Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
4s -
max time network
145s -
platform
android_x64 -
resource
android-x64-20240514-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system -
submitted
17/05/2024, 18:21
Static task
static1
Behavioral task
behavioral1
Sample
35027baae5178b5642dd6fa17857ff51.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
wallpaper.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral3
Sample
wallpaper.apk
Resource
android-x64-20240514-en
Behavioral task
behavioral4
Sample
wallpaper.apk
Resource
android-x64-arm64-20240514-en
General
-
Target
wallpaper.apk
-
Size
2.2MB
-
MD5
2bee1749491b18907d5c3f84d6c812c4
-
SHA1
fcc36dc84b55cdf29af5397afe371a8ad3106673
-
SHA256
77d3ba2483a0f0297e71ba0600174193370d2d5e251da62a8121bd3ce50bbc7c
-
SHA512
efe382ffe2c6ef590ab11a4cff98e75db069a3ebde0ee9e5df60c289ecd189e8a894ec056c258fc1ec3b9d1fda4bacb6187a2107b112dd9db8d636c74259b102
-
SSDEEP
49152:0CPjilIJjTMVZh2aIvg67gOiPFlmZPG1vuyraAp3obGx:0C7tp6qgbkA0yBzx
Malware Config
Signatures
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
description ioc Process File opened for read /proc/meminfo com.panshi.hostpayment -
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.panshi.hostpayment -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.panshi.hostpayment -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.panshi.hostpayment
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
24KB
MD58b88d8ed6786b69e2bcfafd38ddbe5f4
SHA12d0e5db696a423e48d9dec06edb15ea7e1ee31c3
SHA256d0eb89463fdeb0a62e43db6094305fdae72131a09e030e5febefeb7cc1cc5da1
SHA512f1ef59c1065199347615401ce91c20a90b30a9e3d434c09abdf121da985fb0146b0835570b74dbe2689f68ee93c98958dfd2550375d20efdc3dfb88c9d238868
-
Filesize
512B
MD5c2c81b91b29ce4098571ab128550fb06
SHA1ed9098e2d7dab3d815423854bcd9cf55e80abac5
SHA256e488d9756f1931ef0b34898259c3a367447cfe8545bf28be8e9e63db073362c3
SHA5120c0bef5abb98ce56b566067a51039435cb658ebf2979212cb92ca4d4bae943b078c5fc7d67ad7018aede71046d775220ad5a129bfabf868d28ca10551e8870e7
-
Filesize
8KB
MD5f040549337e6d63806dc91aebf425fd5
SHA167bda26c755f356f8ddec79370b2fc18c9e72c6b
SHA256acc7c7cc6a705b5118837c66cea122b3d03c36d4162783f5a8626d1d3208e583
SHA51237cd9ccc4f7ca31e6f5bf407fc323408457f5c67e048b54a8fadded96448bb1165ad078f82b05eee82ab6b6f2fe0f5353a60dcd49171687b9a7e024c95a33f6d
-
Filesize
8KB
MD5090c32557b2f20a2b400ad078f4784d6
SHA1ef34c6950d6650fbd20fe0d5aba982c7916df9b5
SHA2567325cbc9e0206fa846221e862715fb42882302cca9d4fbc218bc9db75785dfb9
SHA512c5fb6512500edb98476c0424f0c765ae44f5fad5df738c648b945162b655aa2d0497e601c795abd17eb7d77942a53d94ead19eedb96bebcdf72dd1b76d5c006b