Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    appiop1.apk

  • Size

    4.2MB

  • Sample

    240709-wxjm5azblb

  • MD5

    4afe9f053ba28e8d6e14a01b2186cd46

  • SHA1

    16eb219827f25aad7a4ad2227123473f520e4bbb

  • SHA256

    873518d10b945f049dc6324b0885867f3b698a311691aa13f8d65585a6a9f3ea

  • SHA512

    557eb191694e3812578e3045c484e876e828902e1f77b4f0bc680bf303b8d34392636dce851440cc305d1b2edcd8b6e341eb2809abc4f65c693bbbe9f39a5cad

  • SSDEEP

    98304:fQreIlC1toTwrIYrbvcJwNE8u9ho1hChR2I:L4C1jrjCwNEp9hS+YI

Malware Config

Targets

    • Target

      appiop1.apk

    • Size

      4.2MB

    • MD5

      4afe9f053ba28e8d6e14a01b2186cd46

    • SHA1

      16eb219827f25aad7a4ad2227123473f520e4bbb

    • SHA256

      873518d10b945f049dc6324b0885867f3b698a311691aa13f8d65585a6a9f3ea

    • SHA512

      557eb191694e3812578e3045c484e876e828902e1f77b4f0bc680bf303b8d34392636dce851440cc305d1b2edcd8b6e341eb2809abc4f65c693bbbe9f39a5cad

    • SSDEEP

      98304:fQreIlC1toTwrIYrbvcJwNE8u9ho1hChR2I:L4C1jrjCwNEp9hS+YI

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries information about active data network

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

    • Aborts a broadcast (usually for hiding system events from other apps)

MITRE ATT&CK Mobile v15

Tasks