Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
642b3b062d5a71332e5a08c468a2457a_JaffaCakes118
-
Size
3.8MB
-
Sample
240729-2axt5axhrb
-
MD5
642b3b062d5a71332e5a08c468a2457a
-
SHA1
d4c20d9c5a89a730bdc2ef02df1c272425499aff
-
SHA256
5c95001612ce83a25a7efd51db4f3aab4d17cacbc6392b088535787412a83370
-
SHA512
63e2ced60f389cfc91f81636842fc41486584ec414a660e44161acb704f3770ce188e2530af2fc5af5d0e3706c0e4bca2f062d14ed873d1874affe60faaa216b
-
SSDEEP
98304:LLOgD7AvOQENMDWWlIBwX9vbNGKy+GN5I4CtmMC:HFpaHbN3y+o55G2
Malware Config
Extracted
smsfactory
http://smartlink.mobilelinks.xyz
Targets
-
-
Target
642b3b062d5a71332e5a08c468a2457a_JaffaCakes118
-
Size
3.8MB
-
MD5
642b3b062d5a71332e5a08c468a2457a
-
SHA1
d4c20d9c5a89a730bdc2ef02df1c272425499aff
-
SHA256
5c95001612ce83a25a7efd51db4f3aab4d17cacbc6392b088535787412a83370
-
SHA512
63e2ced60f389cfc91f81636842fc41486584ec414a660e44161acb704f3770ce188e2530af2fc5af5d0e3706c0e4bca2f062d14ed873d1874affe60faaa216b
-
SSDEEP
98304:LLOgD7AvOQENMDWWlIBwX9vbNGKy+GN5I4CtmMC:HFpaHbN3y+o55G2
Score8/10-
Checks if the Android device is rooted.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Reads information about phone network operator.
-