Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

1

URLScan

urlscan

1

https://myqrcode.mob...

windows10-2004-x64

1

https://myqrcode.mob...

android-9-x86

5

https://myqrcode.mob...

android-10-x64

5

https://myqrcode.mob...

android-11-x64

5

Analysis

  • max time kernel
    1610975s
  • max time network
    151s
  • platform
    android_x64
  • resource
    android-x64-20231023.1-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231023.1-enlocale:en-usos:android-10-x64system
  • submitted
    24/10/2023, 04:48 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://myqrcode.mobi/6501d11b

Score
5/10
evasion

Malware Config

Signatures

  • Removes a system notification. 1 IoCs
    evasion

Processes

  • com.android.chrome
    1⤵
    • Removes a system notification.
    PID:4894

Network

  • flag-us
    DNS
    accounts.google.com
    Remote address:
    1.1.1.1:53
    Request
    accounts.google.com
    IN A
  • flag-us
    DNS
    accounts.google.com
    Remote address:
    1.1.1.1:53
    Request
    accounts.google.com
    IN A
    Response
    accounts.google.com
    IN A
    142.251.36.13
  • flag-us
    DNS
    myqrcode.mobi
    Remote address:
    1.1.1.1:53
    Request
    myqrcode.mobi
    IN A
    Response
    myqrcode.mobi
    IN A
    172.67.161.151
    myqrcode.mobi
    IN A
    104.21.65.96
  • flag-us
    DNS
    api.myqrcode.com
    Remote address:
    1.1.1.1:53
    Request
    api.myqrcode.com
    IN A
  • flag-us
    DNS
    safebrowsing.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    safebrowsing.googleapis.com
    IN A
  • flag-us
    DNS
    safebrowsing.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    safebrowsing.googleapis.com
    IN A
  • flag-us
    DNS
    ssl.google-analytics.com
    Remote address:
    1.1.1.1:53
    Request
    ssl.google-analytics.com
    IN A
    Response
    ssl.google-analytics.com
    IN A
    142.250.179.200
  • flag-us
    DNS
    api.myqrcode.com
    Remote address:
    1.1.1.1:53
    Request
    api.myqrcode.com
    IN A
    Response
    api.myqrcode.com
    IN A
    104.22.74.64
    api.myqrcode.com
    IN A
    172.67.10.213
    api.myqrcode.com
    IN A
    104.22.75.64
  • flag-us
    DNS
    myqrcode.com
    Remote address:
    1.1.1.1:53
    Request
    myqrcode.com
    IN A
  • flag-us
    DNS
    myqrcode.com
    Remote address:
    1.1.1.1:53
    Request
    myqrcode.com
    IN A
  • flag-us
    DNS
    myqrcode.com
    Remote address:
    1.1.1.1:53
    Request
    myqrcode.com
    IN A
    Response
    myqrcode.com
    IN A
    104.22.75.64
    myqrcode.com
    IN A
    104.22.74.64
    myqrcode.com
    IN A
    172.67.10.213
  • flag-us
    DNS
    polyfill.io
    Remote address:
    1.1.1.1:53
    Request
    polyfill.io
    IN A
  • flag-us
    DNS
    bat.bing.com
    Remote address:
    1.1.1.1:53
    Request
    bat.bing.com
    IN A
  • flag-us
    DNS
    in.hotjar.com
    Remote address:
    1.1.1.1:53
    Request
    in.hotjar.com
    IN A
    Response
    in.hotjar.com
    IN CNAME
    in-live.live.eks.hotjar.com
    in-live.live.eks.hotjar.com
    IN A
    63.35.24.173
    in-live.live.eks.hotjar.com
    IN A
    63.34.49.204
    in-live.live.eks.hotjar.com
    IN A
    54.229.9.13
  • flag-us
    DNS
    update.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    update.googleapis.com
    IN A
  • flag-us
    DNS
    update.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    update.googleapis.com
    IN A
  • flag-us
    DNS
    polyfill.io
    Remote address:
    1.1.1.1:53
    Request
    polyfill.io
    IN A
  • flag-us
    DNS
    prntyew
    Remote address:
    1.1.1.1:53
    Request
    prntyew
    IN A
    Response
  • flag-us
    DNS
    vouigldai
    Remote address:
    1.1.1.1:53
    Request
    vouigldai
    IN A
    Response
  • flag-us
    DNS
    riorvtrygpcjql
    Remote address:
    1.1.1.1:53
    Request
    riorvtrygpcjql
    IN A
    Response
  • flag-us
    DNS
    bat.bing.com
    Remote address:
    1.1.1.1:53
    Request
    bat.bing.com
    IN A
  • flag-us
    DNS
    polyfill.io
