Malware Analysis Report

2024-10-19 13:10

Sample ID 240618-nqnz9s1hkf
Target bbb8a7bd3e3a2e95bebd3f2eff3dbfc5_JaffaCakes118
SHA256 655fc59ddaaf991fa6eccc1b2ade197a19eb5fc449d3be93ef6e7d3a5810ac63
Tags
banker discovery evasion persistence collection credential_access impact
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

655fc59ddaaf991fa6eccc1b2ade197a19eb5fc449d3be93ef6e7d3a5810ac63

Threat Level: Likely malicious

The file bbb8a7bd3e3a2e95bebd3f2eff3dbfc5_JaffaCakes118 was found to be: Likely malicious.

Malicious Activity Summary

banker discovery evasion persistence collection credential_access impact

Checks if the Android device is rooted.

Obtains sensitive information copied to the device clipboard

Checks Android system properties for emulator presence.

Loads dropped Dex/Jar

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

Queries information about active data network

Queries information about the current Wi-Fi connection

Queries the mobile country code (MCC)

Requests dangerous framework permissions

Registers a broadcast receiver at runtime (usually for listening for system events)

Checks memory information

Checks CPU information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-18 11:36

Signatures

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to send SMS messages. android.permission.SEND_SMS N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW N/A N/A
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE N/A N/A

Analysis: behavioral4

Detonation Overview

Submitted

2024-06-18 11:36

Reported

2024-06-18 11:36

Platform

android-x64-20240611.1-en

Max time network

6s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral5

Detonation Overview

Submitted

2024-06-18 11:36

Reported

2024-06-18 11:36

Platform

android-x64-arm64-20240611.1-en

Max time network

6s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.187.206:443 tcp
GB 142.250.187.206:443 tcp
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-18 11:36

Reported

2024-06-18 11:39

Platform

android-x86-arm-20240611.1-en

Max time kernel

176s

Max time network

166s

Command Line

com.game.songpoetry.yunyingshangno1

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/bin/su N/A N/A
N/A /system/xbin/su N/A N/A

Checks Android system properties for emulator presence.

evasion
Description Indicator Process Target
Accessed system property key: ro.product.model N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /storage/emulated/0/Sonnenblume/res.apk N/A N/A
N/A /storage/emulated/0/Sonnenblume/res.apk N/A N/A
N/A /storage/emulated/0/Sonnenblume/res.apk N/A N/A

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

banker discovery

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A
File opened for read /proc/meminfo N/A N/A

Processes

com.game.songpoetry.yunyingshangno1

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/storage/emulated/0/Sonnenblume/res.apk --output-vdex-fd=49 --oat-fd=50 --oat-location=/storage/emulated/0/Sonnenblume/oat/x86/res.odex --compiler-filter=quicken --class-loader-context=&

com.snowfish.a.a.bg

Network

Country Destination Domain Proto
GB 216.58.204.67:443 tcp
GB 142.250.178.10:443 tcp
N/A 224.0.0.251:5353 udp
CN 61.129.15.31:5284 tcp
GB 216.58.212.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
CN 61.129.15.31:5284 tcp
CN 61.129.15.31:5284 tcp

Files

/storage/emulated/0/Sonnenblume/res.apk.u

MD5 4f8ffbbab343c81c4965077c9d8e7800
SHA1 efffc6a83edc4ba34facf98a903eb0c08eea3c19
SHA256 724a9a674efd34affa4f8e34d5bd53b2617166b8def7099a9503adec0e5fc4cb
SHA512 fdf566c7189af57a7249aa9e263baee88728eb78c699fa0fadb75f58e1ce1c9f9e8f83375010fc3a273ff7486af8c74d1a44be37ca69d7340314ec502684b5ed

/storage/emulated/0/Sonnenblume/res.apk

MD5 68ad8c1d196d7881c9a34b9471ca095c
SHA1 be8fbb09720d561d291b373ecfe745d957baffb5
SHA256 83c41cf9c785593471c1fe06b5a313064b2b354e9a7045fb6af90bab01351ef7
SHA512 5981982fa2762dc341f636bcc0e7f2c1ad0995f9fe936c6d6045196b961e93a23d8a5f8665b8c089febd94cae219f9af0a9752c229a07a13012ab57a7d218ffe

