Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

ee7e5bd525...7f.apk

android-9-x86

6

ee7e5bd525...7f.apk

android-13-x64

6

Analysis

  • max time kernel
    50s
  • max time network
    139s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20240229-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20240229-enlocale:en-usos:android-13-x64system
  • submitted
    10/04/2024, 08:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ee7e5bd5254fff480f2b39bfc9dc17ccdad0b208ba59c010add52aee5187ed7f.apk

  • Size

    9.3MB

  • MD5

    ec61811cc450d01ffc88d62d99e0585a

  • SHA1

    69ad30ee8dbe115f356c6badb3011ff33d8814a4

  • SHA256

    ee7e5bd5254fff480f2b39bfc9dc17ccdad0b208ba59c010add52aee5187ed7f

  • SHA512

    a5e44491a7804e7fa3e9ba66d0918e7e2edf9e6840fbd648a1e19cfd8e8cdfc606cb3a02bfb247bef0be08116a7111cd2bbb3de74ca2c89964a07bbb01f8e7d5

  • SSDEEP

    196608:ylPRsWU3/jCNWW5X1a7jSN3hx+dN1/0LhOqhL:yXzU0ZXYeN3oN90Lh/hL

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Looks up external IP address via web service 2 IoCs

    Uses a legitimate IP lookup service to find the infected system's external IP.

Processes

  • com.dem.aitim
    1⤵
    • Acquires the wake lock
    PID:4312

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.dem.aitim/databases/Marshmallow
    Filesize

    36KB

    MD5

    bb0684ae8944e4f1770dc91ee334b53f

    SHA1

    d3a8f3730679163514659a09303aa94c64d1962d

    SHA256

    b26f39273af41a3fcd2b5d949d589f3bad23777d63e5d6ad70799ac076567e45

    SHA512

    82403f988226e99e5d7d2580d6d6a75af03637a2290d84d32b4ae41b981d69b31aac194b9a8d3eca1bcabe798785507e7eb9b1a1342f5c8b780e6506da168be3

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    c63ab003f3880a3cc3eaa5e4529669aa

    SHA1

    fc03853e183a4332c5399b2c9ff1bff866bded2e

    SHA256

    5c67a42ec17a70fa88926b8fb7c3fc9e1af8c69294f7862b31b0a36d5bfa0f06

    SHA512

    85d9eadf457fa95565ced6c6a80dd97918edd0097144aac7e46ff88604bc5b46c823ecb4053118a9069fe038a28baaeebc30239d3e56cd62c9a11cddcbd71082

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    23b648f7148c462152fa3e5547b812ce

    SHA1

    cb3d2880342bd1886acb716c0977f5cee9143d0d

    SHA256

    64d050c812d5111730cbe14ce0f62f753f3d6ebb689e45948cd0ee19ae18cc9a

    SHA512

    804417cc10a67dec8ec6d6f6d50438079f02d300cecadd566aabc073e693c1faf8040242e9207cbc55352c3fef90cc40af30833ce8bc5ba657904f4a9fba2794

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    13967438daec4cbc678cb5d5a167bb63

    SHA1

    e3bcc8cbf87482f5802c647aff363b6423af563a

    SHA256

    5fb21127f5c53d67b7783505becfb156f479f1413cd739fad2038aa16437a41c

    SHA512

    950ead99b2e821d22a7a37b50168a20fb0bc5074fd4a602cbf30a7693d1eb6c4897d1e807c9e8a34d63b6e7ddd170e11821cd87631bdb5f9ee5324d9fb741d94

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    31b3c40bbba0e5fe8808c18eec331b22

    SHA1

    eb1e4afe4c9f0941de5b946690dcf649e9669de3

    SHA256

    da01ad58d9f7cd60c166651a2e9a3dc661aacf4ae041889939fae0dfd63349f3

    SHA512

    c14591c4222725d8ccbbc804c63208d0b42321fdf5bf1183100ff7a5969fd686129bb79ef2f4e1b5806549bb7898fa7a933c7e97bc68d7ae91657c8f4e538663

