Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

a938f48823...18.apk

android-9-x86

7

appmarket.apk

android-9-x86

appmarket.apk

android-10-x64

appmarket.apk

android-11-x64

exlibs.apk

android-9-x86

exlibs.apk

android-10-x64

exlibs.apk

android-11-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a938f48823e0b50eb6919f46190cb0e9_JaffaCakes118

  • Size

    21.4MB

  • Sample

    240614-mmxybs1amp

  • MD5

    a938f48823e0b50eb6919f46190cb0e9

  • SHA1

    fd1630478f459c9d5c2ff0339725acd43802aa62

  • SHA256

    36069597deebff77e8053aa72ac3d17cefa8bc04f8f2f9462c77cefc53ed9647

  • SHA512

    46d65e0355f7a58791cadd8c99dbf5fb645cc6d7044dbd5eb96a39e7e00fadfd7d26fd7c9985fff0c269cbe5e2ca898edd9a649cec720e8f242d3e54e5f73cbd

  • SSDEEP

    393216:OVtI1VVJnR0PQkwvHXttvPeeGa2KPKcbgT+5/RCrjEzDjS4e3eob:QtkVJR0P7e3ttvWe2KCkvC3UDk7

Score
7/10
androiddiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      a938f48823e0b50eb6919f46190cb0e9_JaffaCakes118

    • Size

      21.4MB

    • MD5

      a938f48823e0b50eb6919f46190cb0e9

    • SHA1

      fd1630478f459c9d5c2ff0339725acd43802aa62

    • SHA256

      36069597deebff77e8053aa72ac3d17cefa8bc04f8f2f9462c77cefc53ed9647

    • SHA512

      46d65e0355f7a58791cadd8c99dbf5fb645cc6d7044dbd5eb96a39e7e00fadfd7d26fd7c9985fff0c269cbe5e2ca898edd9a649cec720e8f242d3e54e5f73cbd

    • SSDEEP

      393216:OVtI1VVJnR0PQkwvHXttvPeeGa2KPKcbgT+5/RCrjEzDjS4e3eob:QtkVJR0P7e3ttvWe2KCkvC3UDk7

    Score
    7/10
    discoveryevasionimpactpersistence

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

      evasion

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

      discovery

    • Queries the phone number (MSISDN for GSM devices)

      discovery

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Queries information about active data network

      discovery

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

      discovery

    • Queries the mobile country code (MCC)

      discovery

    • Reads information about phone network operator.

      discovery
    behavioral1

    • Target

      appmarket.jar

    • Size

      277KB

    • MD5

      45b988ed1c903a64d56032b3a0dc9f80

    • SHA1

      991ff6e86195a25585c8a009a62f8f35a426ba0d

    • SHA256

      21b886f67d3d4bc7cc2ff39e54b758d2e51bca81a490b6581d2f2d5a4a5be445

    • SHA512

      4e713ccd8ea5548d173a41d9ea8826015c5f309811cb089685593a5f071a904955f1d7e75d96283c8909c3572b467c71b31265c5628da6c5999f7f24932229fa

    • SSDEEP

      6144:wWUHKrmDBt/sL5RU4KNQ1CONxRT8rw+oytwScyMU:wvHKrmDr/u5R7CQNirw+oMc8

    Score
    1/10
    behavioral2behavioral3behavioral4

    • Target

      exlibs.jar

    • Size

      1.3MB

    • MD5

      49070039718ce7308372726665ed190e

    • SHA1

      cf04f2fefb6865164ee51a845aa97843562406aa

    • SHA256

      91a4355181ee331c250859dc803808c052ed6ffdec18b99c1e122a361a631378

    • SHA512

      b8d6b419d8dc7d63526861434943879325b1705883ad96974c30004fc891f88c866e7444aa5bdb245910cfcaa7ad980f09f312a477ed2c59fe4457959bfc5f06

    • SSDEEP

      24576:E13ZHnw2huLEZ6PvUoX4G9JesrmSYSStrInXFD6lYZ/iN5+/MebN1bjFyInpD2w:6NCK6P86JeBBrIXF9Z/i7V+1IiDz

    Score
    1/10
    behavioral5behavioral6behavioral7

MITRE ATT&CK Mobile v15

Tasks