/storage/emulated/0/Sonnenblume/res.apk

MD5 e467661ceb0044d81fc1d81073c05c6c
SHA1 3a1aabd7824e147ff771b766288b91b3aa774c5e
SHA256 d9e9486a413c6ce14fb9f44a4011ad58cb4dfb18cae3075be1b3508acd6bb48b
SHA512 f3c924fd7b7401bb40a83c2f9f43408968903322ae72284322d3cea97fbafd917d2bbe0cad05a7efda4b7b853a7771bef66c79033f30eaf524f7b0d210fb1af0

/data/data/com.game.songpoetry.yunyingshangno1/files/st_database.db-journal

MD5 23b4484e88a09968656a4e03078e6c1a
SHA1 fa07f8c04bc7bea05fd3e0e9e2b8e6d77d3d5d76
SHA256 ad8d062f0bfa1211d01da62fba32857c4061c45cf06e627bb38172e9e11ddd41
SHA512 c57a8aa96f94aa29b68e2f1b353b167e4c081a77ffc3613b5c5580dd977dadc8c608b5dd8e3705661acc378c2b23f7e79f732d37fd1ac03ad417aebfac8d0927

/data/data/com.game.songpoetry.yunyingshangno1/files/st_database.db

MD5 b3ff73b204b209d25c12182854bdc7bf
SHA1 ff08ac8bc8ac33eac9f67f024d252ad782e6bb1a
SHA256 bf839822ed9ab423d1a63e1d377e7199fa1a7bea2978f16b144efc3e16b4ac7e
SHA512 2ca7ae171d6d20c0ed3b92b61014350a8c01f8b05d031a9ff987e4412fbfb5f7feacc2f2734a5956bf1ddae7f515308604004ce1cbf6a68986b03610222c6d9e

/data/data/com.game.songpoetry.yunyingshangno1/files/st_database.db-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.game.songpoetry.yunyingshangno1/files/st_database.db-wal

MD5 d335ec96c26bd504ad5d566f27576040
SHA1 667d977d8769fc487bc4951338413ebbe1ef4605
SHA256 fc883625c769b96f8acde709e10a3919191104fe5979b4691865dabe04fabc11
SHA512 96a752b6bd76c221cab1b7933bb1704c4dc8d5c4425d7ec79843b6b28518c58044508693d6ebc50f60aad7ac89a685173265a5f05874049b4b762cc5283dc400

/storage/emulated/0/Sonnenblume/4A72F2DFFDBD84EB0C5C797BB76AFC44

MD5 e12879e37031ad239b3667b7dca8893e
SHA1 13fc6eb132c9459265cfa01268c3dde2fee43ea5
SHA256 ec3bea599d2d70f6ac327dd4bf269a1151c2cf457facd89cca76650c00e4a6d6
SHA512 ba3959ad3c42e19d43dfd1b0c7ad852a02324577c180ec6b0f9dc7181485ca13712c944df6867bf9abf0222b1c37d5fc43a86a46ed43c51f0d71e3cf737bc613

/data/data/com.game.songpoetry.yunyingshangno1/files/duration

MD5 1024aab8078ce59801ef86e7e3375ddc
SHA1 c9fe4877f4a927996d5b5bde1221c3810787ae74
SHA256 1ca402f86e607f315b6333ea8c1a6986f726305928c07976f38c84ffcb56114b
SHA512 8eaf1da65fb0574a5c54a2fbe312039471d5bb2797692f1d84bb12f035b562668fac39e51d509c0c3002fd88d30a813bf1dbc239308e6da048556e8097778be7

