Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

fd819b3191...18.apk

android-9-x86

7

Analysis

  • max time kernel
    12s
  • max time network
    136s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    29/09/2024, 01:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fd819b319188f3cc1799e370d99b430f_JaffaCakes118.apk

  • Size

    17.1MB

  • MD5

    fd819b319188f3cc1799e370d99b430f

  • SHA1

    2dee306c6d26d2a4a5681e4932e0bacd257a49f8

  • SHA256

    04a5cb762bb68721641bd5561c9ec5cbe0b8d292dcf779596169a81e0a4ef238

  • SHA512

    39f870d1b9cebc592926dd26e72a3183e148c1220ef2e73432342e51718adb6e7371f0f07d9eaaa925eaf199b027f5e468d361d70312872dfef3c4a9643b1565

  • SSDEEP

    393216:fSZF0TuvP8q9QevAuWuOTu3q1jwRBGR/NE+l45MSSF:fIyNqS4AluOTu3q1jwRBGR/NEgPFF

Score
7/10
bankerdiscovery

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Queries information about running processes on the device 1 TTPs 4 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery

Processes

  • com.fengquan.app
    1⤵
    • Queries information about running processes on the device
    PID:4249
  • com.fengquan.app:remote
    1⤵
    • Queries information about running processes on the device
    PID:4431
  • com.fengquan.app:remote
    1⤵
    • Queries information about running processes on the device
    PID:4465
  • com.fengquan.app:remote
    1⤵
    • Queries information about running processes on the device
    PID:4497

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads