Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
74s -
max time network
143s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
-
submitted
16/05/2024, 08:29
General
-
Target
4a36b61ce2086322b86a3ef09503d7bb_JaffaCakes118.apk
-
Size
5.2MB
-
MD5
4a36b61ce2086322b86a3ef09503d7bb
-
SHA1
bb8c4b56c45ee98980783cc78157cf8b64309f40
-
SHA256
fe3928fbd9ae2fa41e697d5866ad9e266ab10f068afa3c5448e9526097c5a862
-
SHA512
0a4475e621c6c4260592a578fad0abd94e0b543c5c84cb7e251444cbc213a93843a2a0a1f11caf7c3c622b628bc0aa34fadcf13689be63eeaef1af824def4362
-
SSDEEP
98304:5AuA1/asGtE0yVaFFCoIVK2t0rU+xufCm2jniocy3prmkmb3rUsK6bp:5AuA1/EXFFCFVZt0rU+xua/ih3kmbrF7
Malware Config
Signatures
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Loads dropped Dex/Jar 1 TTPs 4 IoCs
Runs executable file dropped to the device during analysis.
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks if the internet connection is available 1 TTPs 1 IoCs
Processes
-
com.smwl.x7xjoffi1⤵
- Checks CPU information
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
-
/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.smwl.x7xjoffi/.jiagu/tmp.dex --output-vdex-fd=42 --oat-fd=43 --oat-location=/data/data/com.smwl.x7xjoffi/.jiagu/oat/x86/tmp.odex --compiler-filter=quicken --class-loader-context=&2⤵
- Loads dropped Dex/Jar
-
-
sh -c ps -ef2⤵
-
-
ps -ef2⤵
-
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
984KB
MD55bb3b8e47056c6dc37b9a250b89a60ae
SHA1650da7583cd19dae3c8903d8cc2a64ec4d7308bd
SHA256705fd7a3cf04b9ac7298bada93fff2521c4503014e266943481facd7f565e23b
SHA5129bbeee7c9eebc1d234a9ca2c18c6df0cb398ff9ad5a6c81a07a314ab83fbdceb610acafab60fd3b5314909608fc5a778039879bad6962b395d0cebfa9ae777cb
-
Filesize
491KB
MD5b9bc395bbdf359c140d0787436c08d9b
SHA1e926ef140c4a631a824ef73f59f2dbe0c1f9d290
SHA256d8f0b19c36bdf0aa6aa2add107c126e48771a83c8f693abf290a1ff99078dbe9
SHA51280fadc22da3ddfc43d24eefe309f602d6741065e9f94835a34be5943ce515b89262ef1db4594b085836ba2d2b762a7750de58025c212aeb9cb189f886d21cda3
-
Filesize
284B
MD5f1771b68f5f9b168b79ff59ae2daabe4
SHA10df6a835559f5c99670214a12700e7d8c28e5a42
SHA2569f8898ce35a47aeafced99ea0d17c33e73037bb2307c7688e50819966f4ae939
SHA512dae27d19727b89bec49398503baa6801640540355688dfabbe689c97545295c2c2d9b0f0dcd7cbc4cfbf701d0c0c3289e647a152f49ff242d1ecc741efe4145d
-
Filesize
32B
MD5dcb4909b9fb7297faf3147cd0c6776d9
SHA16653ebbbc0a53a5b8eb2a857aa6c2023a8f7c8fc
SHA256ae9bf64fbde1dd60d85a9df4a38e7a326a4150dc70756d9cc03131a2229d10dd
SHA51236fb9305035b5581fc8456bf177439b27e67f981854bc824c741d24fc3a25058d03ba561a1261d01895614a5479cbdc15e4a6842b4dde7728f3ec185475508ec
-
Filesize
32B
MD5e73bd8521c9a97d9e7356dcf90b83217
SHA100dc97a609078adb4295a5dfa223c0a628d8d1ce
SHA2567925e1b0ce71b254559d15a0af11386ba8d8ef9e44a01254e952ad95eedd6ee5
SHA512bc206d1e73d2082aecf93466df707b8151c8f1bac0257a2590cf4c65115371631d7795449d3ac1e87753e4e9daf02832734b6be36883485b6d213b275c832cee
-
Filesize
32B
MD5ed5079b820b0923a5b43b0fccbf45780
