Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    804bce7ec47089e1bc88a79f8a1ac154_JaffaCakes118

  • Size

    25.7MB

  • Sample

    240529-lnr8ssad5s

  • MD5

    804bce7ec47089e1bc88a79f8a1ac154

  • SHA1

    f805968436c17fe9099a41dbf3bb5519998cc162

  • SHA256

    10c0ce8254fc042884ef5b14cef1bbc917fe70ea5bf90d8a703546380597b5f3

  • SHA512

    9343d48132b9c993072af925b9fee58ec035ccdd55d50c6c82416378de46a075d78463023dcee2afb0bf3b60a878adf3df491f3e7dc681bd62b482c5309babc8

  • SSDEEP

    786432:+YUPqoVuhQ2sbnm6UcJyfsF5FXf+VnYQk92HdWGBR:eQhQ2sbnmtf4bXmVnm9GR

Malware Config

Targets

    • Target

      804bce7ec47089e1bc88a79f8a1ac154_JaffaCakes118

    • Size

      25.7MB

    • MD5

      804bce7ec47089e1bc88a79f8a1ac154

    • SHA1

      f805968436c17fe9099a41dbf3bb5519998cc162

    • SHA256

      10c0ce8254fc042884ef5b14cef1bbc917fe70ea5bf90d8a703546380597b5f3

    • SHA512

      9343d48132b9c993072af925b9fee58ec035ccdd55d50c6c82416378de46a075d78463023dcee2afb0bf3b60a878adf3df491f3e7dc681bd62b482c5309babc8

    • SSDEEP

      786432:+YUPqoVuhQ2sbnm6UcJyfsF5FXf+VnYQk92HdWGBR:eQhQ2sbnmtf4bXmVnm9GR

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Registers a broadcast receiver at runtime (usually for listening for system events)

    • Checks if the internet connection is available

    • Schedules tasks to execute at a specified time

      Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

    • Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Mobile v15

Tasks