Malware Analysis Report

2025-01-19 07:48

Sample ID 240611-yfc55ayfpg
Target http://start.duckduckgo.com
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

Threat Level: No (potentially) malicious behavior was detected

The file http://start.duckduckgo.com was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Checks CPU information

Checks memory information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-11 19:43

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-11 19:43

Reported

2024-06-11 19:45

Platform

android-33-x64-arm64-20240611.1-en

Max time kernel

82s

Max time network

74s

Command Line

com.android.chrome

Signatures

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

Network

Country Destination Domain Proto
GB 172.217.169.68:443 udp
GB 172.217.169.68:443 tcp
GB 142.250.179.228:443 tcp
GB 216.58.204.74:443 tcp
N/A 224.0.0.251:5353 udp
GB 216.58.204.74:443 udp
GB 142.250.187.234:443 tcp
US 172.64.41.3:443 tcp
US 162.159.61.3:443 tcp
US 162.159.61.3:443 tcp
GB 142.250.180.10:443 udp
IE 52.142.124.215:80 tcp
IE 52.142.124.215:443 improving.duckduckgo.com tcp
IE 52.142.124.215:443 start.duckduckgo.com tcp
US 172.64.41.3:443 udp
US 172.64.41.3:443 tcp
GB 142.250.200.3:443 update.googleapis.com tcp
GB 142.250.200.3:443 udp

Files

files/dom-0.html

MD5 38171195483bf279b4957020697d7c46
SHA1 06b0adccf1e04e2f3c578fe02098822bb26bcba5
SHA256 f96e6e6fa6c71a0a6e0911b166c69ea50d20b895ce604c2aff5d8352a568b72a
SHA512 054fc091f15d3db9d3f3c7bc3f0b861f963ca368f9ae8697ad62b73e474edaef0c8e92935030ccfad21d48332f0d1d3bae0220cf919154943dd90ff7a39c36d8