Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    afc10a970ec6340ddfd1b70330433f82_JaffaCakes118

  • Size

    2.9MB

  • Sample

    240615-wy724szfpc

  • MD5

    afc10a970ec6340ddfd1b70330433f82

  • SHA1

    6ac73d8fa403a832dbf162ca1cd5986355a31d77

  • SHA256

    c862d5bdd4491f7b38a920f42af87d6f80398cf29d3484d81ee63dd455046fb6

  • SHA512

    cec72a27e9e6e14bfa4432068ef033ac3a89d4a643fe8ddf8d27fc056826ca459e1644cfafeaef2335b2ab8032fd44e7f7e3d4d75ada8d8e9b4f6cc22feab8c1

  • SSDEEP

    49152:0AoiGnyJ0v6HpFVAqnq42tW019qcJzm8gzxsjTq1uP4zVA40bDpoWlrLwz6QiAJP:ho9Zv2FVAqq42o01tJ68gzxkWC4640bm

Malware Config

Targets

    • Target

      afc10a970ec6340ddfd1b70330433f82_JaffaCakes118

    • Size

      2.9MB

    • MD5

      afc10a970ec6340ddfd1b70330433f82

    • SHA1

      6ac73d8fa403a832dbf162ca1cd5986355a31d77

    • SHA256

      c862d5bdd4491f7b38a920f42af87d6f80398cf29d3484d81ee63dd455046fb6

    • SHA512

      cec72a27e9e6e14bfa4432068ef033ac3a89d4a643fe8ddf8d27fc056826ca459e1644cfafeaef2335b2ab8032fd44e7f7e3d4d75ada8d8e9b4f6cc22feab8c1

    • SSDEEP

      49152:0AoiGnyJ0v6HpFVAqnq42tW019qcJzm8gzxsjTq1uP4zVA40bDpoWlrLwz6QiAJP:ho9Zv2FVAqq42o01tJ68gzxkWC4640bm

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

MITRE ATT&CK Mobile v15

Tasks