Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
857801c464917c1315cfa7b4cbab4fd9_JaffaCakes118
-
Size
5.9MB
-
Sample
240531-a1bk2agd21
-
MD5
857801c464917c1315cfa7b4cbab4fd9
-
SHA1
981b4a85535f7d02debb0646a7e514943cd3d6ec
-
SHA256
1f0cfe625ef96d9362427052da78e4902115d0c0c8df6e3d6946c9f65b336f51
-
SHA512
406227d2881f6583276d91cec097242386376b2e317cb40024d2a89a22f319741c595cd21a87d5aa4f43f945e1e740f7d206ff2ae2bd8f8c994a42a4ee7dcd5c
-
SSDEEP
98304:5fsadOybik4gpS8U90VUJyr53bgOE25JAOPArfT6+F95UHmZkg1:MLaS8U9qUJyVgORbPgT6qKi
Static task
static1
Behavioral task
behavioral1
Sample
857801c464917c1315cfa7b4cbab4fd9_JaffaCakes118.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
857801c464917c1315cfa7b4cbab4fd9_JaffaCakes118.apk
Resource
android-x64-20240514-en
Behavioral task
behavioral3
Sample
857801c464917c1315cfa7b4cbab4fd9_JaffaCakes118.apk
Resource
android-x64-arm64-20240514-en
Malware Config
Targets
-
-
Target
857801c464917c1315cfa7b4cbab4fd9_JaffaCakes118
-
Size
5.9MB
-
MD5
857801c464917c1315cfa7b4cbab4fd9
-
SHA1
981b4a85535f7d02debb0646a7e514943cd3d6ec
-
SHA256
1f0cfe625ef96d9362427052da78e4902115d0c0c8df6e3d6946c9f65b336f51
-
SHA512
406227d2881f6583276d91cec097242386376b2e317cb40024d2a89a22f319741c595cd21a87d5aa4f43f945e1e740f7d206ff2ae2bd8f8c994a42a4ee7dcd5c
-
SSDEEP
98304:5fsadOybik4gpS8U90VUJyr53bgOE25JAOPArfT6+F95UHmZkg1:MLaS8U9qUJyVgORbPgT6qKi
Score8/10-
Checks if the Android device is rooted.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
Schedules tasks to execute at a specified time
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
-