Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

86A78014F4...04.apk

android-9-x86

8

86A78014F4...04.apk

android-10-x64

8

86A78014F4...04.apk

android-11-x64

7

Analysis

  • max time kernel
    87s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    27/06/2024, 08:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    86A78014F4269A43CA6C3D547E0329F56A5F12E76116D4422FA7338B7E182B04.apk

  • Size

    6.1MB

  • MD5

    acf037ae3c36f4c4b74f966893a195cd

  • SHA1

    6f8c0b487f45d4f3999d84575f8bfa4e83d469bb

  • SHA256

    86a78014f4269a43ca6c3d547e0329f56a5f12e76116d4422fa7338b7e182b04

  • SHA512

    79c7c67d223e0d55bfe927ea1c9a9158d777f3d97f6f00af004425a548526836646ccfa177e62838b447d1974c74af5ccc1d6e2abf79fadc61f6bc73a455076a

  • SSDEEP

    98304:RgXKPMjwNX0a5OLG5iNo9wppKrw38YkyUfvugKhdIBu+WETu7bGT6UxTiQOmYX:R4yN10SgQf9mkC8Ymf4hdIB7y7m3YX

Score
8/10
discoveryevasionexecutionpersistence

Malware Config

Signatures

  • Checks if the Android device is rooted. 1 TTPs 1 IoCs
    evasion
  • Loads dropped Dex/Jar 1 TTPs 2 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

    executionpersistence
  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • mobi.androapp.deusapps.c7050
    1⤵
    • Checks if the Android device is rooted.
    • Loads dropped Dex/Jar
    • Queries information about running processes on the device
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Schedules tasks to execute at a specified time
    • Checks CPU information
    • Checks memory information
    PID:4248
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/mobi.androapp.deusapps.c7050/cache/1582435991586.jar --output-vdex-fd=113 --oat-fd=114 --oat-location=/data/user/0/mobi.androapp.deusapps.c7050/cache/oat/x86/1582435991586.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4379

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/mobi.androapp.deusapps.c7050/cache/1582435991586.jar
    Filesize

    9KB

    MD5

    e8e0527a01aefdb89afd2c508f131da1

    SHA1

    f1103e6b260c657ceb3d95f1b023af3fda8b133a

    SHA256

    f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce

    SHA512

    fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/androapp_data_db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/androapp_data_db-journal
    Filesize

    512B

    MD5

    c5f189865268368d7fd88eb26812869a

    SHA1

    6e6d2b540abc987259542962bbb84e6ed21b8433

    SHA256

    eeaf3f62f5c8b6f5ba6f2035bf3854e4f391968b07f0e91b057e16ae26493008

    SHA512

    428620a23d3351609a753b43bc019151fbc612b1d8c38f4fc13a7aee8e1f9b91798479ac7368cf922fca3e9d38e8a1147ab14c13f289f7e98564ffcc1204e68a

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/androapp_data_db-wal
    Filesize

    40KB

    MD5

    48aa54e78eff669e1afa6f8e525afc3f

    SHA1

    66219ae5ce598db350213cf605d9105317f29c1b

    SHA256

    60d534633bf09458cf9f0d84396dfe744b52e0461a44d76caff43905782483f2

    SHA512

    cca9b14fad7468ad7f184bfae8902cb39cade581caabc940ad1425cea482d6d999899e83793bf91eecdeadc3b854ade6e2a4496c7f10408e5ab5e7bbc8d6f5b6

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472
    Filesize

    28KB

    MD5

    43f332b59f91e0347e11fb4dd9dcc2c1

    SHA1

    69eccfe7ffce971faeb1a177ae4157c6106a9a62

    SHA256

    b487965187cd8dd1e91f47d2c321bd8aedbaa6f0390aa92f776d0613b2b95a0e

    SHA512

    62181071ed25cf121afdcd6b5c860f1fca5cba55bb14b0420c806fd47250d1df9ca55b87bef45cd0ea01f3fbc839d503cc6679b8cf4bd31389e17687fa0c0de6

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472
    Filesize

    28KB

    MD5

    ef66f3939886825f97fa33a1638f0234

    SHA1

    cd61e68e4b67bed079b57971a3573a935a7d814e

    SHA256

    1b619b2465e6870e91fcf757ec5e07daf9109b4eeab0c0174ed2b1bd7ba909c8

    SHA512

    34675adf9a91c41510e5a99564d0966ac8fbbedb75cf9026d217aa57104c42e72884e8fbb4b6c722b1b691c7da0cbe4c3e04c906dfe8879477a4691656bcf558

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472
    Filesize

    28KB

    MD5

    7d15f084263432498b64fee5748304c3

    SHA1

    e2b1f5509f9564cbef5c3f739545d151b1f6c0eb

    SHA256

    bd14a5c15110c840f1cb19b2bb53523aa7b1e1f1f49fec1743ef5e11527832c0

    SHA512

    7100d52b43e28d8aa10165c54d04e67b2ef4e7b239b5d217b2e08c62eaffd023112b13c3ae559644a0c1bd6077e3b76c62719db404346e14c34eccb6c98f52a1

