Malware Analysis Report

2025-01-19 07:54

Sample ID 240610-lc2yvsfg72
Target https://google.com
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

Threat Level: No (potentially) malicious behavior was detected

The file https://google.com was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Checks CPU information

Checks memory information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-10 09:24

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-10 09:24

Reported

2024-06-10 09:28

Platform

android-x64-20240603-en

Max time kernel

117s

Max time network

179s

Command Line

com.android.chrome

Signatures

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 accounts.google.com udp
BE 173.194.76.84:443 accounts.google.com tcp
US 1.1.1.1:53 google.com udp
GB 172.217.169.46:443 google.com tcp
GB 172.217.169.46:443 google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.187.228:443 www.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.201.104:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 clients1.google.com udp
GB 142.250.200.46:443 clients1.google.com tcp
US 1.1.1.1:53 apis.google.com udp
GB 216.58.204.78:443 apis.google.com tcp
GB 142.250.180.10:443 tcp
US 1.1.1.1:53 play.google.com udp
GB 142.250.178.14:443 play.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
US 1.1.1.1:53 semanticlocation-pa.googleapis.com udp
GB 172.217.16.228:443 tcp
GB 172.217.16.228:443 tcp
GB 142.250.180.10:443 semanticlocation-pa.googleapis.com tcp
GB 216.58.204.78:443 apis.google.com tcp
GB 142.250.200.2:443 tcp
GB 172.217.169.78:443 tcp

Files

files/dom-0.html

MD5 7a69efdbc64e89beccbc67600c662b52
SHA1 331b12ff8b58ddaaeb660c5d4a37ce04ec5c9ce9
SHA256 dc055ef20601b69aed9f06636b0c07ac4968c3396fb90895cc579dfa92d15356
SHA512 3ffca9ba58a1269905c9a4d40404d086b423c6cc7015171697e00db9cc109c3d47072cfba4a4f8b108b648aef5dc038c0040809e1a7a688b94e74176d9eea2be