Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c0c24ea91977be8235890be987bf89d5_JaffaCakes118
-
Size
31.2MB
-
Sample
240825-ptmr2swdmq
-
MD5
c0c24ea91977be8235890be987bf89d5
-
SHA1
f1bbfcc740791066219ad35349980b9ab593a9ac
-
SHA256
759810960fb8b880422ea470a83b89c5f9e7ca4b7d340d3e0653f3dd5609f779
-
SHA512
5d5037cabd8dd9532121af290427eac17b1639fcbcd77bd67b6854f0835fd7f857159c51865cf20b32254fac17b3df49bc0b671fc49791795c361c03e0fec577
-
SSDEEP
786432:pOayc/fVtl4S2hNYT1CrUFAsxKzya4z+wSpW7EOCD:Qayof3lIoT1ymKzhW7A
Malware Config
Targets
-
-
Target
c0c24ea91977be8235890be987bf89d5_JaffaCakes118
-
Size
31.2MB
-
MD5
c0c24ea91977be8235890be987bf89d5
-
SHA1
f1bbfcc740791066219ad35349980b9ab593a9ac
-
SHA256
759810960fb8b880422ea470a83b89c5f9e7ca4b7d340d3e0653f3dd5609f779
-
SHA512
5d5037cabd8dd9532121af290427eac17b1639fcbcd77bd67b6854f0835fd7f857159c51865cf20b32254fac17b3df49bc0b671fc49791795c361c03e0fec577
-
SSDEEP
786432:pOayc/fVtl4S2hNYT1CrUFAsxKzya4z+wSpW7EOCD:Qayof3lIoT1ymKzhW7A
Score8/10-
Checks if the Android device is rooted.
-
Checks Android system properties for emulator presence.
-
Checks Qemu related system properties.
Checks for Android system properties related to Qemu for Emulator detection.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the unique device ID (IMEI, MEID, IMSI)
-