Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
149s -
max time network
136s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
-
submitted
02/10/2024, 01:13
General
-
Target
08336a29c7a497c4d7c741f7d0fee1ab_JaffaCakes118.apk
-
Size
991KB
-
MD5
08336a29c7a497c4d7c741f7d0fee1ab
-
SHA1
a0f09fe0ce281a8b54893542b867a47f30e751b0
-
SHA256
ff348488b584407066a0dad9b7aa41cb3e1e71834e4824eaa646d6df569303b0
-
SHA512
97aea3ac0239f887d951327835063bad0bd20fa1f0e4a05770ef8822aa0f49d9c1b397f2b687f3302c33f8c6da11f1af55830dfb12022c012ea10ff25d9ff2b0
-
SSDEEP
24576:86N+ukNThEXeBcaZTAVO9dth0KjuiJEfTAcSqVDby7MJ7KfuSh/X2bGyx:V7wGG8SZjNkUcSqkisuq+rx
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the phone number (MSISDN for GSM devices) 1 TTPs
-
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
-
Queries information about active data network 1 TTPs 1 IoCs
-
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Reads information about phone network operator. 1 TTPs
-
Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
Processes
-
com.babyjc.seeme1⤵
- Queries information about the current nearby Wi-Fi networks
- Requests cell location
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Listens for changes in the sensor environment (might be used to detect emulation)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
Network
MITRE ATT&CK Mobile v15
Defense Evasion
Execution Guardrails
1Geofencing
1Hide Artifacts
1User Evasion
1Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
68B
MD577731055735c8fbc576baac5575d5608
SHA108cf6c02898b1f0f0cebfe40d249e210ae214d87
SHA2567ceabbf9109e450c61fbb5902a6e66468d9d6176f29d7d64925f8ad9675b5584
SHA512b0ed869b5acf581d6f24f659491d6991bc1e0b4aaa7788ed9a436c4abb79fc0a1cffbcadbc4f4f94c305082f5ae30fa207b5e9dc965c2eb9b120045f12e00c70
-
Filesize
41KB
MD5d0b3fdfa1f952d6e6cf4e08a0eee7086
SHA174eb7c2040bef7f18220ed1a13471f9518daede6
SHA2569f9450065da898b605346aa4e5e83125e2d986a35dd8e7fe45993bfa47021b1d
SHA512fa3985a8e05da008733f1c542c9b6e93161243a20b2be86c43def910b80f8d4a20a034f189cadb44f421139f058e00c8de76aedb1f3c908a07ba4f5898209b7f
-
Filesize
8B
MD57dea362b3fac8e00956a4952a3d4f474
SHA105fe405753166f125559e7c9ac558654f107c7e9
SHA256af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA5121b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b
-
Filesize
2KB
MD5bec9e8e26939309c95de826e60e4ff57
SHA1a2fb5f07eb2b07cb24b99bab34296958f06a2e37
SHA2567f843610bffe92d37df261310d03ac82b62578c2fe23980bca1b5c0f66277499
SHA5129aec4832b567a49aa195df5c09a8f9e00b03ad45cfd9930e42251d89a06f98e1c54e82e50d531524feea0fd1f9ce3cb43ad67b507414194e5eba5b74eab282ad
-
Filesize
2KB
MD5371cee872d6d5f11abf89e12a7a18142
SHA1f664c29ee4a90e348dd2f4a9354f4c7fd90e70af
SHA25639f49c722c2c899aa7638e191bf23e48b2cd7d045a646ee394c8100addea412b
SHA51275b68c9b121b98541a2d1da56d196ec672c1c73ecb85594f55efa792651fc34718e5f5d92c919e52f45529af2828bf26f2bca37e53a691167c196ee86bf795bf
-
Filesize
16KB
MD577ed0b4e11ab1de85e99a654750e17f5
SHA13b926a62333fc90771e1069a5624f2c552e27e54
SHA2560e2922ca6593a8f733373472435a2754fc1cf6368e1f91b392e8968fdedd61c8
SHA5121ba48541f11ffb15c5c564a56d9a0f988b66c04ce2ee9404dbc6fcc607456f6dcb4be4c5aa64f3055465b366bf302d1009cdf8d07af4f5ac3fd85cf2ff2ffecb
-
Filesize
512B
MD575018750cd9996ec4225c5808ca1e418
SHA1ef5c74b5467f4d566e71b838d35eb79f4db2c50f
SHA256c9097a11209c0ae3f4da6492155d32e7f69a09e0f0028a137136efbdc39ec0cb
SHA5126731d86b34d5a0040e91fcf1ba56617880d0148e759593021c2306ac51d7ac34c9e2e8e8b88276089bc89101af107de3eeb432ae69c2874343f3c05f47bca883
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
28KB
MD5cc3a54d6cfd10cde238b0ca64f198697
SHA1e5801aea6007df0378043a76d278b5847597c2cb
SHA256aace117af966a727f0a3e52a3e7bbef374ac89d6443f8fbc614d16a8d78d21b6
SHA512e4ce2ebf1ace24094d960e961813adeefe3cdf8b879ce110c8969c399f8c8dbbb40e9e538141ff910527ee255ae3eca399699e7d15bbdd8bfc9aa61a2d5ebd41
-
Filesize
512B
MD5ac509124bb135d1229e08783b3439ae2
SHA1b778a2816db5bc85311cc0ec0566c4522361499d
SHA256ad6003c4bf004b10f90e1cb811defe72fed6c954c83827a8c47e997d5569a573
SHA512de5fc0754d33cd63f261a1cc23b8b9ad5690fbdbf2d6c49711b7ca89ae9d8c3064747285f833c8693067aba27f0e7f7369642e41e3e40dc0f703df3db1900471
-
Filesize
28KB
MD54a15478864a6e8dacca02d968af9c1d4
SHA1fa80104045eef91471768a4e88fd531d2304abe5
SHA256d1823436cd44ae0b15e394f1601cac4e27c568b229aadffcca6a6323a01c25ed
SHA512b7c99e888b7e788fa4f20acfc3e73d7ad1d38f9029174c5e5aecbbf9092e3d72675b7bfe00b38ae1aff8712d4564448c627eafb161d5cbd9bfcbb6b44690d0fc