Analysis Overview
score
10/10
Threat Level: Known bad
The file https://rb.gy/tgr31a was found to be: Known bad.
Malicious Activity Summary
Checks CPU information
Checks memory information
MITRE ATT&CK Matrix
N/A
Analysis: static1
Detonation Overview
Reported
2024-06-18 13:55
Signatures
N/A
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-18 13:55
Reported
2024-06-18 13:56
Platform
android-x64-20240611.1-en
Max time kernel
30s
Max time network
37s
Command Line
com.android.chrome
Signatures
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.android.chrome
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 66.102.1.84:443 | accounts.google.com | tcp |
| US | 1.1.1.1:53 | rb.gy | udp |
| US | 52.72.131.11:443 | rb.gy | tcp |
| US | 52.72.131.11:443 | rb.gy | tcp |
| US | 1.1.1.1:53 | roblox.com.py | udp |
| NL | 45.128.232.160:443 | roblox.com.py | tcp |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.187.200:443 | ssl.google-analytics.com | tcp |
| GB | 142.250.178.10:443 | tcp | |
| US | 1.1.1.1:53 | css.rbxcdn.com | udp |
| US | 1.1.1.1:53 | static.rbxcdn.com | udp |
| US | 1.1.1.1:53 | js.rbxcdn.com | udp |
| GB | 108.138.217.65:443 | static.rbxcdn.com | tcp |
| GB | 108.138.217.65:443 | static.rbxcdn.com | tcp |
| US | 1.1.1.1:53 | roblox.com | udp |
| GB | 23.200.147.35:443 | css.rbxcdn.com | tcp |
| GB | 23.200.147.35:443 | css.rbxcdn.com | tcp |
| GB | 23.200.147.35:443 | css.rbxcdn.com | tcp |
| GB | 23.200.147.35:443 | css.rbxcdn.com | tcp |
| GB | 23.200.147.35:443 | css.rbxcdn.com | tcp |
| GB | 23.200.147.35:443 | css.rbxcdn.com | tcp |
| GB | 104.86.110.219:443 | js.rbxcdn.com | tcp |
| GB | 104.86.110.219:443 | js.rbxcdn.com | tcp |
| GB | 104.86.110.219:443 | js.rbxcdn.com | tcp |
| GB | 104.86.110.219:443 | js.rbxcdn.com | tcp |
| GB | 104.86.110.219:443 | js.rbxcdn.com | tcp |
| GB | 104.86.110.219:443 | js.rbxcdn.com | tcp |
| GB | 128.116.119.4:443 | roblox.com | tcp |
| NL | 45.128.232.160:443 | roblox.com.py | tcp |
| NL | 45.128.232.160:443 | roblox.com.py | tcp |
| NL | 45.128.232.160:443 | roblox.com.py | tcp |
| NL | 45.128.232.160:443 | roblox.com.py | tcp |
| NL | 45.128.232.160:443 | roblox.com.py | tcp |
| US | 1.1.1.1:53 | roblox-api.arkoselabs.com | udp |
| US | 1.1.1.1:53 | images.rbxcdn.com | udp |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 18.244.155.96:443 | roblox-api.arkoselabs.com | tcp |
| GB | 142.250.187.200:443 | ssl.google-analytics.com | tcp |
| GB | 216.137.44.24:443 | images.rbxcdn.com | tcp |
| GB | 216.137.44.24:443 | images.rbxcdn.com | tcp |
| GB | 23.200.147.35:443 | css.rbxcdn.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 142.250.187.195:443 | update.googleapis.com | tcp |
| US | 1.1.1.1:53 | tr.rbxcdn.com | udp |
| GB | 92.123.140.8:443 | tr.rbxcdn.com | tcp |
| GB | 92.123.140.8:443 | tr.rbxcdn.com | tcp |
| US | 1.1.1.1:53 | ecsv2.roblox.com | udp |
| US | 1.1.1.1:53 | ncs.roblox.com | udp |
| GB | 128.116.119.4:443 | ncs.roblox.com | tcp |
| US | 1.1.1.1:53 | clients1.google.com | udp |
| GB | 142.250.187.206:443 | clients1.google.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| GB | 216.58.213.14:443 | tcp | |
| US | 1.1.1.1:53 | www.roblox.com | udp |
| US | 1.1.1.1:53 | metrics.roblox.com | udp |
Files
N/A