Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

7acb6b3f93...12.apk

android-9-x86

5

Analysis

  • max time kernel
    68s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    27/01/2024, 17:03 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7acb6b3f9313a27508e9b8af034c8912.apk

  • Size

    7.3MB

  • MD5

    7acb6b3f9313a27508e9b8af034c8912

  • SHA1

    1298807b459bd43e10b0fda50451d23e566b307f

  • SHA256

    821c2543cf8b0c4745cdb73a538f158d10229aed8e5ad8613df9543b37041cee

  • SHA512

    c8e56ceccab04ca357164c8cd598b0d96e761d07fc1d2ee58a204c21d4ec05ccb98f3d2bba7f8eb9a360309496fc3ba503a19e3e90c1d1794a99be0ea00f0a72

  • SSDEEP

    196608:SmG3IJcfHvD5MfLIzEI0rhfoHEnVaWzAgduxY+6QZjAbYvYLEB7soBxwrlWYnFAr:SmOIJemGNqhfoHABv/QZ0bQjB7sGxUl2

Score
5/10
evasion

Malware Config

Signatures

  • Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
    evasion

Processes

  • com.trinitigame.callofminiandroid
    1⤵
    • Listens for changes in the sensor environment (might be used to detect emulation)
    PID:4249

Network

  • flag-us
    DNS
    www.chartboost.com
    Remote address:
    1.1.1.1:53
    Request
    www.chartboost.com
    IN A
    Response
    www.chartboost.com
    IN A
    18.245.187.112
    www.chartboost.com
    IN A
    18.245.187.44
    www.chartboost.com
    IN A
    18.245.187.47
    www.chartboost.com
    IN A
    18.245.187.92
  • flag-gb
    POST
    https://www.chartboost.com/api/install
    Remote address:
    18.245.187.112:443
    Request
    POST /api/install HTTP/1.1
    Content-Type: application/json; charset=UTF-8
    Accept: application/json; charset=UTF-8
    X-Chartboost-Client: Chartboost-Android-SDK 3.1.3
    X-Chartboost-API: 3.1.3
    X-Chartboost-App: 50e696ab17ba47463c000000
    X-Chartboost-Signature: 9d1e0f28e1c6d6d3dae40090930539dd2fe6c4ff
    Content-Length: 411
    Host: www.chartboost.com
    Connection: Keep-Alive
    Response
    HTTP/1.1 200 OK
    Content-Type: application/json;charset=utf-8
    Content-Length: 52
    Connection: keep-alive
    x-lb-host: 10.195.0.2
    x-lb-server: 10.195.0.25
    x-lb-backend: adserver_bootupworker
    Date: Sat, 27 Jan 2024 17:04:03 GMT
    Via: 1.1 google, 1.1 09d66a46843a76f292a34e56082575f0.cloudfront.net (CloudFront)
    X-Cache: Miss from cloudfront
    X-Amz-Cf-Pop: LHR5-P3
    X-Amz-Cf-Id: HXihIUClFt7NsI9PRUoPOW2j0gPHAK9P6U3cbqyJUbREL7qgJIgkVw==
  • flag-gb
    POST
    https://www.chartboost.com/api/get
    Remote address:
    18.245.187.112:443
    Request
    POST /api/get HTTP/1.1
    Content-Type: application/json; charset=UTF-8
    Accept: application/json; charset=UTF-8
    X-Chartboost-Client: Chartboost-Android-SDK 3.1.3
    X-Chartboost-API: 3.1.3
    X-Chartboost-App: 50e696ab17ba47463c000000
    X-Chartboost-Signature: a9d1391892db3f63409fff6f48a9ccb7bec5a8d0
    Content-Length: 444
    Host: www.chartboost.com
    Connection: Keep-Alive
    Response
    HTTP/1.1 200 OK
    Content-Type: application/json;charset=utf-8
    Content-Length: 63
    Connection: keep-alive
    x-lb-host: 10.195.0.47
    x-lb-server: 10.195.1.211
    x-lb-backend: sdk-adget
    Date: Sat, 27 Jan 2024 17:04:03 GMT
    Via: 1.1 google, 1.1 09d66a46843a76f292a34e56082575f0.cloudfront.net (CloudFront)
    X-Cache: Miss from cloudfront
    X-Amz-Cf-Pop: LHR5-P3
    X-Amz-Cf-Id: zqEs0HSX1HMaDR5x-3jfYRReiBpS9BxaYyNblBIvfs560urmKOWEpg==
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.179.238
  • flag-us
    DNS
    semanticlocation-pa.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    semanticlocation-pa.googleapis.com
    IN A
    Response
    semanticlocation-pa.googleapis.com
    IN A
    216.58.204.74
    semanticlocation-pa.googleapis.com
    IN A
    142.250.180.10
    semanticlocation-pa.googleapis.com
    IN A
    216.58.213.10
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.42
    semanticlocation-pa.googleapis.com
    IN A
    142.250.200.42
    semanticlocation-pa.googleapis.com
    IN A
    142.250.178.10
    semanticlocation-pa.googleapis.com
    IN A
    216.58.201.106
    semanticlocation-pa.googleapis.com
    IN A
    216.58.212.234
    semanticlocation-pa.googleapis.com
    IN A
    142.250.200.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.179.234
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.187.202
    semanticlocation-pa.googleapis.com
    IN A
    172.217.16.234
    semanticlocation-pa.googleapis.com
    IN A
    142.250.187.234
  • 18.245.187.112:443
    https://www.chartboost.com/api/get
    tls, http
    2.8kB
     7.7kB
     15
    14

    HTTP Request

    POST https://www.chartboost.com/api/install

    HTTP Response

    200

    HTTP Request

    POST https://www.chartboost.com/api/get

    HTTP Response

    200
  • 142.250.200.46:443
    tls, https
    858 B
     40 B
     1
    1
  • 142.250.179.238:443
    android.apis.google.com
    tls
    4.7kB
     8.8kB
     14
    23
  • 216.58.204.74:443
    semanticlocation-pa.googleapis.com
    tls
    1.7kB
     6.2kB
     11
    12
  • 224.0.0.251:5353
    3.7kB
     11
  • 1.1.1.1:53
    www.chartboost.com
    dns
    64 B
     128 B
     1
    1

    DNS Request

    www.chartboost.com

    DNS Response

    18.245.187.112
    18.245.187.44
    18.245.187.47
    18.245.187.92

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.179.238

  • 1.1.1.1:53
    semanticlocation-pa.googleapis.com
    dns
    80 B
     304 B
     1
    1

    DNS Request

    semanticlocation-pa.googleapis.com

    DNS Response

    216.58.204.74
    142.250.180.10
    216.58.213.10
    172.217.169.42
    142.250.200.42
    142.250.178.10
    216.58.201.106
    216.58.212.234
    142.250.200.10
    142.250.179.234
    172.217.169.10
    142.250.187.202
    172.217.16.234
    142.250.187.234

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /storage/emulated/0/Android/data/com.trinitigame.callofminiandroid/files/CallMini_New.save
    Filesize

    1KB

    MD5

    e51e5f25e7fb3da1744395578040cda3

    SHA1

    d92ba20392f8f551e7e34f5e5fb0c7e2bcd6017e

    SHA256

    9a54ae4594332fb3c4cb9fc14000baaabc19d65fdac5395ef5dfb269ff1be103

    SHA512

    7c19e8d861ffae48e8054abc8d6103ae8b3e7751310134ae304cbb9e3f63d9c975074b78a6309a1e31284458826e8d11f29033c94398f1fe135be5c4cdcc2f01

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.