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow
    Filesize

    16KB

    MD5

    813074220bb15d52427f10e42a209351

    SHA1

    43c13f2bfb4ba09ac786a58425661892d2f0ef7e

    SHA256

    837f12983695798b19ef094588227da9a8c4d9b78b4b1ecb4973fc660a8b47f8

    SHA512

    abcf7992930b8b2d58744bb4f95b85f7138cafbcd6fb8cbe18367c0eba9363f961cb387c74ed6877e20b9139e415dc89c93d075a4cf21ca0474cbb0632a757b2

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow-journal
    Filesize

    512B

    MD5

    45db2d733042c291ccd3eab06b490ab1

    SHA1

    b487aae228621eaa22356e6f00db3caa521f97ff

    SHA256

    3f15d705922ff554c99e56316ae0526ef955d7c42d9c427fa69af8184fd82e6b

    SHA512

    5c17f28e8f4ab66cf0b860091954d7adc90433241efd642e00828a4efc58a56a6790f885c20da91e74e42f6e8dba34178e61b0c92a3652646bfd9c184dcc5bf0

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow-journal
    Filesize

    8KB

    MD5

    394aa3655fce98a576b284324db6d057

    SHA1

    4b7c004a421454bcf314d4741b185017ae47ddf8

    SHA256

    fd79526451f6499cb9a7a9895827db3b06e4f9886a2de3e9df5e54d8c9fe4653

    SHA512

    7dd82f788e48ef8edbba95da13e59dfe0c24c8f04f5186563d2645d613feedf52fb5bdf9af53573c308bbc2386ed982fc13480183ff4da8a6be07fcbaf442b1d

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow-journal
    Filesize

    8KB

    MD5

    3e7493cc676d51d0795afd61693396be

    SHA1

    e9bc97f9d061ef85b89f01e30621abc7599e8f67

    SHA256

    6eb6e1ac46bb4354bb5c850aa61ab3c69395dcdeb110d191afb9bd7c65bd9710

    SHA512

    e32f48773e55386c78618dabdc6b53516c983645ac3c27a8ecd4169ab0d22cf3f73488d06527f6b6a6165c97bd3f4418faa1b3e8561bf4d8d56a8a53d2891b56

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow-journal
    Filesize

    8KB

    MD5

    e45a55e2029f35f95b8ca10dd87588fd

    SHA1

    eb7e2026ab3ff34da22bd1ffaefbb289fdd7e2de

    SHA256

    befa6b0b0fb27e90a244125cc268770dcdb5da8070e0962ace586d2bf9d72c30

    SHA512

    ce4aae4aa21a5ceeffa28d4cc833d66ee7c54986d713c09108068841efaa6faa5a89fc517ba895ec1f5694353bf494fe29fbe2fed3f9d6427766107a66f4fdd1

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow-journal
    Filesize

    8KB

    MD5

    4551dee61df34e54273032cfb9a02a4e

    SHA1

    e1cc8ab51e2b18fdc3af4b24e191ef7d73247ba3

    SHA256

    e7d72dd4109124dbb92ce451e6c8cd63114b873ddb007ad96c54498cca2a5b51

    SHA512

    8a79170bc799e4e903fe250c17c642111644f36aaa934e1d3837258f538f5184be0651d19b682b7f1db2ffec3b7bfba36786259fdcb38fc37fb4d62a1eee93d5

    Download Submit

  • /data/user/0/com.dem.aitim/databases/Marshmallow-journal
    Filesize

    8KB

    MD5

    d48cbb4b5c991fc8aaa76b1b8e4ca454

    SHA1

    b1fb9a449bcc60beba5d726f469e2c1908a8aa7a

    SHA256

    fd4df972d3bccdcb200db055af87cbba38a0c7c8ad3d94fa417d743399958b3f

    SHA512

    f66d7e86265dd553c4fd2036bceea191e36f5b57ca6e843a6b4f44edbcd29e99ab7de5917d5babfc93510f99d96505d69e85123eb5a470610a61d964dc73f371

    Download Submit

  • /data/user/0/com.dem.aitim/databases/com.google.android.datatransport.events
    Filesize

