Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

airadb.apk

android-9-x86

7

airadb.apk

android-10-x64

7

airadb.apk

android-11-x64

7

Analysis

  • max time kernel
    27s
  • max time network
    169s
  • platform
    android_x86
  • resource
    android-x86-arm-20240514-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
  • submitted
    22/05/2024, 12:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    airadb.apk

  • Size

    1.7MB

  • MD5

    abd61f25e1d5060c572c2da89d740956

  • SHA1

    c75153b2c0f4bc02fa511682fc499b8173209ae0

  • SHA256

    5617202442bbe35191b23e17e545c83a133b45cb186e80622088f460158828ef

  • SHA512

    df051b3f322387c5ec2879bbf7a428d583db2375b67ffd2d8e001ed240a6fc8aa18400544b52f506886b1ca083b9d708922f46f7c51b24f75ce604b22ceb553e

  • SSDEEP

    24576:qavQdkTZN/KWqXEcWdreJU9MISoIGVwaRMidByPp6oFFeRr8Dbf9:vv2kvSWgWAUCI/I05RLdByPAAcRr8t

Score
7/10
discoveryevasionpersistence

Malware Config

Signatures

  • Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery

Processes

  • com.ttxapps.wifiadb
    1⤵
    • Makes use of the framework's foreground persistence service
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks if the internet connection is available
    PID:4256
    • sh
      2⤵
        PID:4287
        • getprop service.adb.tcp.port
          3⤵
            PID:4307
        • sh
          2⤵
            PID:4327
            • getprop service.adb.tcp.port
              3⤵
                PID:4346
            • sh
              2⤵
                PID:4366
                • getprop service.adb.tcp.port
                  3⤵
                    PID:4384
                • sh
                  2⤵
                    PID:4404
                    • getprop service.adb.tcp.port
                      3⤵
                        PID:4424

                  Network

                  MITRE ATT&CK Mobile v15

                  Replay Monitor

                  Loading Replay Monitor...

                  Downloads