize

    4KB

    MD5

    0ecc69f6a3a1325db3d030f2d5fb52f3

    SHA1

    ac0545ef2212a6caa30e230c9e79e920165fa2ed

    SHA256

    81682f348e21d974e5c1c7d6ba879664c780caa7e5672fc1afb783e12d93e53c

    SHA512

    f847026595594486b247d1d05db2804ac6e593b94a44e6f2d79fa481e1ffeec75ff4d69bcdc1485b09a9dfc7d5f40ae263ae1f49ff6c27267e93c84c134448ab

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow-wal
    Filesize

    4KB

    MD5

    b49b61176a39bf3f7e3e27df8ee1db3a

    SHA1

    ee69564d383591e26283c3b545ce5819eb0ebe71

    SHA256

    cf6a41e1a3c115940a5d50bb466cdff38b31116e14458e976da6f68e20a6c52f

    SHA512

    2aef3fab3bb72757cc6956afc5c996c73ed4d7b1c9783fb962fa67e7ab9a210536993f14bb624785ff9756b5a5f210974bd0588dab8f6442a82cf34d22370dad

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow-wal
    Filesize

    4KB

    MD5

    e01cf9d358170b82b15a11259d030b54

    SHA1

    cc26b0e1545bb7278aaace4e5df3a59eb3090fad

    SHA256

    b7fffa3ccfb03bb3609ecf4ab743652d237a5f4444e8ab338480d1e2be5f13e0

    SHA512

    fa0eba1bb4d5d4c076ade260a06a1c46f1ebacde5600beb58e40de7dc2534fe7aa96e3f6f5c7e0ce6721568e5bc766c2795902ab192c163cf70519bac66d685c

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow-wal
    Filesize

    4KB

    MD5

    1a4bde3db40dfd9efeaf72db87816818

    SHA1

    57137cf9f1f6971675fa1a012f426df9092b7d42

    SHA256

    248c4af9608f138eef19e7bab2a3a1c73eb35c30211cd89f6304c64337be7633

    SHA512

    7b1ddd2ee47319bc1752ddfc05e287af4c7a30060e33241503cf94323b8c5759a2b9613b734358ac79d10e34f9453c104a27c6f8eaf6ad57d4c04c89a07b2203

    Download Submit

  • /data/data/com.dem.aitim/databases/Marshmallow-wal
    Filesize

    8KB

    MD5

    1c109d3afb8e24730ccb990ab80a36ad

    SHA1

    475dbdaaf7e6e412ede0c9d2608abfe7f0ab3efc

    SHA256

    9d1a492fc6e30e30de6ef07e94949ebd5d534e6b5104b5de5487609a87a0555e

    SHA512

    97403bdc2a32437bddddd5637566e2ec4ba84016d1e64ced1dac94ca82b5aab75c4437a409edcf6ccfddcdea5cf1e05bc17cd65ba017f0bdd1351a187c84c135

    Download Submit

  • /data/data/com.dem.aitim/databases/com.google.android.datatransport.events
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.dem.aitim/databases/com.google.android.datatransport.events-journal
    Filesize

    512B

    MD5

    7862d639cf47024c02669da5bab6bfe4

    SHA1

    0f4872153bd7a42d4bdb85d5aec39aca5462c70e

    SHA256

    ce08d098c8944b44d6d7c384834d2c5d8ac34c087038530647664d2f4b27e39a

    SHA512

    49dc3c16e4af393d30e71c1ecfd959b6086f895ac54e1f23973ef100d4ff0fa9ef6d3e665b6857e9686165a2c825346a7d83c72b4ed12d67fe04f020c549cc7b

    Download Submit

  • /data/data/com.dem.aitim/databases/com.google.android.datatransport.events-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit

  • /data/data/com.dem.aitim/databases/com.google.android.datatransport.events-wal
    Filesize

    52KB

    MD5

    5eab80648047f4685b9a89b13e640829

    SHA1

    399378eb36419a6f56d462d46431f8cd78833b5c

    SHA256

    3e437552616c8cfbfc4798f6b4e0c322b0f7ad7ab173b7b3ea77353362da21da

    SHA512

    0830ac52018fafd430cd24b18f88aa4efcc8f497e9a3dfcd3b3cd03b7692b127fd36c63455a01442ee5d170536bfa45bb063f6cbdb9edb8acdc5cb03ed12a43f

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    8258107aac256c4e2f3e6a096346314b

    SHA1

    b19aadaeec4f0fc6962451552ee3bf4920c59819

    SHA256

    950a0d99d54296fbb23f5ea0a55c3108151dfb2ca8f5c85bef4b4a40c81eed95

    SHA512

    d4f4b36e832997cbd40e0e9dcc69f28d2f6f1e4360ffa629112f7f1d91671bf84c006842f123d07bebac8cabe960778e881377ff06eb3e7e20df3cebcbb31883

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    8bb34d9ee376ae9748b4b9cff8a45d18

