Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

de725c0bb5...18.apk

android-9-x86

7

Analysis

  • max time kernel
    144s
  • max time network
    154s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    13/09/2024, 15:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    de725c0bb51650f6d02e9fc9b4201a91_JaffaCakes118.apk

  • Size

    14.2MB

  • MD5

    de725c0bb51650f6d02e9fc9b4201a91

  • SHA1

    8019b78e6fae7de4538fba207c403e24ca8fa35c

  • SHA256

    157f4cddb53b48365c9afc8e49229c6ff6a5760b521d398a34f4656f2d398160

  • SHA512

    3fbf2c27dfe1243e7f583a1ef3178e14d14946e2a5c80b64840434374020391d0fe32a39f4e84df704be88831e0792a9d04f622464d1f3f14b2094df2c1abc49

  • SSDEEP

    393216:H0lXCQrvrDc7pPp6uNzcH2nrPPEBUXM2mJWP:H0rfo7Zp6izpbEBUXME

Score
7/10
discoveryimpactpersistence

Malware Config

Signatures

  • Queries information about running processes on the device 1 TTPs 2 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs
    persistence
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
    impact

Processes

  • com.mxz.dreamstation
    1⤵
    • Queries information about running processes on the device
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4265
  • com.mxz.dreamstation:pushservice
    1⤵
    • Queries information about running processes on the device
    • Queries information about active data network
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4318

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.mxz.dreamstation/databases/_nohttp_cache_db.db
    Filesize

    32KB

    MD5

    5823d5fa0c13f9e1d1038ed5470e505e

    SHA1

    b70924e0f61fc55612d57bfdbdffd6a2f9775be4

    SHA256

    3670ad7d6fe06fd9f3d3abfdd961e4016ed47880c84c3d8168cd68e049b553c8

    SHA512

    b0586e1562480600c9507fc3553fcf20bc55339feb3d749c00f88c6e9b38010761e758d1fed64cefc53559cc066c83ac3d6e7f2d471359fda291a7cb8e6c3386

    Download Submit

  • /data/data/com.mxz.dreamstation/databases/_nohttp_cache_db.db-journal
    Filesize

    512B

    MD5

    4afe22168eaad98192b068b608b6493e

    SHA1

    0d1e0a8687c08ff5cb21f25ca3c3ef2bb5a8fb66

    SHA256

    a0a8088d20381c7e2bc74eeb1e393a5b0635a2b5f5c9797057d4fd2610582caf

    SHA512

    fce91b6c2f66fd78ba9a0d5daf2672455e2394fc6308de4e9c0c20b2f6a644691acf5ccad18d65a2bbb73a0defee76aad670403e63376d22ad950bfe1fa5ab95

    Download Submit

  • /data/data/com.mxz.dreamstation/databases/_nohttp_cache_db.db-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit

  • /data/data/com.mxz.dreamstation/databases/_nohttp_cache_db.db-wal
    Filesize

    36KB

    MD5

    6d20ac2e113d64e8855b156dda2614ef

    SHA1

    1fa972789415fb731665cc2d29c6090992c5d030

    SHA256

    fa2df6f9cc54a69b2a4c83c0437969c5d407a260cac48264f1dbc251834c00fe

    SHA512

    ea098abbbd6d6f53bc465f44d0ca8553e987f66def202ee131d66cf843fbe0d86d1c420990569dd40083e19a93fd15a931012369277a1991c2cee9a14ea397cf

    Download Submit

  • /data/data/com.mxz.dreamstation/databases/_nohttp_cookies_db.db
    Filesize

    24KB

    MD5

    692957a8f6be4a25986a068c449b83ab

    SHA1

    04223c8cbcf0032443488e3f5f9bee9f91eb5f7d

    SHA256

    4895bff14c71a617ca75f6ce7933b28332ee06a1b2aa431ee3e108db693cdf0a

    SHA512

    0617a88df6a60252050fc5403f6d01936bbcba961d707474d62bf97cf1e2034999befd13fac5e58d430ce43dd45dce8e2e6c8b6b125ea53dada382aebcfa3742

    Download Submit

  • /data/data/com.mxz.dreamstation/databases/_nohttp_cookies_db.db-journal
    Filesize

