Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

e186c0c0dd...18.apk

android-9-x86

7

MiGameCent...ce.apk

android-9-x86

7

MiGameCent...ce.apk

android-10-x64

7

MiGameCent...ce.apk

android-11-x64

7

unicom_resource.apk

android-9-x86

1

unicom_resource.apk

android-10-x64

1

unicom_resource.apk

android-11-x64

1

mimo_asset.apk

android-9-x86

1

mimo_asset.apk

android-10-x64

1

mimo_asset.apk

android-11-x64

1

Analysis

  • max time kernel
    2s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    15/09/2024, 02:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e186c0c0dd79e4fe5e499641eb291713_JaffaCakes118.apk

  • Size

    22.6MB

  • MD5

    e186c0c0dd79e4fe5e499641eb291713

  • SHA1

    5c09a86f0feebc77f55c86004f7019d50b57aca2

  • SHA256

    ffb12dcae8e9a3fd0cce1c51aee179e6e4cedc3646ca85519ca027a34c6f1152

  • SHA512

    25d9b51ee3d8cf2ba7026e0d9af05bf2709e932b1766b01d34a0cfe3226e613d268a62dbe62b3c3cbebce802a66b3938c86896d1634a48f784e7475719ece70d

  • SSDEEP

    393216:plC2EQNzjTMhcqzXGM2zYRBp82PQBM04q+As1ReEmiF04iojni86l/shAePZP+XU:bCvQNIZW3wY9+Nmu5y2y+P+IR

Score
7/10
bankerdiscoveryevasionpersistence

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Requests dangerous framework permissions 1 IoCs
  • Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
    evasion
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence

Processes

  • com.yifeng.jfczyf.mi
    1⤵
    • Queries information about running processes on the device
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Listens for changes in the sensor environment (might be used to detect emulation)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4249

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.yifeng.jfczyf.mi/app_mimo/mimo_asset.apk
    Filesize

    300KB

    MD5

    bf0be21e40885f5f682349db415ba2f8

    SHA1

    823bcad773983ab798565f7b64b95783dce14d80

    SHA256

    aca4c8f0522c09a77bcc790b10c772611525456cc88da97b0240ffdfe1c4a2eb

    SHA512

    3c837718ddcc19885e00d54f9b7c336d83406571affdf64411e85a1ca317d67399e1cd56c5472a725568897dcd45bc5d94b87747be72b15e37e565034544be81

    Download Submit