Malware Analysis Report

2024-10-18 22:18

Sample ID 240429-vmfytafg79
Target image_2024-04-29_200718730.png
SHA256 fb126da6e4a88a809fd7651f51b47ecd6f54beef8c20dc21761b0354c4e4c9b6
Tags
qr link
score
3/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
3/10

SHA256

fb126da6e4a88a809fd7651f51b47ecd6f54beef8c20dc21761b0354c4e4c9b6

Threat Level: Likely benign

The file image_2024-04-29_200718730.png was found to be: Likely benign.

Malicious Activity Summary

qr link

One or more HTTP URLs in qr code identified

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-04-29 17:06

Signatures

One or more HTTP URLs in qr code identified

qr link

Analysis: behavioral1

Detonation Overview

Submitted

2024-04-29 17:06

Reported

2024-04-29 17:06

Platform

android-33-x64-arm64-20240229-en

Max time network

6s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.200.4:443 udp
BE 173.194.76.188:5228 tcp
GB 142.250.200.4:443 tcp
GB 142.250.200.4:443 tcp
GB 142.250.200.36:443 tcp
GB 142.250.187.234:80 play.googleapis.com tcp
N/A 224.0.0.251:5353 udp
GB 142.250.200.36:443 tcp
GB 216.58.212.234:80 play.googleapis.com tcp

Files

N/A