Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

VIDEOCHAT.apk

android-9-x86

7

VIDEOCHAT.apk

android-10-x64

1

VIDEOCHAT.apk

android-11-x64

7

Resubmissions

01/10/2023, 18:58 UTC

231001-xmyjzace5w 7

01/10/2023, 18:54 UTC

231001-xkpt2seb23 7

Analysis

  • max time kernel
    3969646s
  • max time network
    1806s
  • platform
    android_x86
  • resource
    android-x86-arm-20230831-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20230831-enlocale:en-usos:android-9-x86system
  • submitted
    01/10/2023, 18:58 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VIDEOCHAT.apk

  • Size

    6.4MB

  • MD5

    196b46848db12e230bec33fed821e3d8

  • SHA1

    481c102cb86ca8646c9e63a62174989f49bc69f4

  • SHA256

    05f0fe316bb26e50a642891e20e6d0adba53704d8dd18f74affd6a6e4b129e05

  • SHA512

    5d3b3326592b7d534defc778aca07c996e53066645a56fcafed8cfc18ed4584b745e0fe9d5aaef36afac8f48de99e8b316a6260d46563801d01e20875272d53d

  • SSDEEP

    98304:W6wzx7EX8uGlQvsBhScOVXKYJl4ZCLeHErQfvPQnofmcxJatAxG3K/vtyg2k+wjo:W9xQXHGmvRZykrQ3PaMxAGh/vtyAo

Score
7/10
evasioninfostealer

Malware Config

Signatures

  • Acquires the wake lock. 1 IoCs
  • Reads the content of SMS inbox messages. 1 IoCs
    infostealer
  • Removes a system notification. 1 IoCs
    evasion

Processes

  • com.software.app
    1⤵
    • Acquires the wake lock.
    • Reads the content of SMS inbox messages.
    • Removes a system notification.
    PID:4174
    • sh
      2⤵
        PID:4205

    Network

    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
      Response
      infinitedata-pa.googleapis.com
      IN A
      172.217.168.234
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.202
      infinitedata-pa.googleapis.com
      IN A
      172.217.23.202
      infinitedata-pa.googleapis.com
      IN A
      172.217.168.202
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.170
      infinitedata-pa.googleapis.com
      IN A
      142.251.36.10
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.138
      infinitedata-pa.googleapis.com
      IN A
      142.251.39.106
      infinitedata-pa.googleapis.com
      IN A
      142.251.36.42
    • flag-us
      DNS
      semanticlocation-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      semanticlocation-pa.googleapis.com
      IN A
      Response
      semanticlocation-pa.googleapis.com
      IN A
      142.250.179.170
      semanticlocation-pa.googleapis.com
      IN A
      216.58.214.10
      semanticlocation-pa.googleapis.com
      IN A
      142.250.179.138
      semanticlocation-pa.googleapis.com
      IN A
      172.217.23.202
      semanticlocation-pa.googleapis.com
      IN A
      172.217.168.234
      semanticlocation-pa.googleapis.com
      IN A
      172.217.168.202
      semanticlocation-pa.googleapis.com
      IN A
      142.251.36.42
      semanticlocation-pa.googleapis.com
      IN A
      142.251.39.106
      semanticlocation-pa.googleapis.com
      IN A
      142.250.179.202
      semanticlocation-pa.googleapis.com
      IN A
      142.251.36.10
    • flag-us
      DNS
      android.apis.google.com
      Remote address:
      1.1.1.1:53
      Request
      android.apis.google.com
      IN A
      Response
      android.apis.google.com
      IN CNAME
      clients.l.google.com
      clients.l.google.com
      IN A
      142.251.39.110
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
    • flag-us
      DNS
      android.apis.google.com
      Remote address:
      1.1.1.1:53
      Request
      android.apis.google.com
      IN A
      Response
      android.apis.google.com
      IN CNAME
      clients.l.google.com
      clients.l.google.com
      IN A
      142.251.36.46
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
      Response
      infinitedata-pa.googleapis.com
      IN A
      142.251.39.106
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.202
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.138
      infinitedata-pa.googleapis.com
      IN A
      172.217.168.202
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.170
      infinitedata-pa.googleapis.com
      IN A
      142.251.36.10
      infinitedata-pa.googleapis.com
      IN A
      172.217.23.202
      infinitedata-pa.googleapis.com
      IN A
      216.58.208.106
      infinitedata-pa.googleapis.com
      IN A
      142.251.36.42
    • flag-us
      DNS
      infinitedata-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      infinitedata-pa.googleapis.com
      IN A
      Response
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.202
      infinitedata-pa.googleapis.com
      IN A
      216.58.208.106
      infinitedata-pa.googleapis.com
      IN A
      216.58.214.10
      infinitedata-pa.googleapis.com
      IN A
      172.217.23.202
      infinitedata-pa.googleapis.com
      IN A
      142.251.36.42
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.170
      infinitedata-pa.googleapis.com
      IN A
      142.250.179.138
      infinitedata-pa.googleapis.com
      IN A
      142.251.36.10
      infinitedata-pa.googleapis.com
      IN A
      142.251.39.106
    • flag-us
      DNS
      android.apis.google.com
      Remote address:
      1.1.1.1:53
      Request
      android.apis.google.com
      IN A
      Response
      android.apis.google.com
      IN CNAME
      clients.l.google.com
      clients.l.google.com
      IN A
      216.58.208.110
    • flag-us
      DNS
      alt2-mtalk.google.com
      Remote address:
      1.1.1.1:53
      Request
      alt2-mtalk.google.com
      IN A
    • flag-us
      DNS
      alt2-mtalk.google.com
      Remote address:
      1.1.1.1:53
      Request
      alt2-mtalk.google.com
      IN A
    • flag-us
      DNS
      alt2-mtalk.google.com
      Remote address:
      1.1.1.1:53
      Request
      alt2-mtalk.google.com
      IN A
    • flag-us
      DNS
      alt2-mtalk.google.com
      Remote address:
      1.1.1.1:53
      Request
      alt2-mtalk.google.com
      IN A
    • flag-us
      DNS
      alt4-mtalk.google.com
      Remote address:
      1.1.1.1:53
      Request
      alt4-mtalk.google.com
      IN A
      Response
      alt4-mtalk.google.com
      IN CNAME
      alt4.mobile-gtalk4.l.google.com
      alt4.mobile-gtalk4.l.google.com
      IN A
      142.250.157.188
    • 142.250.179.138:443
      semanticlocation-pa.googleapis.com
      tls, https
      888 B
       40 B
       1
      1
    • 142.250.179.142:443
      tls, https
      858 B
       40 B
       1
      1
    • 142.251.39.110:443
      android.apis.google.com
      tls
      4.7kB
       8.6kB
       15
      22
    • 142.251.36.35:80
      520 B
       10
    • 172.217.168.228:443
      tls
      135 B
       40 B
       2
      1
    • 142.250.179.194:443
      tls
      135 B
       40 B
       2
      1
    • 142.250.179.163:443
      tls
      135 B
       40 B
       2
      1
    • 142.251.36.14:443
      tls
      135 B
       40 B
       2
      1
    • 142.250.179.163:443
      tls
      135 B
       40 B
       2
      1
    • 142.251.36.14:443
      tls
      135 B
       40 B
       2
      1
    • 142.250.179.163:443
      tls
      135 B
       40 B
       2
      1
    • 142.250.179.163:443
      tls
      135 B
       40 B
       2
      1
    • 142.251.36.46:443
      android.apis.google.com
      tls
      1.9kB
       6.0kB
       9
      10
    • 142.251.39.106:443
      infinitedata-pa.googleapis.com
      tls
      1.3kB
       923 B
       11
      11
    • 216.58.208.110:443
      android.apis.google.com
      tls
      1.9kB
       6.1kB
       10
      11
    • 142.250.102.188:5228
      tls
      80 B
       40 B
       1
      1
    • 142.250.157.188:443
      alt4-mtalk.google.com
      tls
      1.5kB
       7.9kB
       9
      10
    • 216.58.208.110:443
      android.apis.google.com
      364 B
       7
    • 224.0.0.251:5353
      3.7kB
       11
    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      76 B
       220 B
       1
      1

