Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    virus invisible.apk

  • Size

    1.7MB

  • Sample

    240421-mv2lgshe7v

  • MD5

    789a4f14dcba5d270730ab95f0cc230a

  • SHA1

    f377d584cffb7d263a71bb66315f13cf130f61a3

  • SHA256

    7281ef02bb73c92d2245645ac1a3b08966719457fab87e74a4463911310718b6

  • SHA512

    9a99b00158759599ebdbb41926c9948a428c2c72bcaa4a98e407ff209e12d7e217b08217d0ddb13d2735ca20580d72d27ca23343cbb8c8c9709e898094f364b4

  • SSDEEP

    24576:kHeVbupUASUT4vcOwxBSHu2ajHf2xg4MLL/UFvhiOZyPa0lHNzde1Ej0:0GQ94knbJTOxg4MsFv0kEl5Nd+Ej0

Malware Config

Targets

    • Target

      virus invisible.apk

    • Size

      1.7MB

    • MD5

      789a4f14dcba5d270730ab95f0cc230a

    • SHA1

      f377d584cffb7d263a71bb66315f13cf130f61a3

    • SHA256

      7281ef02bb73c92d2245645ac1a3b08966719457fab87e74a4463911310718b6

    • SHA512

      9a99b00158759599ebdbb41926c9948a428c2c72bcaa4a98e407ff209e12d7e217b08217d0ddb13d2735ca20580d72d27ca23343cbb8c8c9709e898094f364b4

    • SSDEEP

      24576:kHeVbupUASUT4vcOwxBSHu2ajHf2xg4MLL/UFvhiOZyPa0lHNzde1Ej0:0GQ94knbJTOxg4MsFv0kEl5Nd+Ej0

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries the mobile country code (MCC)

    • Registers a broadcast receiver at runtime (usually for listening for system events)

    • Acquires the wake lock

    • Checks if the internet connection is available

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks