Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

23/07/2024, 13:29

240723-qrc1havgrh 3

23/07/2024, 07:59

240723-jvtdbsvhqc 8

General

  • Target

    66bffe0de65f2bdf16a85ebe3153c261_JaffaCakes118

  • Size

    2.3MB

  • Sample

    240723-jvtdbsvhqc

  • MD5

    66bffe0de65f2bdf16a85ebe3153c261

  • SHA1

    7e11e1a6c35218610a27b1a2a5e04258146fc0c9

  • SHA256

    611034244742e3dd88bdfca6c43d8b40454509873e81bb25572265aac5f8699c

  • SHA512

    86c98ef137cd10baa8b792ce4b939d3817b5c52947cea2155c627f2b065c11541962fd8ad40c222fd5b22470fd641032a87878b17790f68d722a913816df9730

  • SSDEEP

    49152:DtkpnQ6qYqCo3+NzMFVI/ij1PSs43H3vf+Gg:1b+1O433HfPg

Malware Config

Targets

    • Target

      66bffe0de65f2bdf16a85ebe3153c261_JaffaCakes118

    • Size

      2.3MB

    • MD5

      66bffe0de65f2bdf16a85ebe3153c261

    • SHA1

      7e11e1a6c35218610a27b1a2a5e04258146fc0c9

    • SHA256

      611034244742e3dd88bdfca6c43d8b40454509873e81bb25572265aac5f8699c

    • SHA512

      86c98ef137cd10baa8b792ce4b939d3817b5c52947cea2155c627f2b065c11541962fd8ad40c222fd5b22470fd641032a87878b17790f68d722a913816df9730

    • SSDEEP

      49152:DtkpnQ6qYqCo3+NzMFVI/ij1PSs43H3vf+Gg:1b+1O433HfPg

    • Checks if the Android device is rooted.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Mobile v15

Tasks