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Response

      172.217.168.234
      142.250.179.202
      172.217.23.202
      172.217.168.202
      142.250.179.170
      142.251.36.10
      142.250.179.138
      142.251.39.106
      142.251.36.42

    • 1.1.1.1:53
      semanticlocation-pa.googleapis.com
      dns
      80 B
       240 B
       1
      1

      DNS Request

      semanticlocation-pa.googleapis.com

      DNS Response

      142.250.179.170
      216.58.214.10
      142.250.179.138
      172.217.23.202
      172.217.168.234
      172.217.168.202
      142.251.36.42
      142.251.39.106
      142.250.179.202
      142.251.36.10

    • 1.1.1.1:53
      android.apis.google.com
      dns
      69 B
       109 B
       1
      1

      DNS Request

      android.apis.google.com

      DNS Response

      142.251.39.110

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      152 B
       2

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Request

      infinitedata-pa.googleapis.com

    • 1.1.1.1:53
      android.apis.google.com
      dns
      69 B
       109 B
       1
      1

      DNS Request

      android.apis.google.com

      DNS Response

      142.251.36.46

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      76 B
       220 B
       1
      1

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Response

      142.251.39.106
      142.250.179.202
      142.250.179.138
      172.217.168.202
      142.250.179.170
      142.251.36.10
      172.217.23.202
      216.58.208.106
      142.251.36.42

    • 1.1.1.1:53
      infinitedata-pa.googleapis.com
      dns
      76 B
       220 B
       1
      1

      DNS Request

      infinitedata-pa.googleapis.com

      DNS Response

      142.250.179.202
      216.58.208.106
      216.58.214.10
      172.217.23.202
      142.251.36.42
      142.250.179.170
      142.250.179.138
      142.251.36.10
      142.251.39.106

    • 1.1.1.1:53
      android.apis.google.com
      dns
      69 B
       109 B
       1
      1

      DNS Request

      android.apis.google.com

      DNS Response

      216.58.208.110

    • 1.1.1.1:53
      alt2-mtalk.google.com
      dns
      134 B
       2

      DNS Request

      alt2-mtalk.google.com

      DNS Request

      alt2-mtalk.google.com

    • 1.1.1.1:53
      alt2-mtalk.google.com
      dns
      134 B
       2

      DNS Request

      alt2-mtalk.google.com

      DNS Request

      alt2-mtalk.google.com

    • 1.1.1.1:53
      alt4-mtalk.google.com
      dns
      67 B
       118 B
       1
      1

      DNS Request

      alt4-mtalk.google.com

      DNS Response

      142.250.157.188

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.