Analysis Overview
score
1/10
Threat Level: No (potentially) malicious behavior was detected
The file http://youtube.com was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Checks CPU information
Checks memory information
MITRE ATT&CK Matrix
N/A
Analysis: static1
Detonation Overview
Reported
2024-06-13 13:39
Signatures
N/A
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 13:39
Reported
2024-06-13 14:10
Platform
android-x86-arm-20240611.1-en
Max time kernel
1817s
Max time network
1832s
Command Line
com.android.chrome
Signatures
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.android.chrome
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | youtube.com | udp |
| GB | 142.250.200.14:80 | youtube.com | tcp |
| GB | 142.250.200.14:80 | youtube.com | tcp |
| GB | 142.250.200.14:443 | youtube.com | tcp |
| US | 1.1.1.1:53 | www.youtube.com | udp |
| US | 1.1.1.1:53 | m.youtube.com | udp |
| GB | 216.58.201.110:443 | m.youtube.com | tcp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 66.102.1.84:443 | accounts.google.com | tcp |
| US | 1.1.1.1:53 | gstatic.com | udp |
| GB | 142.250.178.3:443 | gstatic.com | tcp |
| US | 1.1.1.1:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | tcp |
| US | 1.1.1.1:53 | jnn-pa.googleapis.com | udp |
| US | 1.1.1.1:53 | static.doubleclick.net | udp |
| GB | 142.250.180.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.178.6:443 | static.doubleclick.net | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 142.250.187.195:443 | update.googleapis.com | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.200.4:443 | www.google.com | tcp |
| GB | 142.250.200.4:443 | www.google.com | tcp |
| GB | 216.58.212.238:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 216.58.201.110:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | consent.google.com | udp |
| GB | 142.250.200.46:443 | consent.google.com | tcp |
| US | 1.1.1.1:53 | i.ytimg.com | udp |
| GB | 216.58.213.22:443 | i.ytimg.com | tcp |
| US | 1.1.1.1:53 | en.akinator.com | udp |
| IE | 52.211.212.103:443 | en.akinator.com | tcp |
| US | 1.1.1.1:53 | cdn.appconsent.io | udp |
| US | 35.227.209.167:443 | cdn.appconsent.io | tcp |
| US | 1.1.1.1:53 | www.ezojs.com | udp |
| US | 104.21.63.106:443 | www.ezojs.com | tcp |
| US | 104.21.63.106:443 | www.ezojs.com | tcp |
| US | 1.1.1.1:53 | ecdn.firstimpression.io | udp |
| GB | 18.244.179.69:443 | ecdn.firstimpression.io | tcp |
| US | 1.1.1.1:53 | collector.appconsent.io | udp |
| US | 34.98.113.213:443 | collector.appconsent.io | tcp |
| US | 1.1.1.1:53 | widgets.outbrain.com | udp |
| GB | 2.23.205.148:443 | widgets.outbrain.com | tcp |
| US | 34.98.113.213:443 | collector.appconsent.io | tcp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | tcp |
| US | 1.1.1.1:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 1.1.1.1:53 | cdn.firstimpression.io | udp |
| GB | 18.244.179.8:443 | cdn.firstimpression.io | tcp |
| US | 1.1.1.1:53 | go.ezodn.com | udp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 1.1.1.1:53 | secure.quantserve.com | udp |
| DE | 91.228.74.244:443 | secure.quantserve.com | tcp |
| US | 1.1.1.1:53 | audience-static.sfbx-okube.com | udp |
| US | 1.1.1.1:53 | dx.frontend.weborama.com | udp |
| US | 1.1.1.1:53 | cstatic.weborama.fr | udp |
| US | 152.199.22.228:443 | cstatic.weborama.fr | tcp |
| US | 34.111.205.194:443 | dx.frontend.weborama.com | tcp |
| IE | 18.200.41.22:443 | audience-static.sfbx-okube.com | tcp |
| US | 1.1.1.1:53 | rules.quantcount.com | udp |
| GB | 18.245.187.126:443 | rules.quantcount.com | tcp |
| US | 1.1.1.1:53 | rd.frontend.weborama.fr | udp |
| US | 35.190.24.218:443 | rd.frontend.weborama.fr | tcp |
| US | 1.1.1.1:53 | pixel.quantserve.com | udp |
| US | 1.1.1.1:53 | photos.clarinea.fr | udp |
| US | 104.26.4.179:443 | photos.clarinea.fr | tcp |
| US | 1.1.1.1:53 | en.akinator.com | udp |
| US | 1.1.1.1:53 | rd.frontend.weborama.fr | udp |
| US | 1.1.1.1:53 | dx.frontend.weborama.com | udp |
| US | 1.1.1.1:53 | widgets.outbrain.com | udp |
| US | 1.1.1.1:53 | ecdn.firstimpression.io | udp |