    Remote address:
    1.1.1.1:53
    Request
    polyfill.io
    IN A
    Response
    polyfill.io
    IN A
    151.101.1.26
    polyfill.io
    IN A
    151.101.129.26
    polyfill.io
    IN A
    151.101.193.26
    polyfill.io
    IN A
    151.101.65.26
  • flag-us
    DNS
    bat.bing.com
    Remote address:
    1.1.1.1:53
    Request
    bat.bing.com
    IN A
    Response
    bat.bing.com
    IN CNAME
    bat-bing-com.a-0001.a-msedge.net
    bat-bing-com.a-0001.a-msedge.net
    IN CNAME
    dual-a-0001.a-msedge.net
    dual-a-0001.a-msedge.net
    IN A
    204.79.197.200
    dual-a-0001.a-msedge.net
    IN A
    13.107.21.200
  • flag-us
    DNS
    region1.google-analytics.com
    Remote address:
    1.1.1.1:53
    Request
    region1.google-analytics.com
    IN A
    Response
    region1.google-analytics.com
    IN A
    216.239.32.36
    region1.google-analytics.com
    IN A
    216.239.34.36
  • flag-us
    DNS
    script.hotjar.com
    Remote address:
    1.1.1.1:53
    Request
    script.hotjar.com
    IN A
  • flag-us
    DNS
    script.hotjar.com
    Remote address:
    1.1.1.1:53
    Request
    script.hotjar.com
    IN A
  • flag-us
    DNS
    o4505917564256256.ingest.sentry.io
    Remote address:
    1.1.1.1:53
    Request
    o4505917564256256.ingest.sentry.io
    IN A
  • flag-us
    DNS
    static.hotjar.com
    Remote address:
    1.1.1.1:53
    Request
    static.hotjar.com
    IN A
    Response
    static.hotjar.com
    IN CNAME
    static-cdn.hotjar.com
    static-cdn.hotjar.com
    IN A
    108.156.60.77
    static-cdn.hotjar.com
    IN A
    108.156.60.88
    static-cdn.hotjar.com
    IN A
    108.156.60.37
    static-cdn.hotjar.com
    IN A
    108.156.60.58
  • flag-us
    DNS
    unpkg.com
    Remote address:
    1.1.1.1:53
    Request
    unpkg.com
    IN A
    Response
    unpkg.com
    IN A
    104.16.125.175
    unpkg.com
    IN A
    104.16.122.175
    unpkg.com
    IN A
    104.16.123.175
    unpkg.com
    IN A
    104.16.126.175
    unpkg.com
    IN A
    104.16.124.175
  • flag-us
    DNS
    safebrowsing.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    safebrowsing.googleapis.com
    IN A
    Response
    safebrowsing.googleapis.com
    IN A
    142.251.36.42
  • flag-us
    DNS
    stats.g.doubleclick.net
    Remote address:
    1.1.1.1:53
    Request
    stats.g.doubleclick.net
    IN A
    Response
    stats.g.doubleclick.net
    IN A
    142.250.27.155
    stats.g.doubleclick.net
    IN A
    142.250.27.154
    stats.g.doubleclick.net
    IN A
    142.250.27.157
    stats.g.doubleclick.net
    IN A
    142.250.27.156
  • flag-us
    DNS
    o4505917564256256.ingest.sentry.io
    Remote address:
    1.1.1.1:53
    Request
    o4505917564256256.ingest.sentry.io
    IN A
  • flag-us
    DNS
    msofilee.online
    Remote address:
    1.1.1.1:53
    Request
    msofilee.online
    IN A
    Response
    msofilee.online
    IN A
    172.67.157.169
    msofilee.online
    IN A
    104.21.14.28
  • flag-us
    DNS
    a.nel.cloudflare.com
    Remote address:
    1.1.1.1:53
    Request
    a.nel.cloudflare.com
    IN A
    Response
    a.nel.cloudflare.com
    IN A
    35.190.80.1
  • flag-us
    DNS
    analytics.google.com
    Remote address:
    1.1.1.1:53
    Request
    analytics.google.com
    IN A
  • flag-us
    DNS
    googleads.g.doubleclick.net
    Remote address:
    1.1.1.1:53
    Request
    googleads.g.doubleclick.net
    IN A
    Response
    googleads.g.doubleclick.net
    IN A
    142.250.179.194
  • flag-us
    DNS
    www.clarity.ms
    Remote address:
    1.1.1.1:53
    Request
    www.clarity.ms
    IN A
    Response
    www.clarity.ms
    IN CNAME
    clarity.azurefd.net
    clarity.azurefd.net
    IN CNAME
    star-azurefd-prod.trafficmanager.net
    star-azurefd-prod.trafficmanager.net
    IN CNAME
    dual.part-0039.t-0009.t-msedge.net
    dual.part-0039.t-0009.t-msedge.net
    IN CNAME
    part-0039.t-0009.t-msedge.net
    part-0039.t-0009.t-msedge.net
    IN A
    13.107.246.67
    part-0039.t-0009.t-msedge.net
    IN A
    13.107.213.67
  • flag-us
    DNS
    script.hotjar.com
    Remote address:
    1.1.1.1:53
    Request
    script.hotjar.com
    IN A
    Response
    script.hotjar.com
    IN A
    18.65.39.52
    script.hotjar.com
    IN A
    18.65.39.37
    script.hotjar.com
    IN A
    18.65.39.5
    script.hotjar.com
    IN A
    18.65.39.84
  • flag-us
    DNS
    vc.hotjar.io
    Remote address:
    1.1.1.1:53
    Request
    vc.hotjar.io
    IN A
    Response
    vc.hotjar.io
    IN CNAME
    vc-live-cf.hotjar.io
    vc-live-cf.hotjar.io
    IN A
    18.239.36.114
    vc-live-cf.hotjar.io
    IN A
    18.239.36.44
    vc-live-cf.hotjar.io
    IN A
    18.239.36.120
    vc-live-cf.hotjar.io
    IN A
    18.239.36.61
  • flag-us
    DNS
    challenges.cloudflare.com
    Remote address:
    1.1.1.1:53
    Request
    challenges.cloudflare.com
    IN A
    Response
    challenges.cloudflare.com
    IN A
    104.17.2.184
    challenges.cloudflare.com
    IN A
    104.17.3.184
  • flag-us
    DNS
    analytics.google.com
    Remote address:
    1.1.1.1:53
    Request
    analytics.google.com
    IN A
    Response
    analytics.google.com
    IN CNAME
    analytics-alv.google.com
    analytics-alv.google.com
    IN A
    216.239.32.181
    analytics-alv.google.com
    IN A
    216.239.36.181
    analytics-alv.google.com
    IN A
    216.239.38.181
    analytics-alv.google.com
    IN A
    216.239.34.181
  • flag-us
    DNS
    o4505917564256256.ingest.sentry.io
    Remote address:
    1.1.1.1:53
    Request
    o4505917564256256.ingest.sentry.io
    IN A
    Response
    o4505917564256256.ingest.sentry.io
    IN A
    34.120.195.249
  • flag-us
    DNS
    update.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    update.googleapis.com
    IN A
  • flag-us
    DNS
    update.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    update.googleapis.com
    IN A
  • 142.250.179.174:443
    tls, https
    911 B
     40 B
     1
    1
  • 142.251.36.13:443
    accounts.google.com
    tls
    1.7kB
     7.4kB
     13
    13
  • 172.67.161.151:443
    myqrcode.mobi
    tls
    1.6kB
     5.2kB
     12
    8
  • 172.67.161.151:443
    myqrcode.mobi
    tls
    953 B
     4.4kB
     7
    4
  • 142.250.179.200:443
    ssl.google-analytics.com
    tls
    1.3kB
     5.7kB
     9
    6
  • 104.22.74.64:443
    api.myqrcode.com
    tls
    5.5kB
     283.8kB
     66
    98
  • 151.101.1.26:443
    polyfill.io
    tls
    1.9kB
     53.9kB
     17
    18
  • 104.22.74.64:443
    api.myqrcode.com
    tls
    1.8kB
     31.7kB
     15
    16
  • 108.156.60.77:443
    static.hotjar.com
    tls
    1.7kB
     9.9kB
     14
    11
  • 204.79.197.200:443
    bat.bing.com
    tls
    2.8kB
     24.4kB
     24
    25
  • 104.16.125.175:443
    unpkg.com
    tls
    1.9kB
     6.9kB
     15
    14
  • 142.251.36.42:443
    safebrowsing.googleapis.com
    tls
    3.2kB
     378.2kB
     44
    79
  • 142.250.27.155:443
    stats.g.doubleclick.net
    tls
    2.1kB
     6.6kB
     15
    16
  • 172.67.157.169:443
    msofilee.online
    tls
    16.6kB
     121.8kB
     105
    114
  • 35.190.80.1:443
    a.nel.cloudflare.com
    tls
    6.2kB
     6.7kB
     25
    20
  • 142.250.179.194:443
    googleads.g.doubleclick.net
    tls
    2.4kB
     9.9kB
     15
    18
  • 13.107.246.67:443
    www.clarity.ms
    tls
    1.6kB
     7.5kB
     12
    13
  • 18.65.39.52:443
    script.hotjar.com
    tls
    2.1kB
     63.4kB
     22
    23
  • 104.17.2.184:443
    challenges.cloudflare.com
    tls
    1.8kB
     15.3kB
     15
    14
  • 216.239.32.181:443
    analytics.google.com
    tls
    2.2kB
     8.5kB
     12
    12
  • 216.239.32.181:443
    analytics.google.com
    tls
    1.0kB
     7.7kB
     9
    6
  • 104.17.2.184:443
    challenges.cloudflare.com
    tls
    65.9kB
     291.2kB
     124
    139
  • 34.120.195.249:443
    o4505917564256256.ingest.sentry.io
    tls
    27.4kB
     6.2kB
     18
    26
  • 34.120.195.249:443
    o4505917564256256.ingest.sentry.io
    tls
    981 B
     4.3kB
     8
    5
  • 224.0.0.251:5353
    3.7kB
     11
  • 1.1.1.1:53
    accounts.google.com
    dns
    65 B
     1