/storage/emulated/0/Sonnenblume/EE53AF5B170264468E95E783E26D76C2

MD5 c13a7506884ff753c92f58c3d8af9293
SHA1 276d783546858b3722a52746256b8f66c2551e11
SHA256 30e05c817e73f598bf8d85b19228cb52c56627e11ce818d6b11a85396d58fc60
SHA512 df46779a6aea8a748fb902d042d245067842faf6e5f274737c8af651efe606d9ad0f6ae91aafaaad500e510b5f7a30faf3b80b9b246dcaa8bbf19ffd32ee20a5

/storage/emulated/0/Sonnenblume/EE53AF5B170264468E95E783E26D76C2

MD5 ee59b72f6180aca73234aed78453cffc
SHA1 fda142cd9e2a653b55bb6ca81be598ef48581b86
SHA256 48168cc962768b310b95dd47ca28053559c0b97d9bbf4f5487b5bb601a73537e
SHA512 666d1329158ae701bd24441adfce5e53a6bb0f95e1ee24f8e98d2cb059bc44474284ccdc93e677be152ec917d270b1d9e52445669c4f53625250748d579157d7

/data/data/com.game.songpoetry.yunyingshangno1/files/duration

MD5 855329e8cc0c6b4420af1c40a9819099
SHA1 8771e3d5eaa2dff1e101eb8cb9c48c8c0f5c524c
SHA256 19f8f9b464bc664d0dee5153ca2b475afff4fd70bf2a520ed551cecc7406a1ed
SHA512 a25276e492de421afc885f042f2747b4e5b517d0245d3e1f3ea41fd92c993ff459f834754994ea0afa291d1355009f4450ee62d682d18df299718f214aa75bc3

/data/data/com.game.songpoetry.yunyingshangno1/files/duration

MD5 78a16b09f691de114d058022549a18e5
SHA1 4534e34c87ea68ad5a66486dc19e2bda0c4a1907
SHA256 b4c219b4d7a0d3366461a8c4796efd5f80b866183666dba4bfee2ec714e4db24
SHA512 bd73135efe5277b9d50743e7ed7b6492106665c37196c04ca3208d22f7fc4b403409ceb137a0fe646a4d265cf7cbe02245eee2210d16f926f5f9b60ebcb3ede3

/data/data/com.game.songpoetry.yunyingshangno1/files/duration

MD5 d2826039cccd3066ac2641529e921b86
SHA1 7e000ae07abf3b788c3d671168a427e46a2e9ea8
SHA256 e8e03b3c83b103a02a87829425cf6d315998f2b221089f42f203ea76e1c81de1
SHA512 dff45aeb7f1d18018622e81003ff40a87fb8362e0f8137af7c268eebe045ffcb99d41f8d919c1311d119bb37070192d1739ff37b1ec00e90b36ea0cc7a888aa6

/data/data/com.game.songpoetry.yunyingshangno1/files/duration

MD5 8f38cc9c07abec87ac85337290dac1b3
SHA1 d96fef7173a406f989ee409cabb4b5ccbf598abd
SHA256 9098f147a7509466eb99b412bd422ad1c50d3114e5ee7fb53e65f3afc27c1dab
SHA512 c8acd3a0b3376aa1fcfd57c6f2a6eaf4ae4ebe3461ec6fc3b4757fa21c6e035658cda2418096bc8dddeec367595f08e9501e1c210bf6cbd99873de5606bb65e1

/data/data/com.game.songpoetry.yunyingshangno1/files/duration

MD5 9b7eff2d669f27f18ca00e9d810f6432
SHA1 859c941ff2bf34073fa9ecba2df9b5d4d50de048
SHA256 5ffb8a7cbd84707e493aaa9d1c3301945c9a914987c6a0002be476be06aac70d
SHA512 29d651e6303259c25091f69d67478b617351a2ee08ebbe049527ed44bbb8d3ef81d5280030405a009f218c7b4c9a033316bf869c6f9b2bd9097190103a756817

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-18 11:36

Reported

2024-06-18 11:39

Platform

android-x64-arm64-20240611.1-en

Max time kernel

175s

Max time network

174s

Command Line

com.game.songpoetry.yunyingshangno1

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/bin/su N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /storage/emulated/0/Sonnenblume/res.apk N/A N/A
N/A /storage/emulated/0/Sonnenblume/res.apk N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

banker discovery

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A
File opened for read /proc/meminfo N/A N/A