| US | 1.1.1.1:53 | audience-static.sfbx-okube.com | udp |
| IE | 18.200.41.22:443 | audience-static.sfbx-okube.com | tcp |
| IE | 34.242.249.162:443 | en.akinator.com | tcp |
| IE | 34.242.249.162:443 | en.akinator.com | tcp |
| IE | 34.242.249.162:443 | en.akinator.com | tcp |
| IE | 34.242.249.162:443 | en.akinator.com | tcp |
| US | 1.1.1.1:53 | pixel.quantserve.com | udp |
| DE | 91.228.74.159:443 | pixel.quantserve.com | tcp |
| GB | 142.250.179.227:80 | tcp | |
| GB | 172.217.169.68:443 | tcp | |
| GB | 142.250.200.2:443 | tcp | |
| US | 1.1.1.1:53 | en.akinator.com | udp |
| US | 1.1.1.1:53 | rd.frontend.weborama.fr | udp |
| US | 1.1.1.1:53 | dx.frontend.weborama.com | udp |
| US | 1.1.1.1:53 | www.ezojs.com | udp |
| US | 1.1.1.1:53 | ecdn.firstimpression.io | udp |
| US | 1.1.1.1:53 | audience-static.sfbx-okube.com | udp |
| US | 1.1.1.1:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.238:443 | www.youtube.com | tcp |
| GB | 172.217.16.238:443 | www.youtube.com | tcp |
| US | 1.1.1.1:53 | pixel.quantserve.com | udp |
| DE | 91.228.74.244:443 | pixel.quantserve.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 216.58.213.3:443 | update.googleapis.com | tcp |
| US | 1.1.1.1:53 | en.akinator.com | udp |
| IE | 52.211.212.103:443 | en.akinator.com | tcp |
| US | 1.1.1.1:53 | rd.frontend.weborama.fr | udp |
| US | 1.1.1.1:53 | dx.frontend.weborama.com | udp |
| US | 1.1.1.1:53 | www.ezojs.com | udp |
| US | 1.1.1.1:53 | cdn.appconsent.io | udp |
| US | 172.67.170.144:443 | www.ezojs.com | tcp |
| US | 1.1.1.1:53 | ecdn.firstimpression.io | udp |
| US | 35.227.209.167:443 | cdn.appconsent.io | tcp |
| US | 1.1.1.1:53 | audience-static.sfbx-okube.com | udp |
| GB | 18.244.179.69:443 | ecdn.firstimpression.io | tcp |
| US | 1.1.1.1:53 | region1.google-analytics.com | udp |
| US | 1.1.1.1:53 | cdn.firstimpression.io | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| GB | 18.244.179.2:443 | cdn.firstimpression.io | tcp |
| IE | 52.211.212.103:443 | en.akinator.com | tcp |
| US | 1.1.1.1:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.200.34:443 | googleads.g.doubleclick.net | tcp |
| IE | 18.200.41.22:443 | audience-static.sfbx-okube.com | tcp |
| US | 152.199.22.228:443 | cstatic.weborama.fr | tcp |
| US | 1.1.1.1:53 | pixel.quantserve.com | udp |
| DE | 91.228.74.244:443 | pixel.quantserve.com | tcp |
| US | 172.67.170.144:443 | www.ezojs.com | tcp |
| US | 35.227.209.167:443 | cdn.appconsent.io | tcp |
| IE | 52.211.212.103:443 | en.akinator.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.178.14:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| GB | 142.250.178.14:443 | android.apis.google.com | tcp |
Files
files/dom-0.html
| MD5 | f6714e545b057fd82e5dbd7e565f64aa |
| SHA1 | 899930e2d5db34ca39d0a6a1a6d6377c0d97c8e7 |
| SHA256 | 9647dabc8ae45ab6709bd0bf302002abf9e6a937c8eeeefd050275a5c22acf18 |
| SHA512 | bc7e22065a834dff071cd65838a8af2dfbee46344b909ab970e3d8ae065f5bd963e72f5386c9828b83e7df45865c05c78a1de7fa57486c0d504d3351fb596ad1 |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-13 13:39
Reported
2024-06-13 14:10
Platform
android-x64-20240611.1-en
Max time kernel
1808s
Max time network
1792s
Command Line
com.android.chrome
Signatures
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.android.chrome
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 173.194.76.84:443 | accounts.google.com | tcp |
| US | 1.1.1.1:53 | youtube.com | udp |
| GB | 142.250.187.206:80 | youtube.com | tcp |
| GB | 142.250.187.206:80 | youtube.com | tcp |
| GB | 142.250.187.206:443 | youtube.com | tcp |
| US | 1.1.1.1:53 | www.youtube.com | udp |
| US | 1.1.1.1:53 | m.youtube.com | udp |
| GB | 142.250.179.238:443 | m.youtube.com | tcp |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.200.8:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 64.233.166.84:443 | accounts.google.com | tcp |
| US | 1.1.1.1:53 | clients1.google.com | udp |
| GB | 172.217.169.46:443 | clients1.google.com | tcp |
| US | 1.1.1.1:53 | gstatic.com | udp |
| US | 1.1.1.1:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 142.250.187.227:443 | update.googleapis.com | tcp |
