Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    PouUniverseSpyWare.apk

  • Size

    24.1MB

  • Sample

    240928-fmnakayaqp

  • MD5

    df9fbe5add0819e5689c905ab5d56153

  • SHA1

    fe7a0401d1221cb29b624e24e04f3f23c65dfd65

  • SHA256

    0996ed9acb21ea6f0a88c337e5b85bcf64e74f972458a6615078710ae5e7529f

  • SHA512

    bb531940a94b6f6e04f218eddd3d3fb985452bf11705072a324dfc3187a0bcba99f5717778b58a2af80df58948cd56fa2eb0f673935a176621687a8d7a28e5d2

  • SSDEEP

    393216:P3On7OgumPypg+m9tak1e7b0x2TmEdlrsavEVyaKgZg:mn7bumP19takIox2S0gavEVyaKL

Malware Config

Targets

    • Target

      PouUniverseSpyWare.apk

    • Size

      24.1MB

    • MD5

      df9fbe5add0819e5689c905ab5d56153

    • SHA1

      fe7a0401d1221cb29b624e24e04f3f23c65dfd65

    • SHA256

      0996ed9acb21ea6f0a88c337e5b85bcf64e74f972458a6615078710ae5e7529f

    • SHA512

      bb531940a94b6f6e04f218eddd3d3fb985452bf11705072a324dfc3187a0bcba99f5717778b58a2af80df58948cd56fa2eb0f673935a176621687a8d7a28e5d2

    • SSDEEP

      393216:P3On7OgumPypg+m9tak1e7b0x2TmEdlrsavEVyaKgZg:mn7bumP19takIox2S0gavEVyaKL

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries the mobile country code (MCC)

MITRE ATT&CK Mobile v15

Tasks