Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
8Static
static
61ee90d451c...18.apk
android-9-x86
8WeiyunPlugin.apk
android-9-x86
1WeiyunPlugin.apk
android-10-x64
1WeiyunPlugin.apk
android-11-x64
1qqfav.apk
android-9-x86
1qqfav.apk
android-10-x64
1qqfav.apk
android-11-x64
1qwallet_plugin.apk
android-9-x86
qzone_plugin.apk
android-9-x86
1troop_plugin.apk
android-9-x86
1troop_plugin.apk
android-10-x64
1troop_plugin.apk
android-11-x64
1General
-
Target
1ee90d451cbd168682c0e20d020af07c_JaffaCakes118
-
Size
37.8MB
-
Sample
240507-bctx5seb46
-
MD5
1ee90d451cbd168682c0e20d020af07c
-
SHA1
5f8f348dbbfd6fc8498ff7d474f1d0e3cc13827e
-
SHA256
4822b1875a666f130999c0c347470f7ff64308b14063b101606b944b416ac6f2
-
SHA512
1a021971140ba878a3af602658bc395746e1d23fd1d3677f9b424160f1d89e441f15d9ac3952874d0a78d28aa66fa66622cfc8626c651274661de7e904b6a2c8
-
SSDEEP
786432:hDs5OAxsLqiBxRRpZJxVt+xwMEOWaCKsfLADtFn01Cw:hY5O3ZLRrvxOUPKsfLADQ3
Static task
static1
Behavioral task
behavioral1
Sample
1ee90d451cbd168682c0e20d020af07c_JaffaCakes118.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral2
Sample
WeiyunPlugin.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral3
Sample
WeiyunPlugin.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral4
Sample
WeiyunPlugin.apk
Resource
android-x64-arm64-20240506-en
Behavioral task
behavioral5
Sample
qqfav.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral6
Sample
qqfav.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral7
Sample
qqfav.apk
Resource
android-x64-arm64-20240506-en
Behavioral task
behavioral8
Sample
qwallet_plugin.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral9
Sample
qzone_plugin.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral10
Sample
troop_plugin.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral11
Sample
troop_plugin.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral12
Sample
troop_plugin.apk
Resource
android-x64-arm64-20240506-en
Malware Config
Targets
-
-
Target
1ee90d451cbd168682c0e20d020af07c_JaffaCakes118
-
Size
37.8MB
-
MD5
1ee90d451cbd168682c0e20d020af07c
-
SHA1
5f8f348dbbfd6fc8498ff7d474f1d0e3cc13827e
-
SHA256
4822b1875a666f130999c0c347470f7ff64308b14063b101606b944b416ac6f2
-
SHA512
1a021971140ba878a3af602658bc395746e1d23fd1d3677f9b424160f1d89e441f15d9ac3952874d0a78d28aa66fa66622cfc8626c651274661de7e904b6a2c8
-
SSDEEP
786432:hDs5OAxsLqiBxRRpZJxVt+xwMEOWaCKsfLADtFn01Cw:hY5O3ZLRrvxOUPKsfLADQ3
Score8/10-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-
-
-
Target
WeiyunPlugin.jpg
-
Size
61KB
-
MD5
2e48ec5ff3954d2caf7fe5828a8326d7
-
SHA1
79df5f0843596fff19084444c9e825c53c4246a0
-
SHA256
b0355a28492b7fcbeae91d331a051abe8d34d942874cad8a0923f20ba0d431e3
-
SHA512
237fa7e8fe754d55e772b640fe13e72314139d693df6e75a0601b3693b528b8f5ac41ee6edab0df28f832c3dd042a57c0252e8125b767f44fac0cdf6d541aebb
-
SSDEEP
1536:l5MnxASmWXwNTrD6ObbzSCI4Dyrqba9x4h27JGV4ftxl7:linhHgnD6Ob/SCI4DyGGL4cJG0xd
Score1/10 -
-
-
Target
qqfav.jpg
-
Size
279KB
-
MD5
8755d9f006ada7873af1a0526b218835
-
SHA1
5a540fd7857729bd05a88ff1ef07c319029c27ae
-
SHA256
31112f889c19529f10d06bf1c02467a0d1be4e2811d855da2f9d7012a2c42900
-
SHA512
d5c7e33998cd7a35a80de11d192e61a72910555b566d74f88d8c87e64e26a5ea0f46884684d9b958183bf3db2e5fe7d0767040837e70f92dd4ba01cd711a3346
-
SSDEEP
6144:tRUsbWuGM0dd215vKZXCjpb2Me7CeHdR60dEWVArP1TV8QOdxFAkN4o:tRzb7GM821oZXsAbr6qE55xOvFAMP
Score1/10 -
-
-
Target
qwallet_plugin.jpg
-
Size
816KB
-
MD5
8325e350f08ca8ae99be496aceb3f66a
-
SHA1
5f926c784b79bb61bf90f6394fe11bef72dc1e3e
-
SHA256
2a0dfbc4a632499d14ed205ee0056c069b734e2553c3fea6e8e05dc4d9cdfe02
-
SHA512
ab929420b3342d96391c06181f5e849879815d6cb256877f6df79371a2840df02e24a6417f0132933f980d235ab837eb66daa051112907de34b69e3cda259fdd
-
SSDEEP
12288:7m+TIi6YPMIps3cwYkbX4GKiX0NN+uVuADll7CkKEvpfIZ5lw0YzbPzhdr:7m+09ezU9bX4GK+Dgllz965y0YFdr
Score1/10 -
-
-
Target
qzone_plugin.jpg
-
Size
2.6MB
-
MD5
3cd681f06c27704c28f0a8e890700467
-
SHA1
3abb45ed976deeb969111b3e1546bbcbc50029f7
-
SHA256
b12e5d13d364717e8010369de8c8702741c459a96755aaa8e6cc7c236dd1651c
-
SHA512
3c60f60948fa28251c37e9eef0ca06e2f812970c365250f065a419e4542c677eb7f0f5ec2fcdd0f282068b2b4b2565e222e1068634241a8523d1b4d4579dc43d
-
SSDEEP
49152:cQdUoUFVLVKQrOakHjbfZ8gGu3NBRKt5Kjwxfa/utVBNfOBG1lZDhM:cQ+oiLVtrOaQBQqbQamfNDXASZDe
Score1/10 -
-
-
Target
troop_plugin.jpg
-
Size
64KB
-
MD5
4c16df8151ecf0522cac554724a9c5c7
-
SHA1
2e3dbf927057f791e2c07889b000a28a35b84fa6
-
SHA256
b9b3a304e8bab840b9925a97f8e53001a75c352976acc1a01c83f855fb81ec52
-
SHA512
10691fb78c37645954edabf95c957d18e4eb1d764a5b362c2d8b200e83b894905adc88b3487035376c313fab842845917d790a07c3f1d92cfff89de1e794de79
-
SSDEEP
1536:0cSmCqmYUvgyuqPPTA8VR4bGT6dhQwIaXdZvzFex:MqmYUvgyuqPPTVR4bGmAwdZvhex
Score1/10 -
MITRE ATT&CK Mobile v15
Defense Evasion
Execution Guardrails
1Geofencing
1Virtualization/Sandbox Evasion
1System Checks
1