    40KB

    MD5

    571112758fefc013ca64f73bc959a009

    SHA1

    64b3e995d49a74c647cb467f54fc72c28c5af3bf

    SHA256

    632907b2357e6d3e99c86012795c6a2eebd1e8c1ee0a64c64878c5c1201413a2

    SHA512

    ce75b2bf73c4fd98b5391cf39610260fc90a91a7e85388c6074fe7b21f8b54eb88a0d0ce83a3403b496bcaf885deceab36daaae18976dc1f18fa4dd0605e2e34

    Download Submit

  • /data/user/0/com.dem.aitim/databases/com.google.android.datatransport.events-journal
    Filesize

    512B

    MD5

    227d40a1b7d9c117b921d5ede9b22d41

    SHA1

    57f2a9854adde1d25cf895ebb735296a97914bd8

    SHA256

    6e58c520977a56f6e215f09f9c313d6885628cb517e0fc9e42dc1caa9eeca1eb

    SHA512

    4211b9cfba1bfa39fa49d2b2c9a1f2e02e797f59b7dab53efc8de92a97a8d153532660506d4a2023763a5d21064f4290d4edad9d92cfea58ba0dc0ecb5ac9a0d

    Download Submit

  • /data/user/0/com.dem.aitim/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    32f4448d8af4979dfe1c6fc71abb35d2

    SHA1

    3538688e382761ea078b29f7c8f374a0192b9b45

    SHA256

    82d031407ed177fe293623827002e9333ee3954db98dbb8ae01228b6fe29a2a3

    SHA512

    7b245c0681258fc42f895459edc02ea7517d8289c4544dc35bddfb23126e5a3118e8e091574c1959473015f56c4caa3ba33c332e00841fb47806905c67df3240

    Download Submit

  • /data/user/0/com.dem.aitim/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    23e15e3e71f6dd2f6683ed2580c526fd

    SHA1

    e7378f3b265fcecbecdb7e5ba1d15beab1119a05

    SHA256

    c77ad971dad7c84a48370429806671ab38a2bb4fe65b1ccc715dfd908f2702c3

    SHA512

    233d36ac2363c953a52b9cf04dc5c881ded23e46730e904488c07661fdea7c80de70c67438e3059981c64c4beb470efa1f9273e0569c8d6ed4d766fcf069a0d4

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    62ad4a05cbdca7f47b3206b7dbda487f

    SHA1

    4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

    SHA256

    18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

    SHA512

    0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    3fd6a3202cb2099d1c46dfcf862b5ce4

    SHA1

    3c66e6f6aa09fefc195c92f9e785dae338657932

    SHA256

    1f4d3e30ce4781e36167a59e8f45ad249dfe85fd93ddd9f3cdd8df3073e71652

    SHA512

    58035a4a2356c74a8b7b556e8d37a115eaf158a2bcd68a5561ee2e4c1360b628b7d01f607820163a833f6a4e09fcf7f7f91f29729bb85b40fb7e60d24d2f7737

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    4c4c7d9a904ef6face582abf3c5b7fb7

    SHA1

    7bafe42d32d8e52c120467638017e27f5ea7306e

    SHA256

    cfad5d6ab28eb4a22f7324197c85aef09b548a05663ab98355b796cb80db4238

    SHA512

    d2b19edcddf79a3afefa5322798e11233d7efe444c0f46d5baf0c25186c03c98b5f3c9969a9270f41f4f2608b6a1aa189760c414cb8ea286c84a5af2cbbd103d

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    dc7ab2d81c808a2396c533f8243a9649

    SHA1

    98c752683968240b612b93d17aee7820191dea82

    SHA256

    b24ba127232817c5cc1ea26e78f5bfc290dea2da1b19003f0f96a8d2674ab2fe

    SHA512

    f592ec5f0589e11edd4d02b3da149ead05ce5da1788c965db5640900607c08693fe563c68c1fef626b5f58de987e14afb946e45839a718af78d33ad1c483521b

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    6fd896054e7c499b5b6a473a5d5e1ddc

    SHA1

    c4aebd63c08cd4c7a8f517fa6009cc57f2685ba6

    SHA256

    f8479448d67cf10559dbb96789513712945088dfa3b7a1c0b5104ce89c46da27

    SHA512

    613bf6ace0689240a670dd3a91a8ae8c6f7f53d62fa084fc9799829a883bf13851be241352569c53f7b877e39bbbaa67f2afc18fc8364ccfd7945fb1ff2a34ac

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    0f33d19c127dac185a9d24bea05b7a0b

    SHA1

    614017cf6ee424cc161f84b9a10502ddc973c686

    SHA256

    613f692bc9a5f13ebd099f614269d710c6af01d7655b21c72c4d1a53aea11273

    SHA512

    ab0598d62e4e854c9e288201d950e4093244bae287a1ca30dd73249049b84bbe3699bbb50c75dc6191251b6ebc134bcd3bd7783184e71ebc7b9ec788188e9345

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db-journal
    Filesize

    512B

    MD5

    3410ca73746beb71ad673f3532459178

    SHA1

    db19d3f85d69791e3209fcab37ce4fd1c4f5e546

    SHA256

    f595584d167f6b68f5d5899a074bcfd0d56d0388506d72d255e011b52fceb9e1

    SHA512

    97a1be684111215c5ab111eb0dbeda092e0bc46ae32b9dbdfaf511747024c30f9a5c071a53f1b7d48d1855c73f6073855b0c597d943be6057e46686adcc99b11

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    e283d4d720a270ec165a155ec74e9244

    SHA1

    b94582cca9a8c64e65e2b91daf91a2bd344aa03c

    SHA256

    866f5d5137a0ef9ec05b28f252bda5b8fd8e468ab12114cd8b0d8aa36ab07ee3

    SHA512

    31aa0463e0a000c19877cbb83e2420b9ffcd30dd0fa0e9084db82c735da89f640a6e80f4b3e68d608a53cce24fc99bef53f2e64d33d823c3cb2d5c47087c823d

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db-journal
    Filesize

    4KB

    MD5

    be60e9ad75d5cddef0feb8bbe9ee05c7

    SHA1

    00248ebd0d79a253db15cf0cc6972283b2e2e2ab

    SHA256

    77a13f838de7dd44de65abdfbc177dfd14633b956fed818c44423463290820a7

    SHA512

    30ce6500c7141ee494e8385989842e9fd45f225fcd78cf4f53d03da177a0cb7088e4c685bdfe6ec1da64757903da7a1f959f238ce5843cad5b2530afc91705e2

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    45010f1fe0dce0b8d1d98f754ed5b688

    SHA1

    60a13ba17ce289c98492b864d9eaed71795d9e00

    SHA256

    336475cad96d0e1f18dad59d3846b427c59e98c20448afac1d711f3cd8159db3

    SHA512

    2931535f57413892db0461d6675cf3e11e00ab6b6a5666ecdc97e667370430903737de95f8c13acb32b2449020c53ea98b9eced6336fa87e9772714bef76d529

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    e4c5fa9a940e9e7736b1323586a88f76

    SHA1

    d6d9234b0528abf98961d144f73fdfeb1835bd60

    SHA256

    30957235bf987cdb64399cd3a77f56d2bffe90d650fbd04996656769cacb11e5

    SHA512

    bc3ebb5db9f9cd7c4f6d35b16e969678dd9bb66627908b6e16448838bca811c6ac8efc545e46e927c80443fd14dba8122629c538836fd407d2487a518e4ae42c

    Download Submit

  • /data/user/0/com.dem.aitim/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    076f2e45aa6aac814d4334fca0c6b8ce

    SHA1

    3bc557b73f7c4f561ef47b59a026f620b57668e8

    SHA256

    11430357fc45ab6dd2f69a70b9afb750617b3121a3d20ab8ca25aa7c91386751

    SHA512

    e26bf48f59894d8435640e5cc7cf8a451ffe80d4103bdf881d17a158d015b551f0adef84efbf32de3fcc5613b72308f85970e6a5ba02bc411416d7380bb37969

    Download Submit

  • /data/user/0/com.dem.aitim/files/PersistedInstallation5506204575179874856tmp
    Filesize

    90B

    MD5

    b68b59f2f9e680329336446c9dbc94fb

    SHA1

    069bb6e8710d0c3740fcb68b10a342eba74dcf3b

    SHA256

    fd5d4fc93df4cc37df9ce1af96b405a754b97e2717c61172dcc03ad7f7dde845

    SHA512

    18aefe0b6552b454aa2a079ac8c9c1794369a514e21b3ff3995b24f355d6c21b0ca423b7e193696d9fadc1b0166964c82590d3272b205d266cd2e2578caf36d2

    Download Submit

  • /data/user/0/com.dem.aitim/files/PersistedInstallation9220711315654332479tmp
    Filesize

    114B

    MD5

    04f5eae5a7981ec5bc89740f94efe78a

    SHA1

    de14d73c734a81fd888e4bbf1926f41126cffbe5

    SHA256

    8f6d608db061442d13f6a2d3e3e47ffc80f00ebd25a21fc11a3c65b7a2a88891

    SHA512

    ccf373e9ee23ac7a60884d3d8d932aa3383ae9af49daf75d2b7ef41d72a2723e426628cb891477892a854737d5d4617113423784ee76dc200e9f95c05b71511b

    Download Submit

  • /data/user/0/com.dem.aitim/no_backup/androidx.work.workdb
    Filesize

    4KB

    MD5

    0eb157e1a86d4d00aa601dd2f6ff3ee3

    SHA1

    fee434f784e73cc7916322e949f727caf8363102

    SHA256

    b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4

    SHA512

    b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8

    Download Submit

  • /data/user/0/com.dem.aitim/no_backup/androidx.work.workdb-journal
    Filesize

    512B

    MD5

    c8d8ea9f80a94ba242eff93d2cca5548

    SHA1

    c8b3bfd58efd3f9da56c320a7f699d7d30d389b9

    SHA256

    136036bcd20080809b162f6dd7492b1170aa6f3aa3990a2352a91419978b94b1

    SHA512

    bcb8bf29d36eca8126f16ce968201540a9f21b0dfbea4a5cf33cbbe62c4602385bd02775ad35be9dd200040f24bbf98eef39e15c90fb2cbbf582ac27f3b80b9a

    Download Submit

  • /data/user/0/com.dem.aitim/no_backup/androidx.work.workdb-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit

  • /data/user/0/com.dem.aitim/no_backup/androidx.work.workdb-wal
    Filesize

    108KB

    MD5

    50012e642fea9729e9175749ab06f7de

    SHA1

    c6fc6999b63cfdaf958873af49f131f379a42d18

    SHA256

    5da88c0a748edaf70f26a8d0950b8eca24468d930601beef96eb5c3daf6653d2

    SHA512

    f3700639b52e546246dea817edb9ad3ef13d2de0470d375ea89375eb37b44f826b2fab27436b22c98be74b66fefe2f195c1cf7f0f766ee1906b474a33ae52872

    Download Submit

  • /data/user/0/com.dem.aitim/no_backup/androidx.work.workdb-wal
    Filesize

    16KB

    MD5

    72581ad710b336a014e33394714a2ca8

    SHA1

    27af8c867ad3fa25d29f661bedd169a3dee739ca

    SHA256

    28b887caca0f48b2b0750262f3cc3304773749a6c56eaf7819bc3380cfc72f3b

    SHA512

    eafd2050c7a4d96b4bd58a7b822a5279365878156a6d1029fe5a9a2c93879de67880bdb1808a4e1ae28ae65ba8bb355d51e71132ba41298b986462675872f0ad

    Download Submit

  • /storage/emulated/0/android/.com.android.setting/info
    Filesize

    46B

    MD5

    2138ab41d53253869b264b1df0701581

    SHA1

    c30f7c45d1e1feb10dea35b819822edf4e4a2e28

    SHA256

    267879a0a48ba0e4f7ab5d9a4e67259f5131620fc9e48c460eb539df905245ba

    SHA512

    218f7ce6e9340bc8a6347e803e67aa3de4152601e8cfe4566510e6381a9613f6a9ec8c746dbe8704749b062b2644b7e593b1bb246bca90e7fa3811b99492c8a3

    Download Submit