Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    loader (2).apk

  • Size

    4.6MB

  • Sample

    240806-mjfvms1blf

  • MD5

    73fb74ba9966fb90bfc236a07c09d811

  • SHA1

    a0efc7e17e96fc358d6abf5fb4d256f33c7c3167

  • SHA256

    4e36c337abad2290f2c4e262f6e8afb34f6f33b0c3af5f4c055bae2e09f18fb3

  • SHA512

    a0c2ae2913960d2f8ef869668c7675960d01b050b77be206d95642f1e5c023d55fe628975cef863fd2da2ce1115438e41ca8b7b88f92f8ff5dde6010261deb04

  • SSDEEP

    98304:f3rXB9X74RLSmEoyee+nNOmz5zBy2Tr0tQqeTmT:TXoROoE+NJztUGq

Malware Config

Targets

    • Target

      loader (2).apk

    • Size

      4.6MB

    • MD5

      73fb74ba9966fb90bfc236a07c09d811

    • SHA1

      a0efc7e17e96fc358d6abf5fb4d256f33c7c3167

    • SHA256

      4e36c337abad2290f2c4e262f6e8afb34f6f33b0c3af5f4c055bae2e09f18fb3

    • SHA512

      a0c2ae2913960d2f8ef869668c7675960d01b050b77be206d95642f1e5c023d55fe628975cef863fd2da2ce1115438e41ca8b7b88f92f8ff5dde6010261deb04

    • SSDEEP

      98304:f3rXB9X74RLSmEoyee+nNOmz5zBy2Tr0tQqeTmT:TXoROoE+NJztUGq

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Requests enabling of the accessibility settings.

MITRE ATT&CK Mobile v15

Tasks