Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

f5052188dd...18.apk

android-9-x86

4

f5052188dd...18.apk

android-11-x64

4

Analysis

  • max time kernel
    7s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    25/09/2024, 02:56 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f5052188dd15b9cc1de0abd6eadae611_JaffaCakes118.apk

  • Size

    20.8MB

  • MD5

    f5052188dd15b9cc1de0abd6eadae611

  • SHA1

    72ae88056ee28d2dc7fefa0eccee85c56d2a2599

  • SHA256

    5dfa137f7d4b13d19b09bda400855e52048ba2053447bd95bb71d2365c3b9d0d

  • SHA512

    73d23e89d6caeb15ce3360e0a2d535d53adac60609484c62725808cd4362dd39e0244eb3bab303a5abdd8a474ea9118ea60a4c7419838c34ca6f2b16b8b14c30

  • SSDEEP

    393216:4KyfbQZezKLuff7oPC7Y5hCwBQtHeWEeyQuJZ4tJcLo:LyfzKLuffeC7YnJBQ9ERQuDCJcLo

Score
4/10
impact

Malware Config

Signatures

Processes

  • org.yidont.ylife
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4246

Network

  • flag-us
    DNS
    semanticlocation-pa.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    semanticlocation-pa.googleapis.com
    IN A
    Response
    semanticlocation-pa.googleapis.com
    IN A
    142.250.179.234
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.74
    semanticlocation-pa.googleapis.com
    IN A
    216.58.201.106
    semanticlocation-pa.googleapis.com
    IN A
    142.250.178.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.180.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.187.202
    semanticlocation-pa.googleapis.com
    IN A
    216.58.212.202
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.42
    semanticlocation-pa.googleapis.com
    IN A
    172.217.16.234
    semanticlocation-pa.googleapis.com
    IN A
    216.58.212.234
    semanticlocation-pa.googleapis.com
    IN A
    142.250.200.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.187.234
    semanticlocation-pa.googleapis.com
    IN A
    142.250.200.42
    semanticlocation-pa.googleapis.com
    IN A
    216.58.204.74
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.187.206
  • 142.250.200.42:443
    tls, https
    202 B
     40 B
     1
    1
  • 216.58.204.78:443
    tls, https
    858 B
     40 B
     1
    1
  • 142.250.187.206:443
    android.apis.google.com
    tls
    4.7kB
     8.8kB
     14
    21
  • 224.0.0.251:5353
    3.7kB
     11
  • 1.1.1.1:53
    semanticlocation-pa.googleapis.com
    dns
    80 B
     304 B
     1
    1

    DNS Request

    semanticlocation-pa.googleapis.com

    DNS Response

    142.250.179.234
    172.217.169.74
    216.58.201.106
    142.250.178.10
    142.250.180.10
    142.250.187.202
    216.58.212.202
    172.217.169.42
    172.217.16.234
    216.58.212.234
    142.250.200.10
    142.250.187.234
    142.250.200.42
    216.58.204.74

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.187.206

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /storage/emulated/0/Android/data/org.yidont.ylife/files/tbslog/tbslog.txt
    Filesize

    1KB

    MD5

    4931a16affe1b298099ae3692778c04c

    SHA1

    9bb05dc3112cad44e6e6b6b5c64b5ed578fa6964

    SHA256

    6dd3d0ccbcc005373b70e86cc4b8bcfce4f1c84264a40cf6d0f3b27c30fa7866

    SHA512

    f2bfd9f785ff9485f22b09ebc3238cf5708b6c0b29d81b5e42490af811c9601ba1e83c531a65008f3bd0cfeeac5fe7cc8828943c85b2ec933e2ab0e9059d8d6d

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.