    512B

    MD5

    9d26b9ad1f2346dd4ebbedafc56b3e7d

    SHA1

    17e41322242777e967202e2e0b86cbfaeb4e891e

    SHA256

    9f42e63dfe92c1b26df896b2324b0102cf3f8831e2241f3a3785bf591e5a1bc1

    SHA512

    874abd795b5f532d32edc5a878096f7c3266978e8922061040bcf0a635db57a6646324e70ba93f83977394f0e0bdd305f43d907f9917247d8e7eab70dc8d87b6

    Download Submit

  • /data/data/com.mxz.dreamstation/databases/_nohttp_cookies_db.db-shm
    Filesize

    32KB

    MD5

    0d7faa85f192ffe6129a6a3ae19a25e0

    SHA1

    1ca51c7cc457e5fa38e43e1fe7779f39ed5229ca

    SHA256

    65cb77c82163005e440b16f56550d19bef313946a4da78b5b3033d63bbe43d77

    SHA512

    644664bae233533d72e57d5283d77e409fb0f8dc7c162e1ae4275a4b19b5902921b5a25d361f561e1aca817cf78695a57ee5b5bffd63fa57fdb6431e44aba74f

    Download Submit

  • /data/data/com.mxz.dreamstation/databases/_nohttp_cookies_db.db-wal
    Filesize

    36KB

    MD5

    f9cffdc2b5953d0a75635ec38e6a269c

    SHA1

    a0f00a9f4e822da5cc51335af3dd1be3a6caa9b0

    SHA256

    7538c5b9630914e254338efcba971a3fe47f2745fb7ba65fdf446044df9ba78b

    SHA512

    6f1e0d585130c52705c5c331173446602c4d05785d6c411a1b2fe4bbf8d9df08987a76802f4923aaa783fea9839763790655da37a7241c3ae2dde2f6e551aed5

    Download Submit

  • /data/data/com.mxz.dreamstation/databases/pushsdk.db-wal
    Filesize

    181KB

    MD5

    ef21701342b4d7767f513fcec5ab7410

    SHA1

    fe9af1c5c9ee906e7b2fe2ffc2ea87a793475173

    SHA256

    0278f41722e68539d8b80b0ecec18980b1440425b6214a2f2d7b548007494de8

    SHA512

    1a47d76d29908498c76c257f19866739b62e948dba81f1cfc4b9a6cbaf46d657bf80221fa947b018f820feac9c8ac676bf09dccc77968f4748acfb1851acfd7b

    Download Submit

  • /data/data/com.mxz.dreamstation/files/config.json
    Filesize

    512B

    MD5

    eed7b4c3958bcba1779f6356e4507d66

    SHA1

    c949fa9829d0c8c35fa5e549a7f001f0cf84663b

    SHA256

    b2451b534b98dc954d246111b491dea9d9d3b360093ea081c2bca6a55acdf5f2

    SHA512

    236430a693db5797db21398d994e9c6488506426bf8d8bed398bfbe05d920a108628815dc08faaf68144b3d08e4da72f20b2c910ab63a48349a4f69dfb552081

    Download Submit

  • /storage/emulated/0/Android/data/com.mxz.dreamstation/1168170505115096#dreamstation/core_log/easemob.log
    Filesize

    8KB

    MD5

    8b772a1db0ed18ced2ced63544a774d8

    SHA1

    d8c2ca13a93ccc0f6a909e7fd819bc93ef2fbdf4

    SHA256

    759dae39bddcdc797e43c619b603a95f1bf4f160b39b6eb9597f2910d7fa04e9

    SHA512

    d82fb53888d6024d424f67f81e96f673203d752cf246847818119fa31967e37c5c63f3cd59ebba7afe5b6298214883de0f261ea92162bcb3397e9037597f5e1a

    Download Submit

  • /storage/emulated/0/libs/com.mxz.dreamstation.bin
    Filesize

    74B

    MD5

    952f988810b5e86b69363eff4b04b703

    SHA1

    4067f75d77c710e28fb7730a3ab3f3f4a893b155

    SHA256

    f5c8cb746a07399c902d4c45de5a5bbb96782e513b764ac59d8a402cc35266b6

    SHA512

    78b856e44883ad50d1d8f285ef6971ee652f97df490363706117c9123fb6a46fd86cf4adaaeae2e9e883d0c92a400a3545006987d5c5bb305a0927310eaea88f

    Download Submit