Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
3s -
max time network
143s -
platform
android_x86 -
resource
android-x86-arm-20240514-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system -
submitted
03/06/2024, 12:13 UTC
Static task
static1
Behavioral task
behavioral1
Sample
FHT.apk
Resource
android-x86-arm-20240514-en
Behavioral task
behavioral2
Sample
FHT.apk
Resource
android-x64-20240514-en
Behavioral task
behavioral3
Sample
FHT.apk
Resource
android-x64-arm64-20240514-en
General
-
Target
FHT.apk
-
Size
146KB
-
MD5
49c6108814c8f85656626162a6410666
-
SHA1
0f876f5417bf44b15274457be51767afcd723940
-
SHA256
3a91425f70a404ae70e1e7b3edc725296fd6a35c4d99499042b2a5199484f974
-
SHA512
58cc4836399355e955f90c79e036a6ad4a1da419bbf4d2ddac7e8f9a595e92c137c8d787321dffb56cee2c2d3e6f694acd913604cd8bb10cf4ff506dc92485bf
-
SSDEEP
1536:LjNu9N5EqXELsvkHvSn2wv6EjgJPQEbTdogvrJcxrPDRSDQPx+VIx:3EhLysvkHfLE8PQ6ogvNcxLDRSDQZ+O
Malware Config
Signatures
-
pid Process 4212 org.chromium.webapk.aad130ee8c100c93a_v2
Processes
Network
-
Remote address:1.1.1.1:53Requestdigitalassetlinks.googleapis.comIN AResponsedigitalassetlinks.googleapis.comIN A142.250.187.234digitalassetlinks.googleapis.comIN A142.250.187.202digitalassetlinks.googleapis.comIN A172.217.16.234digitalassetlinks.googleapis.comIN A142.250.200.10digitalassetlinks.googleapis.comIN A142.250.200.42digitalassetlinks.googleapis.comIN A216.58.201.106digitalassetlinks.googleapis.comIN A216.58.204.74digitalassetlinks.googleapis.comIN A172.217.169.10digitalassetlinks.googleapis.comIN A142.250.180.10digitalassetlinks.googleapis.comIN A172.217.169.74digitalassetlinks.googleapis.comIN A216.58.212.234digitalassetlinks.googleapis.comIN A142.250.178.10digitalassetlinks.googleapis.comIN A216.58.212.202digitalassetlinks.googleapis.comIN A172.217.169.42digitalassetlinks.googleapis.comIN A142.250.179.234digitalassetlinks.googleapis.comIN A216.58.213.10
-
Remote address:1.1.1.1:53Requestfederatedhermes.w2app.meIN AResponsefederatedhermes.w2app.meIN A104.21.30.120federatedhermes.w2app.meIN A172.67.172.229
-
Remote address:1.1.1.1:53Requests.w2s.appIN AResponses.w2s.appIN A104.21.88.139s.w2s.appIN A172.67.180.24
-
Remote address:1.1.1.1:53Requestsafebrowsing.googleapis.comIN AResponsesafebrowsing.googleapis.comIN A142.250.187.202
-
Remote address:1.1.1.1:53Requestfederetodhaemesx.comIN AResponsefederetodhaemesx.comIN CNAMEsite.speedscdn.comsite.speedscdn.comIN A104.18.21.48site.speedscdn.comIN A104.18.20.48
-
Remote address:1.1.1.1:53Requeststatic.w2.appIN AResponsestatic.w2.appIN A172.67.25.105static.w2.appIN A104.22.29.157static.w2.appIN A104.22.28.157
-
Remote address:1.1.1.1:53Requestwww.google.comIN AResponsewww.google.comIN A142.250.187.228
-
Remote address:1.1.1.1:53Requestupdate.googleapis.comIN AResponseupdate.googleapis.comIN A142.250.187.195
-
Remote address:1.1.1.1:53RequestrgmmxinfmxybwIN AResponse
-
Remote address:1.1.1.1:53RequestnhnbjkkmncIN AResponse
-
Remote address:1.1.1.1:53RequestmqnmuyvrgidueIN AResponse
-
Remote address:1.1.1.1:53Requestandroid.apis.google.comIN AResponseandroid.apis.google.comIN CNAMEclients.l.google.comclients.l.google.comIN A142.250.187.206
-
145 B 40 B 1 1
-
2.6kB 7.7kB 17 18
-
792 B 5.9kB 9 9
-
4.0kB 30.6kB 50 48
-
6.0kB 380.4kB 98 272
-
1.3kB 6.5kB 12 11
-
3.2kB 80.4kB 39 75
-
1.7kB 19.3kB 18 23
-
1.4kB 6.4kB 13 16
-
2.7kB 8.0kB 10 14
-
858 B 40 B 1 1
-
858 B 40 B 1 1
-
5.6kB 8.7kB 16 23
-
3.7kB 11
-
78 B 334 B 1 1
DNS Request
digitalassetlinks.googleapis.com
DNS Response
142.250.187.234142.250.187.202172.217.16.234142.250.200.10142.250.200.42216.58.201.106216.58.204.74172.217.169.10142.250.180.10172.217.169.74216.58.212.234142.250.178.10216.58.212.202172.217.169.42142.250.179.234216.58.213.10
-
70 B 102 B 1 1
DNS Request
federatedhermes.w2app.me
DNS Response
104.21.30.120172.67.172.229
-
55 B 87 B 1 1
DNS Request
s.w2s.app
DNS Response
104.21.88.139172.67.180.24
-
73 B 89 B 1 1
DNS Request
safebrowsing.googleapis.com
DNS Response
142.250.187.202
-
66 B 127 B 1 1
DNS Request
federetodhaemesx.com
DNS Response
104.18.21.48104.18.20.48
-
59 B 107 B 1 1
DNS Request
static.w2.app
DNS Response
172.67.25.105104.22.29.157104.22.28.157
-
60 B 76 B 1 1
DNS Request
www.google.com
DNS Response
142.250.187.228
-
67 B 83 B 1 1
DNS Request
update.googleapis.com
DNS Response
142.250.187.195
-
59 B 134 B 1 1
DNS Request
rgmmxinfmxybw
-
56 B 131 B 1 1
DNS Request
nhnbjkkmnc
-
59 B 134 B 1 1
DNS Request
mqnmuyvrgidue
-
69 B 109 B 1 1
DNS Request
android.apis.google.com
DNS Response
142.250.187.206