Processes

com.game.songpoetry.yunyingshangno1

com.snowfish.a.a.bg

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.10:443 tcp
GB 142.250.200.10:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.213.8:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 s3a.abusi.net udp
GB 142.250.187.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp
GB 142.250.200.2:443 tcp
GB 216.58.201.110:443 tcp

Files

/storage/emulated/0/Sonnenblume/res.apk.u

MD5 b75811db3edc2e3e3191b01645afc456
SHA1 59f18af5a3f21d671de89fc43cdd2444ce04afa1
SHA256 04aadaf04c65c156d76ab6fbd3b51299291da5014401996f5017fb0b6b323216
SHA512 6a45476fe620c0dc3c21292069cc03ff9300e4bb6c59ecea57c5f4be8c7f35cf57c89a2f25f6f6ea58d00a7e22d8e4d3b50cda47b4c17a3ef5a9973c7dcb6880

/storage/emulated/0/Sonnenblume/res.apk

MD5 68ad8c1d196d7881c9a34b9471ca095c
SHA1 be8fbb09720d561d291b373ecfe745d957baffb5
SHA256 83c41cf9c785593471c1fe06b5a313064b2b354e9a7045fb6af90bab01351ef7
SHA512 5981982fa2762dc341f636bcc0e7f2c1ad0995f9fe936c6d6045196b961e93a23d8a5f8665b8c089febd94cae219f9af0a9752c229a07a13012ab57a7d218ffe

/data/user/0/com.game.songpoetry.yunyingshangno1/files/st_database.db-journal

MD5 8b6e845ed368b60475b03f4259e6b848
SHA1 2ff44f94f9e92471cd490f0237d3b6daf8faf6a7
SHA256 0ac8c693184dae36e98f41d2eb7c4c33d1eabc9a609e3b3c80610160fc66aaa2
SHA512 4764cf54bff4b0e87a9eabd387eb120bd30462fe2d9144a06fabea79cc7e34afc25f886f94c498e2517c33ceaf73615ee61845bb4cb85e16302f2f93e416051d

/data/user/0/com.game.songpoetry.yunyingshangno1/files/st_database.db

MD5 2c0dfab1905fd494344a096f32b96916
SHA1 47a1da1c249a299897201b3d63ff9bda8770eb4b
SHA256 784525780b605980095a6e66cb4ba7bd6c2acfa5d315043180ff7f2992686b9c
SHA512 ee1aa1bd8894de044d5446f2660741e3e7612b16f026c2c1160bb4f348db09acb3e86e814cfac948035d7050ce668a1bdd42b627a19b9203883b9564f4068d05

/data/user/0/com.game.songpoetry.yunyingshangno1/files/st_database.db-journal

MD5 6585fa8cd2a57c11cadd06eefed62534
SHA1 cf4810ac36268236a411c67aadeca499e06e3e3b
SHA256 9f6426fb5a538135622607fc02f09c3b2b3dfe88759e1a38c824cfaeecad0eea
SHA512 b2faf42f15a0e7d017e1f623ec25dc2dbd217bc2c0b5593a5f57b89bf22655dd68087f03256f7a979d4bfe73987d851cfb03ad3e30b7522b1e778ef20876f051

/data/user/0/com.game.songpoetry.yunyingshangno1/files/st_database.db-journal

MD5 24235d0928869eba79120d08b404cba8
SHA1 5dc2c5698a968c62a591d50f0934c8ffc2d46fd0
SHA256 7ba15e3803f25956c4c4906e31fa6ade32b62690853b132ab5743412b7e88e78
SHA512 24edde38cf891b55c4aee221137788ebfb133a137e955a1e6344f9447c379f8add6de1ec912bf74221e33ce42b90bbb2a5d9087e8ecd875d101355988a085bd1

