Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

TalkU 6.1....m).zip

windows7-x64

1

TalkU 6.1....m).zip

windows10-2004-x64

1

base.apk

android-9-x86

7

base.apk

android-10-x64

7

base.apk

android-11-x64

7

split_conf...8a.apk

android-11-x64

split_conf...pi.apk

android-9-x86

split_conf...pi.apk

android-10-x64

split_conf...pi.apk

android-11-x64

Resubmissions

12/03/2023, 04:06 UTC

230312-epbtwacf46 7

12/03/2023, 04:02 UTC

230312-elsm8aef3s 7

Analysis

  • max time kernel
    144s
  • max time network
    129s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/03/2023, 04:06 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    TalkU 6.1.3 (me.talkyou.app.im).zip

  • Size

    58.7MB

  • MD5

    1c7136d745dc7ba6498ecec3664b2c7d

  • SHA1

    8cb8c9ceb867b7e331c75fd8c1d11bac5a4f5f97

  • SHA256

    8d8b49b10b4e906bf52d1405d5266d660422566fdb13371126d33bc62c365fd2

  • SHA512

    b58da7da394188741be77808aa3d7eb9a1057b8db2db9d18772f7079dcca4828f8159babe804bf5960a15a1181292e927d22808cc66fa179d4c84d4e3813d133

  • SSDEEP

    786432:2EZ+tvdtuTvdNYHZ7r4FS61tPHUt46k6lyRNFvhHIBPiWtkv:2EZ+ZyTFNY5Xs1FUShfK5U

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\Explorer.exe
    C:\Windows\Explorer.exe /idlist,,"C:\Users\Admin\AppData\Local\Temp\TalkU 6.1.3 (me.talkyou.app.im).zip"
    1⤵
      PID:3604

    Network

    • flag-us
      DNS
      126.129.241.8.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      126.129.241.8.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      123.108.74.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      123.108.74.40.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      76.38.195.152.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      76.38.195.152.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      210.81.184.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      210.81.184.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      228.249.119.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      228.249.119.40.in-addr.arpa
      IN PTR
    • flag-us
      DNS
      228.249.119.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      228.249.119.40.in-addr.arpa
      IN PTR
    • flag-us
      DNS
      228.249.119.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      228.249.119.40.in-addr.arpa
      IN PTR
    • flag-us
      DNS
      228.249.119.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      228.249.119.40.in-addr.arpa
      IN PTR
    • flag-us
      DNS
      228.249.119.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      228.249.119.40.in-addr.arpa
      IN PTR
    • flag-us
      DNS
      210.81.184.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      210.81.184.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      103.169.127.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      103.169.127.40.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      0.77.109.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      0.77.109.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      199.176.139.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      199.176.139.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      234.238.32.23.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      234.238.32.23.in-addr.arpa
      IN PTR
      Response
      234.238.32.23.in-addr.arpa
      IN PTR
      a23-32-238-234deploystaticakamaitechnologiescom
    • 117.18.232.240:80
      322 B
       7
    • 117.18.232.240:80
      322 B
       7
    • 117.18.232.240:80
      322 B
       7
    • 52.152.110.14:443
      260 B
       5
    • 13.69.239.74:443
      322 B
       7
    • 173.223.113.164:443
      322 B
       7
    • 173.223.113.131:80
      322 B
       7
    • 131.253.33.203:80
      322 B
       7
    • 8.8.8.8:53
      126.129.241.8.in-addr.arpa
      dns
      72 B
       126 B
       1
      1

      DNS Request

      126.129.241.8.in-addr.arpa

    • 8.8.8.8:53
      123.108.74.40.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      123.108.74.40.in-addr.arpa

    • 8.8.8.8:53
      76.38.195.152.in-addr.arpa
      dns
      72 B
       143 B
       1
      1

      DNS Request

      76.38.195.152.in-addr.arpa

    • 8.8.8.8:53
      210.81.184.52.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      210.81.184.52.in-addr.arpa

    • 8.8.8.8:53
      228.249.119.40.in-addr.arpa
      dns
      365 B
       5

      DNS Request

      228.249.119.40.in-addr.arpa

      DNS Request

      228.249.119.40.in-addr.arpa

      DNS Request

      228.249.119.40.in-addr.arpa

      DNS Request

      228.249.119.40.in-addr.arpa

      DNS Request

      228.249.119.40.in-addr.arpa

    • 8.8.8.8:53
      210.81.184.52.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      210.81.184.52.in-addr.arpa

    • 8.8.8.8:53
      103.169.127.40.in-addr.arpa
      dns
      73 B
       147 B
       1
      1

      DNS Request

      103.169.127.40.in-addr.arpa

    • 8.8.8.8:53
      0.77.109.52.in-addr.arpa
      dns
      70 B
       144 B
       1
      1

      DNS Request

      0.77.109.52.in-addr.arpa

    • 8.8.8.8:53
      199.176.139.52.in-addr.arpa
      dns
      73 B
       159 B
       1
      1

      DNS Request

      199.176.139.52.in-addr.arpa

    • 8.8.8.8:53
      234.238.32.23.in-addr.arpa
      dns
      72 B
       137 B
       1
      1

      DNS Request

      234.238.32.23.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.