Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

appiop1.apk

android-9-x86

6

appiop1.apk

android-10-x64

6

appiop1.apk

android-11-x64

7

Analysis

  • max time kernel
    48s
  • max time network
    152s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    09/07/2024, 18:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    appiop1.apk

  • Size

    4.2MB

  • MD5

    4afe9f053ba28e8d6e14a01b2186cd46

  • SHA1

    16eb219827f25aad7a4ad2227123473f520e4bbb

  • SHA256

    873518d10b945f049dc6324b0885867f3b698a311691aa13f8d65585a6a9f3ea

  • SHA512

    557eb191694e3812578e3045c484e876e828902e1f77b4f0bc680bf303b8d34392636dce851440cc305d1b2edcd8b6e341eb2809abc4f65c693bbbe9f39a5cad

  • SSDEEP

    98304:fQreIlC1toTwrIYrbvcJwNE8u9ho1hChR2I:L4C1jrjCwNEp9hS+YI

Score
7/10
discoveryevasionpersistencetrojan

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 2 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs
    evasion
  • Aborts a broadcast (usually for hiding system events from other apps) 1 TTPs 1 IoCs
    trojanpersistence

Processes

  • com.vsevcadasecad.testjuly5
    1⤵
    • Loads dropped Dex/Jar
    • Makes use of the framework's foreground persistence service
    • Queries information about active data network
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    • Aborts a broadcast (usually for hiding system events from other apps)
    PID:4462

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.vsevcadasecad.testjuly5/cache/volley/-1954231640619625019
    Filesize

    865B

    MD5

    6cc75944b3a84c99a1805271a6144494

    SHA1

    5d63b1aa5f886ce6c51e74d38975afe73b0b119a

    SHA256

    7f44778e7ef44188158f59b891e935caa410eb5bde150ee49a9204a3a57e8c58

    SHA512

    a6103588c7bbf0f350d4f4c3d17f3b9be11d4bc8b1bd3ef7e30f673d45b5bd1397776443754fc592fd023a31b2df4150b6863e070d75678c262142fbd4270b28

    Download Submit

  • /system_ext/framework/androidx.window.sidecar.jar
    Filesize

    12KB

    MD5

    bdf3529e80318eb14e53a5bf3720c10d

    SHA1

    25c9ace4b1af6e80ebb2572345972c56505969ba

    SHA256

    bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

    SHA512

    48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

    Download Submit