/data/user/0/com.game.songpoetry.yunyingshangno1/files/st_database.db-journal

MD5 3c233439c5bd98b4255a5ba67d6a5a08
SHA1 4f8caf38e63c5461d36d5ad147d2e121de22416f
SHA256 772af99098eb6e19df02ce59cc47166769d22477196dad5e7947f7e20da79bbf
SHA512 49fe3783e7e2db4a5279931ee130766a00bf99fde2d852f1aec7c500db434607abc99954d4e04ee608e611f997cd3e3d2a257006308c8244f3eedd1353d33d76

/data/user/0/com.game.songpoetry.yunyingshangno1/files/duration

MD5 2c89da2a7a6b496b86282368e75ea087
SHA1 1ad72281b86f8bae521abc7a5c1babb522dd9ad8
SHA256 bb550782dd082cca1dc649ece70305dde9dbd7077decf262b1bc7b5a7ef48e67
SHA512 2228c61fc41109d22f007d6d91c4bf0a115872b0c3a915548a0a5ab23029736a9c0db9590076625dbc951d2ae2e954f271bd7d9c3dcba251461dae264687971a

/storage/emulated/0/Sonnenblume/EE53AF5B170264468E95E783E26D76C2

MD5 d98b9cbb4cc77f0d3ef5386da25a956a
SHA1 a7b773ad40ae0e3d56c5021e70700f8f6dc9c24d
SHA256 8fac61c6c2725c3c061f5c0fda1c0073efa1aab2dee30bcdc89eb06bb8667d71
SHA512 2087ae6f44188b1362637046362ed4c6a707aceef2d75dfaad124857894c45d25d1d393aeb06c2ed5df66e2e5e9eda946b311d673461b532534541b6a8120fd3

/data/user/0/com.game.songpoetry.yunyingshangno1/files/duration

MD5 24839bc7ed56803834d62ea969645ab9
SHA1 a797ff62d862af127fb6571f6388ec8f54957a7b
SHA256 a0740746089254e4a73b5ead4803e3388982f4239c138fc5f81ecde3a6c79d7e
SHA512 01480697ac10e788f87846127c2f578f9b3cc4764f46440cbf38ae4e7c3a3d445b3828d5d871ba2f8e1d12053e5c00272837baf784f33b7c5f2730ae40c50cc0

/data/user/0/com.game.songpoetry.yunyingshangno1/files/duration

MD5 b5577bcc598ddeb862f94ef76a015b1d
SHA1 5342a51244981a9e164ad38825030a9e8912126d
SHA256 862d8403758dc3937224838cf3e6208b0cdbbe38d0a720269ef9dbb4ffa862ae
SHA512 cefb840b3fc3f4b3edd280319869c9f2157581cd465e952529e6eeda386191e2fb0234a83c092b42da65a5113b86dab0f37c61a6ecd760c77c8858b8b682e097

/data/user/0/com.game.songpoetry.yunyingshangno1/files/duration

MD5 b7b955f5fc9a03c8666b4cfe658e4574
SHA1 6b1181055c50ab2147448e0d163aaa52e135eecb
SHA256 f4d17f7ac12948c9253006999ba5b9459bdd5b0ddd4e3459114cfb95c9165c10
SHA512 ad44db1f97e16f3dd2d5773c4e6530aad273f18d124aad518142343d0931b42cad84502bcb4b0e1f5809393ad3efcdeca5e0b122c9ea608475c7c84a7c121e4d

/data/user/0/com.game.songpoetry.yunyingshangno1/files/duration

MD5 8adc4ffe0867ff4e548d68dabfee2986
SHA1 d06b452627b527c883530224e91290c64606a7c3
SHA256 2c36e28c769b04a43ebf807dc84e9b8a032030c35add1ba9a23faca158f730cb
SHA512 fc08d6ce1861a71554ef8e9030852f4fc1a3684446a11aef317c194918313bf4ece5eaa5a807360d1c95634d82e6fa4f94712e6eb119ea12413ea5b0bb6f6d7f

Analysis: behavioral3

Detonation Overview

Submitted

2024-06-18 11:36

Reported

2024-06-18 11:36

Platform

android-x86-arm-20240611.1-en

Max time network

5s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A