Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4e1587252cb904720fc26af46b201741_JaffaCakes118

  • Size

    30.6MB

  • Sample

    240517-c7n6tadf7t

  • MD5

    4e1587252cb904720fc26af46b201741

  • SHA1

    c287654b942fd6426a5b97586b3c7120b866780f

  • SHA256

    a3a30aa5bef8c0f5f7a5c80d5a2af708d2283a61a37c202b1af494782ad7f88f

  • SHA512

    e843e27084788a8eb174010491415de050e810217a8babf8c0ff5abc4877aabe974af2b6759ee516e8835f377e1b4c0d2962d245796d839fcd31e58cebe9b480

  • SSDEEP

    786432:OIY3jogIQNq5Gl77xNY/nu/VzphSlbU85zOpB4gWUfqFhz:hY8gLQGh9NYfApolQf4gWr

Malware Config

Targets

    • Target

      4e1587252cb904720fc26af46b201741_JaffaCakes118

    • Size

      30.6MB

    • MD5

      4e1587252cb904720fc26af46b201741

    • SHA1

      c287654b942fd6426a5b97586b3c7120b866780f

    • SHA256

      a3a30aa5bef8c0f5f7a5c80d5a2af708d2283a61a37c202b1af494782ad7f88f

    • SHA512

      e843e27084788a8eb174010491415de050e810217a8babf8c0ff5abc4877aabe974af2b6759ee516e8835f377e1b4c0d2962d245796d839fcd31e58cebe9b480

    • SSDEEP

      786432:OIY3jogIQNq5Gl77xNY/nu/VzphSlbU85zOpB4gWUfqFhz:hY8gLQGh9NYfApolQf4gWr

    Score
    7/10
    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Target

      stasdk_core

    • Size

      868KB

    • MD5

      548a355e9ab43cc847930638ec1bdee2

    • SHA1

      8e8d50b35d5059f91fe65d6829ff5dcad50aaa95

    • SHA256

      bfb26b7f54e142193e59a4f7bc9b796c3d745cbe02cbbb670af417cec2d1e044

    • SHA512

      6a7f1da871115347a90fe4c0cc6851239e4b96cb128a202c658b914f1036bd7dd7aae17d041b8a025c2645595972957b044eb5aa3d83f9852c8f0ccba4a0f46e

    • SSDEEP

      24576:+zNimmnQFNSxDWoDNMWaY3Axlb6d6ZX93:kL+QF4N1aYKAeXB

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Checks if the internet connection is available

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Reads information about phone network operator.

    • Target

      bdxadsdk.jar

    • Size

      85KB

    • MD5

      3c850ffec5bdd850f123077ca210a411

    • SHA1

      1c1ae4678b8a3b65640f047cb1bd72bc70d66f97

    • SHA256

      516023ce55fff40074d3c3d9016c023b1fc7dfba2b59c172f89141f1484d418e

    • SHA512

      aa3611687b6140ee9214392a84bc1ef55a6425a84a4e413dfcb2e936a931b9015e1e4ec53ad73539d26622427f9e6da0eae5c58ffc18285de42fc15639d786dd

    • SSDEEP

      1536:E4A1vm52J1h/mgxeek9/Ckkf1THL8BNbM/DXO8Q/3yJ463v6hHA0UGcVrSj:e9mkJ1tmg/I/tkdP8sa80O42uXcVrE

    Score
    1/10
    • Target

      gdtadv2.jar

    • Size

      142KB

    • MD5

      f0b930680aa93a62bb77d1916e64a3d7

    • SHA1

      fc30b5641b8d32e4efeaf409d07a4d520a95a6da

    • SHA256

      8f109682334d43d811c7d56620c5eb30c9bc1a89f3f36b91232aeb142a6f6ba7

    • SHA512

      2a503f3aefd5ed8634dbc85cd952d10625e4bc18badc0661c7cfcc3345cfb43ba1e153d9fb264703e4cf0d6c40ac601942e841b9537125072f884c283adb5b99

    • SSDEEP

      3072:mZmii8gAi97ZHbwRILfiNJkAzzBdtCQnm:m8B99TZA/3m

    Score
    1/10

MITRE ATT&CK Mobile v15

Tasks