Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    VirusShare_9cfb618d54d4b782a3d470defd79e564

  • Size

    37KB

  • Sample

    240608-1krv7ahe29

  • MD5

    9cfb618d54d4b782a3d470defd79e564

  • SHA1

    cf58d21d98bcf9c4d037cced8f607eeae35a4822

  • SHA256

    595032b6998ec767e6503178134c772ea5bd0d18a4f2f6e5b09611ef66b81b4b

  • SHA512

    e78ab0f9f9a0e6fc5864260048af3979b487716044082bcdadc9628256989aca0e2a412e7a781d4435f5e8c14686d486cd87dcd8fce26242ac0f01d452fd671a

  • SSDEEP

    768:xvFOYulSKRhF/XaCqtmO6FK9yjDi0djPgIYO2haZVeGav27p/CeePCGs:xvFSSKRjXa/k2yjpjPgIYh4ZZRp/3

Malware Config

Targets

    • Target

      VirusShare_9cfb618d54d4b782a3d470defd79e564

    • Size

      37KB

    • MD5

      9cfb618d54d4b782a3d470defd79e564

    • SHA1

      cf58d21d98bcf9c4d037cced8f607eeae35a4822

    • SHA256

      595032b6998ec767e6503178134c772ea5bd0d18a4f2f6e5b09611ef66b81b4b

    • SHA512

      e78ab0f9f9a0e6fc5864260048af3979b487716044082bcdadc9628256989aca0e2a412e7a781d4435f5e8c14686d486cd87dcd8fce26242ac0f01d452fd671a

    • SSDEEP

      768:xvFOYulSKRhF/XaCqtmO6FK9yjDi0djPgIYO2haZVeGav27p/CeePCGs:xvFSSKRjXa/k2yjpjPgIYh4ZZRp/3

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Reads the content of the call log.

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries the mobile country code (MCC)

    • Tries to add a device administrator.

MITRE ATT&CK Mobile v15

Tasks