Analysis Overview
score
1/10
Threat Level: No (potentially) malicious behavior was detected
The file https://tria.ge/dashboard was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Checks CPU information
Checks memory information
MITRE ATT&CK Matrix
N/A
Analysis: static1
Detonation Overview
Reported
2024-06-13 22:41
Signatures
N/A
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 22:41
Reported
2024-06-13 22:43
Platform
android-x64-arm64-20240611.1-en
Max time kernel
63s
Max time network
70s
Command Line
com.android.chrome
Signatures
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.android.chrome
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.200.10:443 | tcp | |
| GB | 142.250.200.10:443 | tcp | |
| US | 1.1.1.1:53 | tria.ge | udp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| US | 1.1.1.1:53 | tria.ge | udp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| US | 1.1.1.1:53 | tria.ge | udp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 74.125.206.84:443 | accounts.google.com | tcp |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| US | 1.1.1.1:53 | tria.ge | udp |
| US | 1.1.1.1:53 | www.google.com | udp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 216.58.204.67:443 | update.googleapis.com | tcp |
| US | 1.1.1.1:53 | roobet.com | udp |
| GB | 142.250.200.40:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | roobet.com | udp |
| NL | 154.61.71.12:443 | tria.ge | tcp |
| NL | 154.61.71.12:443 | tria.ge | tcp |
| US | 1.1.1.1:53 | roobet.com | udp |
| US | 104.18.39.87:80 | roobet.com | tcp |
| US | 104.18.39.87:80 | roobet.com | tcp |
| US | 104.18.39.87:443 | roobet.com | tcp |
| US | 1.1.1.1:53 | cdn.seondf.com | udp |
| US | 1.1.1.1:53 | static.paymentiq.io | udp |
| US | 1.1.1.1:53 | static.cloudflareinsights.com | udp |
| US | 1.1.1.1:53 | 2b4a9aa5-31c9-4186-a6c3-0f53d37328dd.snippet.antillephone.com | udp |
| US | 1.1.1.1:53 | b6fbd907-6224-495b-891d-cd23b3e29488.seals-xcm.certria.com | udp |
| GB | 18.165.201.54:443 | static.paymentiq.io | tcp |
| US | 1.1.1.1:53 | api.roobet.com | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| GB | 13.224.132.54:443 | b6fbd907-6224-495b-891d-cd23b3e29488.seals-xcm.certria.com | tcp |
| GB | 18.244.155.14:443 | 2b4a9aa5-31c9-4186-a6c3-0f53d37328dd.snippet.antillephone.com | tcp |
| GB | 18.165.201.54:443 | static.paymentiq.io | tcp |
| US | 1.1.1.1:53 | js.adsrvr.org | udp |
| GB | 99.86.116.119:443 | js.adsrvr.org | tcp |
| US | 1.1.1.1:53 | cdn.seondf.com | udp |
| US | 104.21.95.212:443 | cdn.seondf.com | tcp |
| US | 1.1.1.1:53 | api.roobet.com | udp |
| US | 172.64.148.169:443 | api.roobet.com | tcp |
| US | 172.64.148.169:443 | api.roobet.com | tcp |
| US | 1.1.1.1:53 | region1.analytics.google.com | udp |
| US | 1.1.1.1:53 | stats.g.doubleclick.net | udp |
| US | 1.1.1.1:53 | www.google.co.uk | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
| BE | 142.251.173.154:443 | stats.g.doubleclick.net | tcp |
| GB | 142.250.180.3:443 | www.google.co.uk | tcp |
| GB | 142.250.187.238:443 | tcp | |