SHA15f5a13a28608598be582cca45a79f9d04488adea
SHA256b14922a947ba0db3feee3e861f0acb0bcf06508e27c57fe948078144ee261f88
SHA51248260cddc41efc6d62e82c2a07a63987dff7e4c5cb3bffb9a0b4f203225bb6774cd0eba611ea6f025007ce51969501dcffdf375c453ae782d7f8f214d3594f5b
-
Filesize
64B
MD5fa1d26bd95c9fbf971c7932a6474893f
SHA19f3ceed32117dc9466d53ccdd033bd0c8d218db9
SHA2561be7bb3e4ba9f3e32b0dea00c4b4b13792acfb29677e0f7be12410cc304e5ac4
SHA512016a4efbfc447be35b0c8859352499104efacaced21da5c694111ed2984dae4b4441a311e9c9126decb8da7718da4a42dcf13a6a46ed5989b16fecb9a876fa94
-
Filesize
73B
MD5ddf40e11c803ffefbccc2505f2023d5a
SHA10dc93471c54288a3cf2747a75b4fc3fb00a4265a
SHA2561f336acacb09a5ff290211b219b7aeb9b40e234c4f43304d3ea4502469084c5b
SHA512295d09bcedb6d4a830409c6461a1db54be4f2c30ad6254b377a72fdb04b2e30aa554a241b8685ae8f33b25c9d29dfccb3c6be8060149127aacf46045a59a968b
-
Filesize
314B
MD5c9a65d23bfe3cb65ace3fcfdf945361f
SHA17f25548d46b1bf044f24e9ae436481d7a62c5856
SHA256dcd12d86ae83f8dd66dd685d4f4a94f01e2ff2d897ce13986be19de0bfa74c3d
SHA5129e8dcca2bb484247e23943517a037a9df365ba0944783739335f6073170953b51a69c8b4180fc89cf383a3d10845123fe07a24469a021b86bf21fef0f92a9759
-
Filesize
307B
MD5f87af4be118d9bbe2ae57d633b386e6a
SHA1c59ce5be0a02d43eca79f6f9ebe906ec36556be6
SHA2566423c06115ae6d81e79ae299ec8c00871f7e1328ce4bdd436068e72e3dd060b5
SHA512fa9bd49d7136f1f71cb75f2d1ad325e6c2ce87d97130148a0bbfbf9303652dcab6f46362cc45c54cb08a8bdcce5c5ebcc97b35a6d4e4e7ba23a22bd73751db23
-
Filesize
32B
MD508196a7bd751bf896b57c4dfe3997ada
SHA1bfeba05bd4c79da3daa44dbf6dc841acd1c01a5f
SHA25677eb9d687e9ecce080af8259eb1760d8f072cdb3b464a4c9dd8bacb34fcff906
SHA51215ed6174d1cc9cf0c68ea8974f0a7ac767dc7011af2895f3aabd54758a479248e9780ee4921f1dd456b9f3cd2f01cc41a94ae246b4c964f0985d10c72d9150f6
-
Filesize
54B
MD540b41f60d39c94d5a18eb71c27be67c1
SHA1a01880d3e3bc5b9ae619f4f968ab0ca06ed162dc
SHA2566ec984fee15890f05a6f4aeebdea24780d51a3efb58616d2403bbee8b183f4cb
SHA512a2894ff67b3929d1171af2223de4aec1deba452945af41d074b50f235dee807530aa1b7405da2e95ec3dcd5c4e944e55680e8aa19033b6368f526340e42d63d4
-
Filesize
54B
MD5981dd16c29cae8a389e218b4a59b8da1
SHA190ebbe1c44d13e108ac36513003508f989a2e737
SHA256f448d135130a50ca99c8183b5aa5256052628756413b0064dfe151bdbe18b021
SHA51211e4cdc2f76c4cf4045e926e6ddb80fc0417d5977e270ae08ed8e83d2cc50b8d0f162171822dd435046e198750e3970af33bf98a55e5c874976fcf9582645b61
-
Filesize
32B
MD50141d516e0393810155c78db366309e8
SHA1903464dd3492f717831928802db138dfb009ad98
SHA256c9ca85ada960b064c7a99324b49b77fad4c63fc5afdde379b77dfe93dda61079
SHA51226f85b465ca78b0d98a13dee3f6492765e77df4d2f32448ce07b582819c9719dbac37a45ffdf12fa98f1a2c96a94c5091231fdd54bb22a098288485e993c7cb5
-
Filesize
27B
MD5122692518fc41df18745ae9c72993c8e
SHA152996d44c4d016251337d9698f72b89d7378382f
SHA256f22cc53bbd21f11c43db56a5714b1a94e8937658f0efe947b01c36bd44a66cc2
SHA512e26882487e2abb54be97f8cbd56e047a5ca0b8b2d5b75628a81ad16c44a7fdfb5462f9974a36e505642b105061bfdda0ab3087a144a778a669c77e849742e388