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472
    Filesize

    20KB

    MD5

    bf5787b87eb80a5078099d4e69f3665b

    SHA1

    d2d1ab007499111f1645b570d1170b3e4aefc283

    SHA256

    5e743f2e09e0d890f47b75fc596159eab23369433fadb0357b6d2307c1fa0f45

    SHA512

    b3e7239e4c00be7159996da2de7bd2e7a8d18c22ab6fe89ea5c8d92fbeb9358f61985e9c963d1bf14dcd4f97274f876b7e78bd385b16317f3903f3bf9a0da906

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472
    Filesize

    28KB

    MD5

    5936ee3c1d6c33993b4c4d476348b84e

    SHA1

    620391a8c9e77de516f18335861b2203a9bd3467

    SHA256

    e08724710f27031836a125ffd5fea9e4476400fcc2bde73805d83018ff6c952a

    SHA512

    b86b79b4fe4afc341c084d1f2654ea18cac97aa92efd32780bfe56bf4e8b96f6b817f1d461be2e3e436d863add1b327b3b65f754cbaf217394b9365fece7ee3b

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472-journal
    Filesize

    512B

    MD5

    2d42f158aebc04facd5f0f47f975a2ab

    SHA1

    9b582a258d3098b90aa4bf50d38a30dd8743c0ef

    SHA256

    ca0fce6ce2fe060a133c359c62206dbe64f51b044cbf44a10684477593b6da52

    SHA512

    9ae8df8b902ef22d7d21d5b7673c5e24f78ace860d7d1d972487459242764b02615ab260973e3ed5d6129357042b2c5fb25ebbd097984b3d32c1e4b92f864821

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472-wal
    Filesize

    8KB

    MD5

    3e8ac9d48e72b38b124bf61dc6957a92

    SHA1

    14a816fc14738c16bc9683b48b20a6e17598652d

    SHA256

    f49a96ed9d24b5856607882fdfc47e1942a280ec441ec09186759e0aab59c753

    SHA512

    f0262d7ad62dcdbb05180a4cd05b20849875b6154eb106b00d687bc63e5e113fc99a4c5198d49d94ab028d63f47bee8e0e8caf386b19af3ad3454af89564f9b6

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472-wal
    Filesize

    40KB

    MD5

    cc5b4e1928ac62df7a0f2a788d527e82

    SHA1

    155229e023c1859b366e73b8df8591014860d937

    SHA256

    1bbb695523c9cb4e65aec637df580896589dc25d5f47625f0adb531a5092df8c

    SHA512

    309d3ce2e656d944ef71274d5b97291cde0df06c91f5ddda1cc5d2e80ad6da857bea1fa9fdef5c40410184b1f498bd21331c0b2ab8b8072301ef70104cab0934

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472-wal
    Filesize

    4KB

    MD5

    ade35d832297bc52fd85c90ac6e35ca1

    SHA1

    0f24a6bdeebed8988db95dad77b5a90fa75a1f09

    SHA256

    4e90b23a3f8bb68c4dd43cfe351c636b33e2a6915dedf23d275d6f7e68c3faf7

    SHA512

    fe7315515d2757820b59f920ed738d9ac498878bfd8704579708d1e5845080094197525bb824b3e6e92fd60c3e7c01490c824bc7328f8e96dc653d7083d0fc9c

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472-wal
    Filesize

    8KB

    MD5

    1d740f9ea23125939d40ea63ddf36f61

    SHA1

    32e706518ff1591f67bd710184e6e8df0339a573

    SHA256

    c52a0a20b0e466623f3d7c79fdfd63b0796ec2ea2066f774db76ce7e796edad5

    SHA512

    10d4a443b9688f9fe1a66f24f6257f8c59dc8f49918eb99b997480729cec08d2e3e657a27ee1ef9ffc9c7211fde83bfc5b7500fe04d33bf19f4c12b66f625179

    Download Submit

  • /data/data/mobi.androapp.deusapps.c7050/databases/appnext_dbs472-wal
    Filesize

    8KB

    MD5

    00cf76f9bb8cf514496b04a4b9f51266

    SHA1

    1baea04b1f4f62f4426cf204ce4e8cf7c8837466

    SHA256

    5de73ed43d5a203e83ebec165e903eb24e274f40bc0736a028dd28d4a7c1da4a

    SHA512

    d7f9dd93a243c1289adbba45222f56b9a1bf78fb4706ff062a830e607c05ae41920b66044cdde9821fd0def18bce46129943cdee7ccc5e6973457cae46859825

    Download Submit

  • /data/user/0/mobi.androapp.deusapps.c7050/cache/1582435991586.jar
    Filesize

    20KB

    MD5

    2048eb6124a452540ee51dae4145aadf

    SHA1

    d05005b2cd7fe4cd652b0d7fd1bdac2c19d51451

    SHA256

    105c54b6fe3f25350e92187467761598e4c21d62b1091b77d091f65f3bd98864

    SHA512

    bb6cb3853dd2a5d0701e20607d4e153ae201268dd2e5e2d06cc2df208b3b4dc50132a4ab428251b1644d2399fcc717662438d082ff14203387bab8794109d44d

    Download Submit

  • /data/user/0/mobi.androapp.deusapps.c7050/cache/1582435991586.jar
    Filesize

    20KB

    MD5

    fde2ee00cbd121cfab5290b078aa3ceb

    SHA1

    e2b77d5320e155e413d040a8c20020962065b2f8

    SHA256

    2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685

    SHA512

    a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

    Download Submit