Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    028b22af76ff94bd1789106914b03cb6_JaffaCakes118

  • Size

    30.4MB

  • Sample

    240930-wbpbgsxfnk

  • MD5

    028b22af76ff94bd1789106914b03cb6

  • SHA1

    1d089bf156bf8e587c88c1a92c059d4ab82778e9

  • SHA256

    596502c9b62ddc6fa40e8ac9b519a85e8daccd89fb7a6b59c8ec01d95077899c

  • SHA512

    368c9905f2b8757612d370e86a33e9f0b25d0bcdfe012a10724a3a66f72aa730704e1fd1acbb90722675e27cc6fd84ac2b5e367adcc04947cef348fd6d4ca0ff

  • SSDEEP

    786432:fR5GRhkIZk2mXW8Eg0RZHXTGbVAPRkpC5tZRwguZcq:fzn2mG88xT6WRwC5tZJWb

Malware Config

Targets

    • Target

      028b22af76ff94bd1789106914b03cb6_JaffaCakes118

    • Size

      30.4MB

    • MD5

      028b22af76ff94bd1789106914b03cb6

    • SHA1

      1d089bf156bf8e587c88c1a92c059d4ab82778e9

    • SHA256

      596502c9b62ddc6fa40e8ac9b519a85e8daccd89fb7a6b59c8ec01d95077899c

    • SHA512

      368c9905f2b8757612d370e86a33e9f0b25d0bcdfe012a10724a3a66f72aa730704e1fd1acbb90722675e27cc6fd84ac2b5e367adcc04947cef348fd6d4ca0ff

    • SSDEEP

      786432:fR5GRhkIZk2mXW8Eg0RZHXTGbVAPRkpC5tZRwguZcq:fzn2mG88xT6WRwC5tZJWb

    • Checks if the Android device is rooted.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about the current nearby Wi-Fi networks

      Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Listens for changes in the sensor environment (might be used to detect emulation)

    • Target

      blue.v2.skin

    • Size

      26KB

    • MD5

      f276d999708d672dfbfb63c1b87724bb

    • SHA1

      137bf145252f61931a14272c592ea6060dd8ab59

    • SHA256

      666c76671b1553dddb665cb2b955f8bac9a26b1526182f553d1fbd90a614a3f8

    • SHA512

      eb10eca83b59ab144c51b55f6ebb09f54e9b05dc9444ed0d242abe47090656cc0128b105551854a55e637dafeada5b11102b0c495091e81a62bd2076871e1fd7

    • SSDEEP

      384:1pkI3oqFzrMSz3gMayXAoa+TuNQjW5rtPqrCMa5oHxowtqNp:Xf5prMSzpa+pW5rdpMVQ7

    Score
    1/10
    • Target

      fifa.v2.skin

    • Size

      42KB

    • MD5

      b1d3a9fceb5d3074ee9e29a2647f868c

    • SHA1

      e396bc186ac281cfe3762ccf2ecf477ba8425b1f

    • SHA256

      d6b45e60879bf781ffced639bc0866653201a936133073996ced53f395ec5658

    • SHA512

      a4a29680a3d561cd4bcbdf3abe2ec92cee897f2cf52aa9cf6a94b1d83f5db351483279718cf00997eef38802100813d01b84e3653a94dafd55d401e99ae7d5cc

    • SSDEEP

      768:HqUbAIprMSzpa91aTGPgLenKOq494qHA0jXKwaiHYzEeye0FRC:HqU9rMswGKPyenKOv94qHErYeyel

    Score
    1/10
    • Target

      mouse.v2.skin

    • Size

      28KB

    • MD5

      38c7e1af6c9872222a9157e54dfbc239

    • SHA1

      f4dd9bc15f3b4ae4a63dae1739f5b435f8ff37db

    • SHA256

      1f071d9c9aa25e028360faa34673ac2999b26cd9ebe91c22d54faac3b5dc03e2

    • SHA512

      c3aae36548c4715227618fc549da136104f3d557c9fb4aa8223fa749ef29635c834c853f92461faebc0cf72ad1cf011ef1a6486e8fa600c755ddcba0292d56b6

    • SSDEEP

      384:mSs97aSjSiD2iaTGdSUWlNTLUJzbvuZcqrki90gyDlpkGIWtIi8Xc57y9ZpeWb6k:mSuSi7aTGfWizbv14s98aIgupe06R+

    Score
    1/10
    • Target

      ruantang.v2.skin

    • Size

      27KB

    • MD5

      86dcb970e49ebc01f5b4e64bca2830b1

    • SHA1

      78db74b064c54bc34e8f629c7aa47ad5b0e02aaf

    • SHA256

      57fa2d1dac20a25013740c029b42fc17a9136a99e435a8e63e02734e603d23aa

    • SHA512

      01acd03f183db5c9ad7c272cbbbf8f2a3ef8b7137a7b4092594462240729378769100d1338b38fac13b5614fcf2fecc69636baf5169455d939268c881415a734

    • SSDEEP

      768:SD2agTKGMl1woChy5+tQijjH3LIgEAGmMX:W2agDEHChy5q/HdEAY

    Score
    1/10
    • Target

      vip.v2.skin

    • Size

      23KB

    • MD5

      1081768f814dd9af77ad4549ad95f336

    • SHA1

      2c34cc45d2e04ccd0e428e91552d0494bc675760

    • SHA256

      d07e4b7372df744dba08f153344e22324bef072e5c1f7eeb7a14383aa23e5b7e

    • SHA512

      fef4dfbd9afcfdc55bfee27e1197577a1898ec17f211e021853987a511d8bd7601b66a4a53dbe60270b992408b21cf1e1bd6fb70e58b8a77ccc2d8848d9c161d

    • SSDEEP

      384:bncFhnTh7bNA80L7Oq6QPYoCjRIleCMa5GCeLxSfeEd:bcFhnJm8FqDPYomSMpLhO

    Score
    1/10
    • Target

      xiaoyongyuan.v2.skin

    • Size

      26KB

    • MD5

      6fe39ccf77f1b96ba34d5d7883f7f263

    • SHA1

      106277fe9d051e08bd20fd5d6bdb429716601c11

    • SHA256

      ce3b1bf509ae73b2a27b4b06bbc99a76bae422c6e2a5d13d54b8884c4f55fab4

    • SHA512

      fbd6d4f59e766477e1aa2e94f2971243b05852ff302b3859a3c329e299e6e17483d81f05e9e24211461db4595552475524490f594692a7ee98bfcb6643924e46

    • SSDEEP

      384:XKfUROUZYzgXCZe0D3cvi6X+xo+31pfnLE73djAGsD7KFya0GB:XK8sPzgXvq3c66X+x57fLE5AGPK4

    Score
    1/10
    • Target

      xiuxian.v2.skin

    • Size

      57KB

    • MD5

      4f5df54d8688d355c2e3674ec2cec055

    • SHA1

      28460d8a3b8606996be49041444ce5915ce4ff1f

    • SHA256

      ab5f7f657998a48f56941b0ce9403e3f65af1dcbe69bfaea060018bcf09f0a54

    • SHA512

      2af430c85f8a84afc45b2ea10fb983b54a761703a0569bcc93078fb3af3292db4906bcc48b4bc996feebcba4738f563f5f99db3fc97494d46a835fb8a277d6e7

    • SSDEEP

      1536:IgKjdB1ZaFbEoVxYUva7PliUFuiI/PSCSc1ALd:IgKjdB6FnVfvIPli+uiI/aCP1AR

    Score
    1/10

MITRE ATT&CK Mobile v15

Tasks