Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ac1861c29584c3b667fdbb740d0da940a322d0d780985f0b5a14eccf94aeac27

  • Size

    9.7MB

  • MD5

    b331ca7a3673c0c657245e23f4229359

  • SHA1

    eff7e2392eca29930a2d2f3ab07edf3c954d9282

  • SHA256

    ac1861c29584c3b667fdbb740d0da940a322d0d780985f0b5a14eccf94aeac27

  • SHA512

    bb5a1c1d40e527bad04ef5b4a117378f2484c7c49891bc5f7bca2c8d1e3a18fab87e0c089b30b403bfceeb20d02134d341602b025d8dee6c2ccdf73cdc1ee4b9

  • SSDEEP

    98304:oFXuTJ3UaIzVKHJ5K3XG5iSRGrjS3hrcRsHxX6u7FArXeOsh2hWpS8JeF4j+PIcW:95AUpY3XGrp2R8ol3rKd

Score
6/10

Malware Config

Signatures

  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 35 IoCs

Files

  • ac1861c29584c3b667fdbb740d0da940a322d0d780985f0b5a14eccf94aeac27
    .apk android arch:x64 arch:arm arch:x86 arch:arm64

    com.userver_wifi16

    com.userver_wifi16.arn8iLS


Android Permissions

ac1861c29584c3b667fdbb740d0da940a322d0d780985f0b5a14eccf94aeac27

Permissions

android.permission.READ_MEDIA_VISUAL_USER_SELECTED

com.gpsmapcamera.geotagginglocationonphoto.permission.C2D_MESSAGE

android.permission.USE_FULL_SCREEN_INTENT

android.permission.ACCESS_ADSERVICES_AD_ID

android.permission.POST_NOTIFICATIONS

android.permission.MANAGE_OWN_CALLS

android.permission.BLUETOOTH

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACTION_MANAGE_OVERLAY_PERMISSION

android.permission.RECEIVE_BOOT_COMPLETED

me.everything.badger.permission.BADGE_COUNT_READ

com.htc.launcher.permission.UPDATE_SHORTCUT

android.permission.WAKE_LOCK

android.permission.RECEIVE_SMS

android.permission.QUERY_ALL_PACKAGES

me.everything.badger.permission.BADGE_COUNT_WRITE

android.permission.MODIFY_AUDIO_SETTINGS

android.provider.Telephony.SMS_RECEIVED

android.permission.ACCESS_FINE_LOCATION

android.permission.FLAG_SHOW_WHEN_LOCKED

android.permission.FOREGROUND_SERVICE

android.permission.READ_PHONE_NUMBERS

com.google.android.c2dm.permission.RECEIVE

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_COARSE_LOCATION

android.permission.RECEIVE_MMS

android.permission.READ_PHONE_STATE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_MEDIA_IMAGES

android.permission.RECEIVE_BOOT_COMPLETED

com.sonyericsson.home.permission.BROADCAST_BADGE

com.oppo.launcher.permission.READ_SETTINGS

android.permission.READ_MEDIA_VISUAL_USER_SELECTED

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_SMS

android.permission.INTERNET

android.permission.WRITE_SETTINGS

android.permission.ACCESS_ADSERVICES_TOPICS

android.permission.ACCESS_MEDIA_LOCATION

com.android.vending.BILLING

com.anddoes.launcher.permission.UPDATE_COUNT

android.permission.READ_MEDIA_IMAGES

com.google.android.gms.permission.AD_ID

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.FLASHLIGHT

com.majeur.launcher.permission.UPDATE_BADGE

android.permission.FOREGROUND_SERVICE

com.google.android.apps.photos.permission.GOOGLE_PHOTOS

android.permission.CALL_PHONE