Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
70e5055b5ad248d8dbd42042212550c6_JaffaCakes118
-
Size
17.7MB
-
Sample
240525-fdaccafa37
-
MD5
70e5055b5ad248d8dbd42042212550c6
-
SHA1
4bfc7e9217bfce33381cc2c8200b5d2cc80f9e7f
-
SHA256
57f05904ecf681f7aa89588d3a3d60cd06476970c251a34a00988d7616e92239
-
SHA512
92efc58bcf9a13099552d078e898331ce5a78834369c6140cabd9b70f350fbe5beef03a67aeb0cde01b0eb1a2439895b074f60fd53db0ad01f4312001c1ce71a
-
SSDEEP
393216:7JDS1frDIF4YoMFFd4gCWJh/y/+ylkTh4rUe:7JudoFFmBl6WrUe
Malware Config
Targets
-
-
Target
70e5055b5ad248d8dbd42042212550c6_JaffaCakes118
-
Size
17.7MB
-
MD5
70e5055b5ad248d8dbd42042212550c6
-
SHA1
4bfc7e9217bfce33381cc2c8200b5d2cc80f9e7f
-
SHA256
57f05904ecf681f7aa89588d3a3d60cd06476970c251a34a00988d7616e92239
-
SHA512
92efc58bcf9a13099552d078e898331ce5a78834369c6140cabd9b70f350fbe5beef03a67aeb0cde01b0eb1a2439895b074f60fd53db0ad01f4312001c1ce71a
-
SSDEEP
393216:7JDS1frDIF4YoMFFd4gCWJh/y/+ylkTh4rUe:7JudoFFmBl6WrUe
Score8/10-
Checks if the Android device is rooted.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries account information for other applications stored on the device
Application may abuse the framework's APIs to collect account information stored on the device.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Reads the contacts stored on the device.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Reads information about phone network operator.
-
Checks the presence of a debugger
-