    DNS Request

    accounts.google.com

  • 1.1.1.1:53
    accounts.google.com
    dns
    65 B
     81 B
     1
    1

    DNS Request

    accounts.google.com

    DNS Response

    142.251.36.13

  • 1.1.1.1:53
    myqrcode.mobi
    dns
    59 B
     91 B
     1
    1

    DNS Request

    myqrcode.mobi

    DNS Response

    172.67.161.151
    104.21.65.96

  • 1.1.1.1:53
    api.myqrcode.com
    dns
    62 B
     1

    DNS Request

    api.myqrcode.com

  • 1.1.1.1:53
    safebrowsing.googleapis.com
    dns
    146 B
     2

    DNS Request

    safebrowsing.googleapis.com

    DNS Request

    safebrowsing.googleapis.com

  • 1.1.1.1:53
    ssl.google-analytics.com
    dns
    70 B
     86 B
     1
    1

    DNS Request

    ssl.google-analytics.com

    DNS Response

    142.250.179.200

  • 1.1.1.1:53
    api.myqrcode.com
    dns
    62 B
     110 B
     1
    1

    DNS Request

    api.myqrcode.com

    DNS Response

    104.22.74.64
    172.67.10.213
    104.22.75.64

  • 1.1.1.1:53
    myqrcode.com
    dns
    58 B
     1

    DNS Request

    myqrcode.com

  • 1.1.1.1:53
    myqrcode.com
    dns
    58 B
     1

    DNS Request

    myqrcode.com

  • 1.1.1.1:53
    myqrcode.com
    dns
    58 B
     106 B
     1
    1

    DNS Request

    myqrcode.com

    DNS Response

    104.22.75.64
    104.22.74.64
    172.67.10.213

  • 1.1.1.1:53
    polyfill.io
    dns
    57 B
     1

    DNS Request

    polyfill.io

  • 1.1.1.1:53
    bat.bing.com
    dns
    58 B
     1

    DNS Request

    bat.bing.com

  • 1.1.1.1:53
    in.hotjar.com
    dns
    59 B
     138 B
     1
    1

    DNS Request

    in.hotjar.com

    DNS Response

    63.35.24.173
    63.34.49.204
    54.229.9.13

  • 1.1.1.1:53
    update.googleapis.com
    dns
    134 B
     2

    DNS Request

    update.googleapis.com

    DNS Request

    update.googleapis.com

  • 1.1.1.1:53
    polyfill.io
    dns
    57 B
     1

    DNS Request

    polyfill.io

  • 1.1.1.1:53
    prntyew
    dns
    53 B
     128 B
     1
    1

    DNS Request

    prntyew

  • 1.1.1.1:53
    vouigldai
    dns
    55 B
     130 B
     1
    1

    DNS Request

    vouigldai

  • 1.1.1.1:53
    riorvtrygpcjql
    dns
    60 B
     135 B
     1
    1

    DNS Request

    riorvtrygpcjql

  • 1.1.1.1:53
    bat.bing.com
    dns
    58 B
     1

    DNS Request

    bat.bing.com

  • 1.1.1.1:53
    polyfill.io
    dns
    57 B
     121 B
     1
    1

    DNS Request

    polyfill.io

    DNS Response

    151.101.1.26
    151.101.129.26
    151.101.193.26
    151.101.65.26

  • 1.1.1.1:53
    bat.bing.com
    dns
    58 B
     162 B
     1
    1

    DNS Request

    bat.bing.com

    DNS Response

    204.79.197.200
    13.107.21.200

  • 1.1.1.1:53
    region1.google-analytics.com
    dns
    74 B
     106 B
     1
    1

