Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

call.php

android-9-x86

call.php

android-10-x64

call.php

android-11-x64

Resubmissions

26/10/2022, 11:52 UTC

221026-n1v7bsfec8 1

26/10/2022, 11:51 UTC

221026-n1gzpsfec7 3

Analysis

  • max time network
    8s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    26/10/2022, 11:52 UTC

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Payload did not run: unable to install sample: Exception occurred while executing 'install': java.lang.IllegalArgumentException: Error: Failed to parse APK file: call.php: Failed to parse call.php at com.android.server.pm.PackageManagerShellCommand.setParamsSize(PackageManagerShellCommand.java:528) at com.android.server.pm.PackageManagerShellCommand.doRunInstall(PackageManagerShellCommand.java:1282) at com.android.server.pm.PackageManagerShellCommand.runInstall(PackageManagerShellCommand.java:1248) at com.android.server.pm.PackageManagerShellCommand.onCommand(PackageManagerShellCommand.java:184) at android.os.BasicShellCommandHandler.exec(BasicShellCommandHandler.java:98) at android.os.ShellCommand.exec(ShellCommand.java:44) at com.android.server.pm.PackageManagerService.onShellCommand(PackageManagerService.java:21646) at android.os.Binder.shellCommand(Binder.java:929) at android.os.Binder.onTransact(Binder.java:813) at android.content.pm.IPackageManager$Stub.onTransact(IPackageManager.java:4603) at com.android.server.pm.PackageManagerService.onTransact(PackageManagerService.java:4305) at android.os.Binder.execTransactInternal(Binder.java:1159) at android.os.Binder.execTransact(Binder.java:1123) Caused by: java.io.IOException: Failed to load asset path call.php from fd 333 at android.content.res.ApkAssets.nativeLoadFd(Native Method) at android.content.res.ApkAssets.<init>(ApkAssets.java:302) at android.content.res.ApkAssets.loadFromFd(ApkAssets.java:173) at android.content.pm.parsing.ApkLiteParseUtils.parseApkLiteInner(ApkLiteParseUtils.java:238) at android.content.pm.parsing.ApkLiteParseUtils.parseApkLite(ApkLiteParseUtils.java:226) at com.android.server.pm.PackageManagerShellCommand.setParamsSize(PackageManagerShellCommand.java:522) ... 12 more
Report Analysis Logs

General

  • Target

    call.php

  • Size

    4B

  • MD5

    08f90c1a417155361a5c4b8d297e0d78

  • SHA1

    a4ac914c09d7c097fe1f4f96b897e625b6922069

  • SHA256

    81a83544cf93c245178cbc1620030f1123f435af867c79d87135983c52ab39d9

  • SHA512

    57acf66b146e4f606413e8707ffae882a5ea0228de3455c8efffd439f6ef1a2a04eec109d2879bf64c1d7e05cdd808a14db5c5b0f6a4ccf758d0c998058b53cd

Score
1/10

Malware Config

Signatures

Processes

Network

  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.179.142
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    216.58.208.110
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    216.58.214.14
  • flag-nl
    GET
    http://play.googleapis.com/generate_204
    Remote address:
    172.217.168.202:80
    Request
    GET /generate_204 HTTP/1.1
    Connection: close
    User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.32 Safari/537.36
    Host: play.googleapis.com
    Accept-Encoding: gzip
    Response
    HTTP/1.1 204 No Content
    Content-Length: 0
    Cross-Origin-Resource-Policy: cross-origin
    Date: Wed, 26 Oct 2022 11:52:37 GMT
    Connection: close
  • 216.58.214.14:443
    android.apis.google.com
    tls
    867 B
     4.6kB
     6
    5
  • 142.250.179.142:443
    android.apis.google.com
    tls
    919 B
     4.6kB
     7
    5
  • 216.58.208.110:443
    android.apis.google.com
    tls
    919 B
     4.5kB
     7
    4
  • 172.217.168.226:443
    208 B
     4
  • 142.251.39.102:443
    208 B
     4
  • 172.217.168.202:80
    http://play.googleapis.com/generate_204
    http
    485 B
     414 B
     5
    5

    HTTP Request

    GET http://play.googleapis.com/generate_204

    HTTP Response

    204
  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.179.142

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    216.58.208.110

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    216.58.214.14

  • 224.0.0.251:5353
    1.7kB
     6

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.