Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

d8a93477c4...7d.apk

android-9-x86

6

d8a93477c4...7d.apk

android-10-x64

6

d8a93477c4...7d.apk

android-11-x64

7

Analysis

  • max time kernel
    87s
  • max time network
    138s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    12/07/2024, 22:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d8a93477c467483d0dc0fbf1b881bd9d38a6baa2966b450be3ae4e9af59c557d.apk

  • Size

    4.2MB

  • MD5

    5115cf9708b6aff9b75a2b4233ca9862

  • SHA1

    7916def8075f61d07d8a6b18654e7aee4669235d

  • SHA256

    d8a93477c467483d0dc0fbf1b881bd9d38a6baa2966b450be3ae4e9af59c557d

  • SHA512

    3981bc6dc59c2340003fa612aee12ec77c6052ada6aaa9519f4397b7592799382f6dc8257ce3205987fe140268c8a1784fb57c71035ee004119781d6fb35ad1d

  • SSDEEP

    98304:+LreIlC1qoTwrIY8GEkZNDyorugyCY1/HuC:T4C1ulNDqgyBhHuC

Score
6/10
discoveryevasionpersistencetrojan

Malware Config

Signatures

  • Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs
    evasion
  • Aborts a broadcast (usually for hiding system events from other apps) 1 TTPs 1 IoCs
    trojanpersistence
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence

Processes

  • com.vcacdfccrfve.testjuly5
    1⤵
    • Makes use of the framework's foreground persistence service
    • Queries information about active data network
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    • Aborts a broadcast (usually for hiding system events from other apps)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4260

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.vcacdfccrfve.testjuly5/cache/volley/-1954231640619625019
    Filesize

    865B

    MD5

    58528ef1d9639ef9677eef279e165092

    SHA1

    c8134079f1255b46ad7132f2c71844d215194413

    SHA256

    9fc1a98d03b9ccfd2e42aec4079c7db1ed2094944823ba2016621c66ba43cbc6

    SHA512

    9756c22a79f90d69701af3bab6dd84974ee38a9424a128701dc4ab488b3fa986159dc7a5262e098a45637bbcc64ddf5e05efae582d1705619ece0cc0c50ff1cc

    Download Submit

  • /data/data/com.vcacdfccrfve.testjuly5/files/profileInstalled
    Filesize

    24B

    MD5

    5afc2dd777dfcf04737a0f6519f920df

    SHA1

    f817d4f1a18abe6c0ed5437daf07dbc17b48991a

    SHA256

    e08aa1734463294d43b51919b608ab954ba40855f7dd2ff4f279d5049017a3c6

    SHA512

    6020740cb16dd4617008fbde0d192f56b2b781cd31e433c42c8deeff30ff4322809a8c82519d242cee6e17cd74811907c6090ca3d070ea48c03272875c4929bc

    Download Submit