    DNS Request

    region1.google-analytics.com

    DNS Response

    216.239.32.36
    216.239.34.36

  • 1.1.1.1:53
    script.hotjar.com
    dns
    63 B
     1

    DNS Request

    script.hotjar.com

  • 1.1.1.1:53
    script.hotjar.com
    dns
    63 B
     1

    DNS Request

    script.hotjar.com

  • 1.1.1.1:53
    o4505917564256256.ingest.sentry.io
    dns
    80 B
     1

    DNS Request

    o4505917564256256.ingest.sentry.io

  • 1.1.1.1:53
    static.hotjar.com
    dns
    63 B
     152 B
     1
    1

    DNS Request

    static.hotjar.com

    DNS Response

    108.156.60.77
    108.156.60.88
    108.156.60.37
    108.156.60.58

  • 1.1.1.1:53
    unpkg.com
    dns
    55 B
     135 B
     1
    1

    DNS Request

    unpkg.com

    DNS Response

    104.16.125.175
    104.16.122.175
    104.16.123.175
    104.16.126.175
    104.16.124.175

  • 1.1.1.1:53
    safebrowsing.googleapis.com
    dns
    73 B
     89 B
     1
    1

    DNS Request

    safebrowsing.googleapis.com

    DNS Response

    142.251.36.42

  • 1.1.1.1:53
    stats.g.doubleclick.net
    dns
    69 B
     133 B
     1
    1

    DNS Request

    stats.g.doubleclick.net

    DNS Response

    142.250.27.155
    142.250.27.154
    142.250.27.157
    142.250.27.156

  • 1.1.1.1:53
    o4505917564256256.ingest.sentry.io
    dns
    80 B
     1

    DNS Request

    o4505917564256256.ingest.sentry.io

  • 1.1.1.1:53
    msofilee.online
    dns
    61 B
     93 B
     1
    1

    DNS Request

    msofilee.online

    DNS Response

    172.67.157.169
    104.21.14.28

  • 1.1.1.1:53
    a.nel.cloudflare.com
    dns
    66 B
     82 B
     1
    1

    DNS Request

    a.nel.cloudflare.com

    DNS Response

    35.190.80.1

  • 1.1.1.1:53
    analytics.google.com
    dns
    66 B
     1

    DNS Request

    analytics.google.com

  • 1.1.1.1:53
    googleads.g.doubleclick.net
    dns
    73 B
     89 B
     1
    1

    DNS Request

    googleads.g.doubleclick.net

    DNS Response

    142.250.179.194

  • 1.1.1.1:53
    www.clarity.ms
    dns
    60 B
     231 B
     1
    1

    DNS Request

    www.clarity.ms

    DNS Response

    13.107.246.67
    13.107.213.67

  • 1.1.1.1:53
    script.hotjar.com
    dns
    63 B
     127 B
     1
    1

    DNS Request

    script.hotjar.com

    DNS Response

    18.65.39.52
    18.65.39.37
    18.65.39.5
    18.65.39.84

  • 1.1.1.1:53
    vc.hotjar.io
    dns
    58 B
     147 B
     1
    1

    DNS Request

    vc.hotjar.io

    DNS Response

    18.239.36.114
    18.239.36.44
    18.239.36.120
    18.239.36.61

  • 1.1.1.1:53
    challenges.cloudflare.com
    dns
    71 B
     103 B
     1
    1

    DNS Request

    challenges.cloudflare.com

    DNS Response

    104.17.2.184
    104.17.3.184

  • 1.1.1.1:53
    analytics.google.com
    dns
    66 B
     158 B
     1
    1

    DNS Request

    analytics.google.com

    DNS Response

    216.239.32.181
    216.239.36.181
    216.239.38.181
    216.239.34.181

  • 1.1.1.1:53
    o4505917564256256.ingest.sentry.io
    dns
    80 B
     96 B
     1
    1

    DNS Request

    o4505917564256256.ingest.sentry.io

    DNS Response

    34.120.195.249

  • 1.1.1.1:53
    update.googleapis.com
    dns
    134 B
     2

    DNS Request

    update.googleapis.com

    DNS Request

    update.googleapis.com

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.