Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

7e39d98a97...dd.apk

android-9-x86

10

7e39d98a97...dd.apk

android-11-x64

10

origin.apk

android-9-x86

4

origin.apk

android-13-x64

1

Analysis

  • max time kernel
    8s
  • max time network
    133s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    28/08/2024, 12:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7e39d98a97b9ffdda3251148ce6aabdd.apk

  • Size

    15.0MB

  • MD5

    7e39d98a97b9ffdda3251148ce6aabdd

  • SHA1

    76964b9f2ec5018ce5ab268608235bd4cbd79873

  • SHA256

    da78aa845bc87543786ba89f6fb707e0c7ea433cef161b0cb53f039ce9909565

  • SHA512

    a522b75f871cf7a32526e66a5f932fda9d0e489aa2e293948a32278d517e896f2101e2edae89b5224db9c860ff4ced5bccdb051c10dbb6ae648f9280fd00c457

  • SSDEEP

    393216:ziT2xVikSMGYOpmD98dLKKtborzTN5sPI:mKxU6Op1ZEzb

Score
10/10
axbankerbankerinfostealer

Malware Config

Extracted

Family

axbanker

C2

https://newax-d7dc6-default-rtdb.firebaseio.com

Signatures

  • AxBanker

    AxBanker is an Android banking trojan that targets bank customers information distributed through fake bank applications.

    bankerinfostealeraxbanker
  • Requests dangerous framework permissions 3 IoCs

Processes

  • com.playrix.donow
    1⤵
      PID:4482

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/com.playrix.donow/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
      Filesize

      8B

      MD5

      e287f04eecdcfab4ebb0792ec57447bd

      SHA1

      e8530e6fc5215ade6255086aa4df3c5afca2bd47

      SHA256

      41d2e92d7c9ed12b9d87525f3c0cec3b848b3a69df12cef9a066dc2b7be30ee3

      SHA512

      96ce71741c492f901b63f3e48755d50fb8312510eb6d352759f78276cfda63ad745a27ac261f223b468692615fd98993fbe868342add4500a5442a5f81c7563d

      Download Submit

    • /data/data/com.playrix.donow/origin.apk
      Filesize

      14.8MB

      MD5

      e5142d7c118a806b5a42bbc624f490fb

      SHA1

      5bbe9a1737062f2bee84c838bce8948addcd9641

      SHA256

      1b0a086993708469bd00801c6ec2669d6dcb8b2098f539759514712ceb6be230

      SHA512

      c0e607abda9f1e02e480cc60945077a16211c9e831176dd7d9ad0a2df995ac54b18929b78a3e8013d75089cba3ebdf529c2d91a7e248ed7c7c95ff72adb8dc06

      Download Submit

    • /data/misc/profiles/cur/0/com.playrix.donow/primary.prof
      Filesize

      2KB

      MD5

      9539eefa6573c0887cce14862efe166a

      SHA1

      186736407ba688eb172c9baf656f6bcf2e0acadb

      SHA256

      71163417995c6dddfc8b6c267caf5351507ad85514e4c218d02c05adedf0d74d

      SHA512

      1afa128fc8d35eacdcf0b9ee24458dde82c1ea4a12e4e6999ca4fd2278dfc230e863783b92de1708eb8725b45276e15390e824a6a8b6fafc2a1275943ae8c60c

      Download Submit