78fcabf3b572ddacf951e815e73efc42739088453f270b66dc9834901c73d2d2 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

TickTick v...o).apk

android-13-x64

8

Sharing

General

Target

TickTick v7.3.2.0 (Pro).apk
Size

47.2MB
Sample

240927-11y97svapg
MD5

ceffb00488ad82fbd34f9b6ef075044c
SHA1

9ef37ea4b75a6aa10d7924e1fa4882b513786b0e
SHA256

78fcabf3b572ddacf951e815e73efc42739088453f270b66dc9834901c73d2d2
SHA512

f8bc0b32df4d3e0587d123da1ed025332c2e40313452db195080ea81c7dc830e4376e690cd17feaa77dd8fec230abd408d2f2c53872ec195992e384b7cd91e3d
SSDEEP

786432:yTmgIrb9MwQKonr44P5VawSQXUtNwcAOdaQNNqYBg3l4tTSx+SMmFH3C3:kUMwQK4VP5VawSiaNw3P3l4tw2

Score

8^/10

android discovery evasion execution persistence

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

TickTick v7.3.2.0 (Pro).apk

Resource

android-33-x64-arm64-20240624-en

discovery evasion execution persistence

android-13-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  TickTick v7.3.2.0 (Pro).apk
- Size
  
  47.2MB
- MD5
  
  ceffb00488ad82fbd34f9b6ef075044c
- SHA1
  
  9ef37ea4b75a6aa10d7924e1fa4882b513786b0e
- SHA256
  
  78fcabf3b572ddacf951e815e73efc42739088453f270b66dc9834901c73d2d2
- SHA512
  
  f8bc0b32df4d3e0587d123da1ed025332c2e40313452db195080ea81c7dc830e4376e690cd17feaa77dd8fec230abd408d2f2c53872ec195992e384b7cd91e3d
- SSDEEP
  
  786432:yTmgIrb9MwQKonr44P5VawSQXUtNwcAOdaQNNqYBg3l4tTSx+SMmFH3C3:kUMwQK4VP5VawSiaNw3P3l4tw2
Score

8^/10

discovery evasion execution persistence
- Checks if the Android device is rooted.
  evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Checks the presence of a debugger
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Process Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionexecutionpersistence

© 2018-2025

Terms | Privacy