    SHA1

    2e5e1475336f7bdb6e7edbb479579781153a0bf7

    SHA256

    4e63685060ccc7a151bea584cabe3c70d3588d0c418b6d7c64f71511b7c3b5dd

    SHA512

    eca692a87c20aa67808f9eb35f41aab65232af2bcd10e48df48f5cc087f19fa751523170b13425ba1f7d460dae1ca08129c3bd5c900fc715f8737036e62064e5

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    7c4e21fee514f2f5d93081ea03ab7770

    SHA1

    b25255e77f164a5bb1fe05c3e65d087da88b8d26

    SHA256

    cadb465dd72ae8d349472781ea1f86ec70cf1d707436ce681f5b01f66c2f2945

    SHA512

    f0d390dae671cf9e9598d93ba84cd46edd527050ccaeda56a74e9f567317966fb4f001726ae6507daa21bfca9dc95911fe57b681e2244d3079f5479f38328b72

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    4140d45fe224c284e96eae942a99aa4e

    SHA1

    8c2239c48b67a5cb5c7285243079b2dda44a9de6

    SHA256

    217d9f39f8ffbafacdf4382f6f8b7687941ad1a1491342ca21cd582bda41379b

    SHA512

    63d51e914c3b330e22f7e3c5ed653a98698168b0889a0217ba6e447bf6b07f38a4a1ac15bdac7b1b401cceac102d1e3d0abbdc711ce593509e6c251d76870e53

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    44693692da738db6eb133cf0e4cde91b

    SHA1

    e6bda56494c325d8d37ad89552263ae85d9b0550

    SHA256

    8fe0ac9db76d4a2dcd3b3d54c0efedcd223e25aabf716506493d50e243a7a2d4

    SHA512

    b34ddfe1ae343b1b12f7029ae476a0ba8e1b4043ccb520afb412b3f71335ef679bf29723c9a5c00af7e922e9982d5b3af54b2ed779da8cb601f378e5b9d26be5

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db-journal
    Filesize

    512B

    MD5

    2cccd63c545dd7042dff0389580c7fe0

    SHA1

    c36ff0f5a6cf9b5d67a1ba57811f6cbad2640954

    SHA256

    a7f31cebcceab4099aa85c487fba07719d52520cc1c16c004e34dd13623e65be

    SHA512

    0e419776ae5d3c98d5ca91b31ff93f0f6ecff9a6f808b82d4ace530a2125045906b280b9f5898ed7feb9c9ff8767ce0a6d226016db80286eb7916d1997b80811

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db-wal
    Filesize

    36KB

    MD5

    f99ef78fca3c61b3b0399cd6fb65e17d

    SHA1

    ff179e55c1532b3508a2a64addd3857e098c1c29

    SHA256

    65057719af6a7b22b577916a1d139305da98c5f685abe34ba7ff4a4f0a94f9ee

    SHA512

    6d3e0e2d92064eb533ad273264c4fa46f8f3f63e1367e198c89088e7d34b86bf10a7040e81e93be93274c013f46c271bbc030354540a77c63f5053e11e7a6c0a

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db-wal
    Filesize

    4KB

    MD5

    b2dc3c9da67eb7f30c9512d656192dc0

    SHA1

    06de9084e5ae3b5106c1b7dc568a54debfee22b2

    SHA256

    ac0fb4f19b9f240569d3f3c837e65c5cb0395389c437ac51f809b980113d87cc

    SHA512

    faf0ae635f524f66e007bb6ddfc78a7656d9f17ab7b3adaa16ef170861282da77f59f509148a3eef3133e408bd7a0b1b5c4579357b9593e45b9749109ded1dc1

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db-wal
    Filesize

    4KB

    MD5

    a0f3de91ce2391e9d3ff5c1d73d5e05d

    SHA1

    7f3ea1df296459032f174fc3fdf356dbfd329b94

    SHA256

    aa6ab2201b374840fe27c32a194a90677c0ed1f6c903412aa56775faf213017d

    SHA512

    9306026b915bfbbbfd02ddfb63e1ab43e43a8465585ab8e58683fb466b02c92cbbe128ed639bd82611bfd744d283cd448253c64f924f4773cda28bd309500303

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db-wal
    Filesize

    4KB

    MD5

    c6b81655f605da93b00c906f6ab4cd2a

    SHA1

    9fc5a86f0799c61bbf4534acd4d20c35e7c2a6e4

    SHA256

    7afa7dae4fcae54df8c1e1183292d7f2ec851b05b0068347b9cc7eaedcc4c19d

    SHA512

    fc3c289eb1bcb0bd4b5516bbf1c0fb527ef9505af715a0716a2b6ec1146aed9f6750713c272e6514be2a724ac4dcf9fd34342d55bf364a27de3f0470d032f637