| US | 1.1.1.1:53 | jnn-pa.googleapis.com | udp |
| GB | 216.58.204.74:443 | jnn-pa.googleapis.com | tcp |
| US | 1.1.1.1:53 | static.doubleclick.net | udp |
| GB | 142.250.180.6:443 | static.doubleclick.net | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.238:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | play.google.com | udp |
| GB | 142.250.187.238:443 | play.google.com | tcp |
| GB | 142.250.187.238:443 | play.google.com | tcp |
| GB | 172.217.169.46:443 | clients1.google.com | tcp |
| GB | 142.250.178.4:443 | tcp | |
| GB | 142.250.178.4:443 | tcp | |
| GB | 172.217.16.226:443 | tcp | |
| GB | 142.250.178.14:443 | www.youtube.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 142.250.187.195:443 | update.googleapis.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.238:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | play.google.com | udp |
| GB | 142.250.180.14:443 | play.google.com | tcp |
| GB | 142.250.180.14:443 | play.google.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 172.217.16.238:443 | android.apis.google.com | tcp |
| BE | 142.250.110.188:5228 | tcp | |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.200.36:443 | www.google.com | tcp |
Files
files/dom-0.html
| MD5 | 6e10536b7bdee06229bbe3774cf13143 |
| SHA1 | afe50742b4bda777cce8e30293595f6fc1863c3e |
| SHA256 | de2f4acc0b9f0a9c1dc3f6e4344fbcad5968cbdad3b95050c143edeec5b7b615 |
| SHA512 | e37c414a2b8c30dd265aadc6428dedaf648c96a7c0a4d24edbeaa9f8376f9865ed14665aaa0328603d4bb6ac68aa5fd0c4cb59cf9c270cce032c100fee995eac |
Analysis: behavioral3
Detonation Overview
Submitted
2024-06-13 13:39
Reported
2024-06-13 14:10
Platform
android-x64-arm64-20240611.1-en
Max time kernel
1807s
Max time network
1819s
Command Line
com.android.chrome
Signatures
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.android.chrome
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 216.58.204.78:443 | tcp | |
| GB | 216.58.204.78:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | youtube.com | udp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 173.194.76.84:443 | accounts.google.com | tcp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| US | 1.1.1.1:53 | youtube.com | udp |
| BE | 142.250.110.84:443 | accounts.google.com | tcp |
| GB | 216.58.204.78:80 | youtube.com | tcp |
| GB | 216.58.204.78:443 | youtube.com | tcp |
| US | 1.1.1.1:53 | www.youtube.com | udp |
| US | 1.1.1.1:53 | m.youtube.com | udp |
| GB | 142.250.178.14:443 | m.youtube.com | tcp |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.187.200:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | gstatic.com | udp |
| GB | 172.217.16.227:443 | gstatic.com | tcp |
| US | 1.1.1.1:53 | clients1.google.com | udp |
| US | 1.1.1.1:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.200.14:443 | clients1.google.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 216.58.213.3:443 | update.googleapis.com | tcp |
| US | 1.1.1.1:53 | jnn-pa.googleapis.com | udp |
| US | 1.1.1.1:53 | static.doubleclick.net | udp |
| GB | 142.250.187.230:443 | static.doubleclick.net | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 216.58.212.196:443 | www.google.com | tcp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.178.4:443 | tcp | |
| GB | 142.250.178.4:443 | tcp | |
| US | 1.1.1.1:53 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 216.58.212.194:443 | tcp | |
| GB | 142.250.200.35:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | play.google.com | udp |
| GB | 142.250.178.14:443 | play.google.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| BE | 108.177.15.188:5228 | tcp | |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.187.228:443 | www.google.com | tcp |
| GB | 216.58.201.110:443 | www.youtube.com | tcp |
Files
files/dom-0.html
| MD5 | 9e51489820b1f111fa8c059cd45957b3 |
| SHA1 | 79f484f1ce9ad2180273f4e27b425cde621bb5f1 |
| SHA256 | cd67333c77c7582087e1ebe03b83ab30c0d489304ab61996917aa244efb5831a |
| SHA512 | 742b600f743c37ce0ef1ed4725f4816863bbbca5fae8b637d1912f8d40326cd2594f37d2633a5c5e17a3acc6c0d8bcfbe25a9460a50300099fd25137ce22b338 |