Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
7s -
max time network
187s -
platform
android_x64 -
resource
android-x64-20240624-en -
resource tags
-
submitted
25/08/2024, 14:04
General
-
Target
c0e6b97e5871df387978cdbba753f81e_JaffaCakes118.apk
-
Size
4.8MB
-
MD5
c0e6b97e5871df387978cdbba753f81e
-
SHA1
dc9c0000d4b8c9a2bdbaaf1083c73113123aaff9
-
SHA256
7864e75909fc3364344d2221e400dde275e1d0f0b2dc793320fbf6b4ba26f90f
-
SHA512
dd4d7b8bf98821f8cb723ebeee6612fba21f93410f99dce40c7c69bbbee1b06b25c85ae8939a731c66fb4d1ecdc8785c90b6014fb154109274d11e230c8da9a6
-
SSDEEP
98304:z/XOOeD6u5pmrfEcTo+KWrS2jsHlBE3zVTDgnnfEnjBfZ8sJVcGfa7u/q2lm:7eco+ETyzVons8wcGfaP
Malware Config
Signatures
-
Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs
-
Queries information about active data network 1 TTPs 1 IoCs
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Reads information about phone network operator. 1 TTPs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
Processes
-
com.gunxueqiu.activity1⤵
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
32KB
MD51ad9e58908947bfd8d3fb44bf7a80d16
SHA1812297bf3c7749b03234db77fd93157d8b124357
SHA256464a7ef704127ef6a0f45240709dbfb0266181993107c6ae39359b23e06f36e0
SHA512c25984f57d9b9c1238abf47452b39c119bbe6bf60362f8308c69e67d2a0d461f060df74b7c85747ad5200b7a3191b9faf472d29f657cc15cd3ca4f959d76d6e3
-
Filesize
512B
MD5612c4654b2979a2b9453ec7fe7437b57
SHA17dfceabdcee9e6ebfd460785ea1fbfbcc59438f1
SHA256ae7150be603b1ed517486b2e912f0194cb7b43ca058dcad1fc46437529cb81d8
SHA5123ef583e237c5642ed498fbfe2fa35c6a2e1d57562e42bacc2894a7d112c1de7578a7073120d74bb74c4cd259187d63b799b3260de73e9a510b0c4bbd8e08f2d4
-
Filesize
8KB
MD5c0d2b9a092b81d41e45baad296911023
SHA153a8391c7f9b0c884a56f4261be7085fb5689525
SHA256e517f419a66d4737ec26b34753f2a39c73aa7fb046ec5f9b15511c34cbc45b90
SHA51216ea5455fc27d49b529921ffd08e524588ecbeda62e24637153cb1ed0abc94236765d4b7068af6028bf9016dcf4fc754ca59db51e9257380935a95748ff88f9a
-
Filesize
8KB
MD5eea95f58215b755b4990e4f81bec51c8
SHA112daaea904c6fb8c48231d187b017798f93884fd
SHA256c6bb9cca2f07c610123996da30bc90973080ab056fa986d85728457246b34058
SHA51255a18a2851b1dc7f83ecdd6c94ce67b3a4b56ea8bb75e7578696c2744b4322d50f04d036ed2ec432d185b6a7b32a46cb7d88d6804008fabb8e06323d95ac8892
-
Filesize
777B
MD58b029be02ff418793d18d25d9b27dbe6
SHA17f8cc239049d850bcf14bb88fca0b15265987f97
SHA2564218f48efec6e8d4b983e8d3d0dc8f9ea7bff5794d9d8373f19c06b3ef518adf
SHA51203aecb4cf76a0d050b149cdbf823ebc73fee62c9ce697720bfca7db188f664cdaa4ccae6b1bd45ed2461f931da08914fdab2e915eefa922e189a7fffa2550d7e
-
Filesize
148B
MD532f1d7d087216a600645b5ba7b8d40ed
SHA1ff56843477300d9e6c68e4bdda2a2ae1a75a03a9
SHA256b73c2314e3d35a70cdd9fb9f62d7bdf34ed19a50ff53a3285f59b4ce04eb7837
SHA512e855903850912158523583f57796ddf3fa93d1e2e3630789e39413c022c83461a1b00645cb43b9ce4ecddb937d23ba4e18b5397188f6578e6a6d9101b55e8b2b
-
Filesize
76B
MD56f9a679d64a4c1e27d82a4c87f95db49
SHA170810e1f4ebdadc3cc962dafee96f42111e9f1cf
SHA2566dc500011c56028759de94faffb7da00d54697866a86e7c24da2f80b27a1813b
SHA512750c52140be325fe4c3069746a27e79b92b4ed42ca205c28f31e2b37189dde8c669e68a1dd0ceaca426d47269fa249fa546641e8830e4d6f106103e37b60c365