Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9584331ccc4bf9639749b7445afd560c_JaffaCakes118

  • Size

    29.2MB

  • Sample

    240604-txctgadc87

  • MD5

    9584331ccc4bf9639749b7445afd560c

  • SHA1

    44554e9f0d18b918cfb95d8d0c4d0e4fe837fc39

  • SHA256

    5325b86b793c8823d24999038e5db28de534841547b6355142b8aee936bc3344

  • SHA512

    c5ef4353cc27e5d70b9324394c1cb0c237b7990e8d3307c2e2891d54f9f09df01739928bcfb5b84bf5576a02fe05640dbec158fa7e45666e2e6b8ab334cd3dcb

  • SSDEEP

    786432:hghrud8EcfXoegUOQ6yVKJbEz9atF7taF+rbI:Sh6qgJaKNyMIFz

Malware Config

Targets

    • Target

      9584331ccc4bf9639749b7445afd560c_JaffaCakes118

    • Size

      29.2MB

    • MD5

      9584331ccc4bf9639749b7445afd560c

    • SHA1

      44554e9f0d18b918cfb95d8d0c4d0e4fe837fc39

    • SHA256

      5325b86b793c8823d24999038e5db28de534841547b6355142b8aee936bc3344

    • SHA512

      c5ef4353cc27e5d70b9324394c1cb0c237b7990e8d3307c2e2891d54f9f09df01739928bcfb5b84bf5576a02fe05640dbec158fa7e45666e2e6b8ab334cd3dcb

    • SSDEEP

      786432:hghrud8EcfXoegUOQ6yVKJbEz9atF7taF+rbI:Sh6qgJaKNyMIFz

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Listens for changes in the sensor environment (might be used to detect emulation)

    • Target

      kyx_data

    • Size

      2.7MB

    • MD5

      c04e13d1ede48f576cb693593c821423

    • SHA1

      09294c1103534a8da544980d810ea278b30f7a90

    • SHA256

      d3581f5eab894f06e6cda1267a464949efade31f9f81a15420e931c7a1566b48

    • SHA512

      2dd57f60b12f31acfffea4bca8c13e3f53a159ba05cf2c889d16bbf9268a63832b6b50d8a0a1100928679aa90426601e71fea1ed9777ed2690ac792b58e9bb93

    • SSDEEP

      49152:UiflOwj+POidbcfyTWgh6SvNXe7luzEMSUs9MVSspyU:FflOwoOabcftgfvRe7l2SF6VHt

    Score
    1/10

MITRE ATT&CK Mobile v15

Tasks