| US | 1.1.1.1:53 | region1.google-analytics.com | udp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| US | 1.1.1.1:53 | static.hotjar.com | udp |
| US | 1.1.1.1:53 | cloudflareinsights.com | udp |
| US | 104.18.39.87:443 | api.roobet.com | tcp |
| US | 1.1.1.1:53 | insight.adsrvr.org | udp |
| US | 3.33.220.150:443 | insight.adsrvr.org | tcp |
| US | 1.1.1.1:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 104.18.39.87:443 | api.roobet.com | tcp |
| US | 1.1.1.1:53 | static.hotjar.com | udp |
| GB | 13.224.245.87:443 | static.hotjar.com | tcp |
| US | 1.1.1.1:53 | widget.intercom.io | udp |
| GB | 18.244.114.16:443 | widget.intercom.io | tcp |
| US | 1.1.1.1:53 | clients1.google.com | udp |
| US | 1.1.1.1:53 | script.hotjar.com | udp |
| GB | 18.245.253.99:443 | script.hotjar.com | tcp |
| US | 1.1.1.1:53 | 8ab2f4df08f1616dca7cc2f7be46ffe1f5922f0aae96c3f5491501232887539.seondfresolver.com | udp |
| GB | 18.245.218.9:443 | 8ab2f4df08f1616dca7cc2f7be46ffe1f5922f0aae96c3f5491501232887539.seondfresolver.com | tcp |
| US | 1.1.1.1:53 | js.intercomcdn.com | udp |
| GB | 18.165.227.95:443 | js.intercomcdn.com | tcp |
| GB | 18.165.227.95:443 | js.intercomcdn.com | tcp |
| US | 1.1.1.1:53 | vc.hotjar.io | udp |
| DE | 18.66.112.19:443 | vc.hotjar.io | tcp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | stun.l.google.com | udp |
| US | 1.1.1.1:53 | stun.services.mozilla.com | udp |
| US | 1.1.1.1:53 | stun.services.mozilla.com | udp |
| US | 1.1.1.1:53 | api-iam.intercom.io | udp |
| US | 34.206.193.69:443 | api-iam.intercom.io | tcp |
| US | 74.125.250.129:19302 | stun.l.google.com | udp |
| US | 1.1.1.1:53 | nexus-websocket-a.intercom.io | udp |
| US | 1.1.1.1:53 | nexus-websocket-a.intercom.io | udp |
| US | 34.237.73.95:443 | nexus-websocket-a.intercom.io | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | roobet.fun | udp |
| US | 172.67.163.49:443 | roobet.fun | tcp |
| US | 172.67.163.49:443 | roobet.fun | tcp |
| US | 1.1.1.1:53 | cdnjs.cloudflare.com | udp |
| GB | 142.250.179.228:443 | tcp | |
| GB | 142.250.179.228:443 | tcp | |
| US | 1.1.1.1:53 | s2.adform.net | udp |
| DK | 37.157.5.73:443 | s2.adform.net | tcp |
| US | 1.1.1.1:53 | a2.adform.net | udp |
| US | 185.167.164.39:443 | a2.adform.net | tcp |
| US | 1.1.1.1:53 | static.xx.fbcdn.net | udp |
| GB | 157.240.214.11:443 | static.xx.fbcdn.net | tcp |
Files
files/dom-0.html
| MD5 | cecb649cb1fb79c3736936fcbef3bbf2 |
| SHA1 | 2c95183d7d2b0cd68d15b3c4115189351fc08720 |
| SHA256 | 09bda72e7c32a69e3268e0ebd8caa33684cbc954dd00c7d93a38830e348ef324 |
| SHA512 | b8aca3cf0ea838093bd29b70ead608597260b0e35886d491d17c304878f99510fd885d96a191080acb5b706a642253bd9cbe5065ff234472b048fcce282061de |
files/dom-1.html
| MD5 | 25460b0559d0645d2b0252d2211b3448 |
| SHA1 | 8e1ccdf90eb43050d1ce5cb96ee4b7a8747e212c |
| SHA256 | 993cdad6a8710e3c38fccd221950896574711843d362e04cf1b7527537e9eabc |
| SHA512 | f88757199823128c5ed5ea56ec78f446419b50bdba78225c49af366ecface9f43b75818af676eb4558552c5ebcb807d8f49cf93481063d78699917238eee6951 |