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db-wal
    Filesize

    4KB

    MD5

    509cda42fddb29739950440c3062be9c

    SHA1

    97b4b6c1e467be6261d6257f9e1994f7fcfa40a8

    SHA256

    7385d204eb84c46ed552c76df270b7089bd0bd1051ed08b8c67efd7ee1915550

    SHA512

    6374d71f889307658d42caaf54272969f0dc8b2ce51804741b4e6c8ec0bd4905a10f36fc72052f28b5a2e634423d4e6170a34074ff12188d328d48a55d8bd7ab

    Download Submit

  • /data/data/com.dem.aitim/databases/google_app_measurement_local.db-wal
    Filesize

    4KB

    MD5

    c759baa3bc3eb96606246f0b2e576a32

    SHA1

    448076f7e78563470de5e0fcb7f180b44ea2573d

    SHA256

    5d86baedc4552bb475bc9adfb3c0969ef6b7901b1dd18ad4e6534442809e0a8a

    SHA512

    07177c14b314fe7f5618fe652f0626bec36b9241b96d06bdf9baf78d06b0ced78efa3bb936b326323803b49fd512eda5a477f25310d94816549bb7b0f6edfd6c

    Download Submit

  • /data/data/com.dem.aitim/files/PersistedInstallation4410681565509315220tmp
    Filesize

    114B

    MD5

    9778d8e24392a89be0f4d1349e51f08f

    SHA1

    986c23c9bc3ea3f663e1dbcf0e610b535045e036

    SHA256

    c9427a651355ed99df6357d83ef9969cde3463b66616b5430615475f8679e979

    SHA512

    bc917448bf232e868acfec519dc2aac7763a6c82ef077681f6042c8b893768a1f13e6bce61fab6c03e224ac02350d9d7f81dc521666e715aa0335dd1f67309bd

    Download Submit

  • /data/data/com.dem.aitim/files/PersistedInstallation4668204882266599373tmp
    Filesize

    90B

    MD5

    9e48c9babdee6538762054e41134dec6

    SHA1

    cecd1e422f2b5ca2d4b7999a6a8f26d7692da737

    SHA256

    21d7f6274326d17ba1527ea3fdfaf4ac57527e69f48f1b4ccae8dbd7568ceddc

    SHA512

    a15f9a086a52a774de286f90fd25f497bc5631baf5c4310ce2330c15d19ff55c2f64a16f269f9e1b0c2e06eeee8770ade2cd3bb35a6d12aeaf3ebb87bac98126

    Download Submit

  • /data/data/com.dem.aitim/no_backup/androidx.work.workdb-journal
    Filesize

    512B

    MD5

    72c49cce854f354ad40f21eb4ae50956

    SHA1

    d4c5ea67726288e6d3d4126719958a4d21b6f117

    SHA256

    a93d98dab91526f4eb0f917461f5f5f810e44697a1aeb3579d595d06561ad1dd

    SHA512

    9dd76c6bd3705a8607e6a9c9955462e42d8c85122237cfb04ca6de8af42ba41e73f01cdaaf39a5bf3dc711cbd3d564f727ff08ba47daedd476ab62b55e0febdc

    Download Submit

  • /data/data/com.dem.aitim/no_backup/androidx.work.workdb-wal
    Filesize

    16KB

    MD5

    2eec6d04cbc4b8e692069e992296f61e

    SHA1

    8298c22403b0f0890fcac3ba94a2d9bb225b4c6e

    SHA256

    f72d683b9cd9a16677dbd20221612c7832bffa565da9ce64b872435bede46771

    SHA512

    f6989b900f4eab79d81f65bf56adbfbd0272a6eb009b0bd48f845609dde617c807fb841a7b4180ab187900c60800dc6d32f98a77f0f0d114707aebf76b355229

    Download Submit

  • /data/data/com.dem.aitim/no_backup/androidx.work.workdb-wal
    Filesize

    108KB

    MD5

    feca6e4cbb20c95d35cec2fda01542e1

    SHA1

    068c327d652c86447605fb1bc9ea939304cb1e2f

    SHA256

    7e909d61880bad36f145f46073e3dce4bc192ae13ffedc1b0bb467df29413cf9

    SHA512

    22a524de0a75ebd17dd78871dbbd05b2a6629f648e6879e28d9b66c48c7d0cd3fa33f1f2481f66ff2307090ea66632a8ead42e51b6d643a096c1547e546e217d

    Download Submit

  • /storage/emulated/0/Android/.com.android.setting/info
    Filesize

    46B

    MD5

    809e444dd831662784f0e21043971f9b

    SHA1

    749faa12dea3b21dafd6b40da457b7da03df49c7

    SHA256

    a73311cbbb7524ccea2f6f10eab805c340417b2fd336d99ddc4e4bc155cadea0

    SHA512

    bcf0e899765feda5c2daa5c1f7cf717fa703f58d1fcd03b9816dca171351ef2bfd5316a18d0863461844c6bff75862e84f0e6e97b19c3eafd621fc8177ec0ac2

    Download Submit