51baf4bc48db631e887ded88c0beb05b7a2f6f26ad2d122ee7c6cca6678752f5 | Triage

Resubmissions

27/02/2025, 17:35 UTC

250227-v6hlravmy7 10

14/01/2025, 05:44 UTC

250114-gfjt8szrbn 10

14/01/2025, 05:43 UTC

250114-ge4g9aykgt 10

14/01/2025, 05:39 UTC

250114-gctj9szqep 10

14/01/2025, 05:35 UTC

250114-f993vazqak 10

14/01/2025, 05:34 UTC

250114-f9l11szpgq 10

14/01/2025, 05:31 UTC

250114-f76yeayjcw 10

14/01/2025, 05:30 UTC

250114-f68evayjas 10

14/01/2025, 05:29 UTC

250114-f6m4xazpcq 10

Analysis

max time kernel
162s
max time network
138s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
04/08/2024, 12:30 UTC

Sharing

Report Analysis Logs

General

Target

5251a356421340a45c8dc6d431ef8a8cbca4078a0305a87f4fbd552e9fc0793e.apk
Size

2.7MB
MD5

2ddbc785cd696041c5b0c3bd1a8af552
SHA1

1269636a5197ee7a1402e406c91177bf6a149652
SHA256

5251a356421340a45c8dc6d431ef8a8cbca4078a0305a87f4fbd552e9fc0793e
SHA512

30e3187fa0c65981ae80f0bfae4ac753020ceb591d9c001a809040fac08795ab2cb04d9a95645a025d15008c4057f14a84826bec86b75453f389ac52d9b8a1e5
SSDEEP

49152:VPctdtUtD6iJjM2M7xZkQPctdtUtD6yJjM2M7xZkpPctdtUtD62JjM2M7xZknJjj:VP04D6ojkxlP04D64jkx4P04D6sjkxin

Score

1^/10

Malware Config

Signatures

com.XPhantom.id
1⤵
PID:4490

Network

DNS

android.apis.google.com

Remote address:

1.1.1.1:53

Request

android.apis.google.com

IN A

Response

android.apis.google.com

IN CNAME

clients.l.google.com

clients.l.google.com

IN A

142.250.180.14
DNS

ssl.google-analytics.com

Remote address:

1.1.1.1:53

Request

ssl.google-analytics.com

IN A

Response

ssl.google-analytics.com

IN A

142.250.200.8
DNS

ssl.google-analytics.com

Remote address:

1.1.1.1:53

Request

ssl.google-analytics.com

IN A

142.250.187.206:443

tls, https

1.5kB
40 B
1
1
142.250.187.206:443

tls, https

1.5kB
40 B
1
1
142.250.180.14:443

android.apis.google.com

tls

5.6kB
8.7kB
23
23
142.250.200.8:443

ssl.google-analytics.com

tls

1.3kB
5.9kB
9
9
142.250.187.228:443

tls, https

846 B
40 B
2
1
142.250.187.228:443

www.google.com

tls

11.0kB
10.0kB
28
37

224.0.0.251:5353

3.7kB
11
1.1.1.1:53

android.apis.google.com

dns

69 B
109 B
1
1

DNS Request

android.apis.google.com

DNS Response

142.250.180.14
1.1.1.1:53

ssl.google-analytics.com

dns

140 B
86 B
2
1

DNS Request

ssl.google-analytics.com

DNS Request

ssl.google-analytics.com

DNS Response

142.250.200.8

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads