Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

e640eb702d...a6.apk

android-9-x86

6

e640eb702d...a6.apk

android-10-x64

6

e640eb702d...a6.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e640eb702de37deb80c0a763eb67dea6

  • Size

    254KB

  • Sample

    240913-rn4jqatgra

  • MD5

    e640eb702de37deb80c0a763eb67dea6

  • SHA1

    3e58d4ecce983b4489d5f2f73fbb536283f707f6

  • SHA256

    ec2654fcdaa602671c65fcd7df97643ddc73732e6291b08c5d2db03f667d6a9e

  • SHA512

    a9fd31a8b39c845f8ffba5c882f626ac805df3675f75c9a03dfce498b9c07e695858eea75c096d5d2c838ec1fa2219d5fc43d786028bfc35ae3c23e171f04f6c

  • SSDEEP

    6144:Hyr+4R4H6/f5QEgmz0GxRYuQUt9jsJ1zgbyN4V9itG:SFRuqf5/gmzRzMAQzgbU46G

Score
10/10
sandroratandroiddiscoverypersistence

Malware Config

Extracted

Family

sandrorat

C2

majdazar.ddns.net:1337

Targets

    • Target

      e640eb702de37deb80c0a763eb67dea6

    • Size

      254KB

    • MD5

      e640eb702de37deb80c0a763eb67dea6

    • SHA1

      3e58d4ecce983b4489d5f2f73fbb536283f707f6

    • SHA256

      ec2654fcdaa602671c65fcd7df97643ddc73732e6291b08c5d2db03f667d6a9e

    • SHA512

      a9fd31a8b39c845f8ffba5c882f626ac805df3675f75c9a03dfce498b9c07e695858eea75c096d5d2c838ec1fa2219d5fc43d786028bfc35ae3c23e171f04f6c

    • SSDEEP

      6144:Hyr+4R4H6/f5QEgmz0GxRYuQUt9jsJ1zgbyN4V9itG:SFRuqf5/gmzRzMAQzgbU46G

    Score
    6/10
    discoverypersistence

    • Acquires the wake lock

    • Queries information about active data network

      discovery
    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks