Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    115s
  • max time network
    110s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    06/08/2024, 18:31 UTC

General

  • Target

    https://web.archive.org/web/20230706214541/https://download1587.mediafire.com/t1vdad3xufngg6CCX1k5jtiFJ0YYnHArLuX2ldpUW45Y7C5_ICaaMoj15-uYrQ6IH4D6uZD0Xn-dcHnvDAXCw1fpmTc_0gQtEgldscAvESOiKjQXCpk1VPUISW0N9EJwVOMwZfG74yKr06krisXQH9u4s95Hp7LFqY-oMYQYAG2yBcY/12o45hf43lvv6az/fnaf2+aptoide.apk

Score
1/10

Malware Config

Signatures

Processes

  • com.android.chrome
    1⤵
    • Checks CPU information
    • Checks memory information
    PID:4234

Network

  • flag-us
    DNS
    web.archive.org
    Remote address:
    1.1.1.1:53
    Request
    web.archive.org
    IN A
    Response
    web.archive.org
    IN A
    207.241.237.3
  • flag-us
    DNS
    archive.org
    Remote address:
    1.1.1.1:53
    Request
    archive.org
    IN A
    Response
    archive.org
    IN A
    207.241.224.2
  • flag-us
    DNS
    web-static.archive.org
    Remote address:
    1.1.1.1:53
    Request
    web-static.archive.org
    IN A
    Response
    web-static.archive.org
    IN A
    207.241.237.2
  • flag-us
    DNS
    wayback-api.archive.org
    Remote address:
    1.1.1.1:53
    Request
    wayback-api.archive.org
    IN A
    Response
    wayback-api.archive.org
    IN CNAME
    wwwb-api.archive.org
    wwwb-api.archive.org
    IN A
    207.241.237.8
  • flag-us
    DNS
    athena.archive.org
    Remote address:
    1.1.1.1:53
    Request
    athena.archive.org
    IN A
    Response
    athena.archive.org
    IN CNAME
    analytics.archive.org
    analytics.archive.org
    IN CNAME
    analytics2.us.archive.org
    analytics2.us.archive.org
    IN A
    207.241.225.195
  • flag-us
    DNS
    update.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    update.googleapis.com
    IN A
    Response
    update.googleapis.com
    IN A
    216.58.212.227
  • flag-gb
    POST
    https://update.googleapis.com/service/update2
    Remote address:
    216.58.212.227:443
    Request
    POST /service/update2 HTTP/1.1
    Content-Length: 655
    Content-Type: application/x-www-form-urlencoded
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 9; Pixel 2 Build/PSR1.180720.122)
    Host: update.googleapis.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 200 OK
    Content-Security-Policy: script-src 'report-sample' 'nonce-d94tcmhH6O_OFEUDNvJDHw' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/clientupdate-aus/1
    Cache-Control: no-cache, no-store, max-age=0, must-revalidate
    Pragma: no-cache
    Expires: Mon, 01 Jan 1990 00:00:00 GMT
    Date: Tue, 06 Aug 2024 18:32:09 GMT
    Content-Type: text/xml; charset=UTF-8
    X-Daynum: 6427
    X-Daystart: 41529
    Content-Encoding: gzip
    X-Content-Type-Options: nosniff
    X-Frame-Options: SAMEORIGIN
    X-XSS-Protection: 1; mode=block
    Server: GSE
    Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
    Transfer-Encoding: chunked
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.200.46
  • flag-us
    DNS
    semanticlocation-pa.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    semanticlocation-pa.googleapis.com
    IN A
    Response
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.10
    semanticlocation-pa.googleapis.com
    IN A
    216.58.204.74
    semanticlocation-pa.googleapis.com
    IN A
    142.250.179.234
    semanticlocation-pa.googleapis.com
    IN A
    142.250.180.10
    semanticlocation-pa.googleapis.com
    IN A
    216.58.213.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.187.234
    semanticlocation-pa.googleapis.com
    IN A
    172.217.16.234
    semanticlocation-pa.googleapis.com
    IN A
    216.58.201.106
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.42
    semanticlocation-pa.googleapis.com
    IN A
    216.58.212.202
    semanticlocation-pa.googleapis.com
    IN A
    216.58.212.234
    semanticlocation-pa.googleapis.com
    IN A
    142.250.187.202
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.74
    semanticlocation-pa.googleapis.com
    IN A
    142.250.200.42
    semanticlocation-pa.googleapis.com
    IN A
    142.250.178.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.200.10
  • flag-us
    DNS
    www.google.com
    Remote address:
    1.1.1.1:53
    Request
    www.google.com
    IN A
    Response
    www.google.com
    IN A
    142.250.200.4
  • flag-us
    DNS
    www.google.com
    Remote address:
    1.1.1.1:53
    Request
    www.google.com
    IN A
    Response
    www.google.com
    IN A
    142.250.179.228
  • 207.241.237.3:443
    web.archive.org
    tls
    1.1kB
    9.4kB
    17
    17
  • 207.241.237.3:443
    web.archive.org
    tls
    17.2kB
    602.1kB
    262
    421
  • 207.241.224.2:443
    archive.org
    tls
    3.7kB
    16.2kB
    24
    22
  • 207.241.237.2:443
    web-static.archive.org
    tls
    958 B
    8.4kB
    13
    12
  • 207.241.237.2:443
    web-static.archive.org
    tls
    4.4kB
    76.8kB
    49
    66
  • 207.241.237.2:443
    web-static.archive.org
    tls
    906 B
    8.5kB
    12
    13
  • 207.241.237.2:443
    web-static.archive.org
    tls
    958 B
    8.5kB
    13
    13
  • 207.241.237.2:443
    web-static.archive.org
    tls
    1.0kB
    8.5kB
    14
    13
  • 207.241.237.2:443
    web-static.archive.org
    tls
    958 B
    8.5kB
    13
    13
  • 207.241.224.2:443
    archive.org
    tls
    3.2kB
    38.1kB
    28
    32
  • 207.241.237.8:443
    wayback-api.archive.org
    tls
    2.1kB
    8.9kB
    14
    13
  • 207.241.225.195:443
    athena.archive.org
    tls
    2.1kB
    9.2kB
    15
    17
  • 216.58.212.227:443
    https://update.googleapis.com/service/update2
    tls, http
    1.7kB
    6.7kB
    9
    11

    HTTP Request

    POST https://update.googleapis.com/service/update2

    HTTP Response

    200
  • 142.250.187.206:443
    tls, https
    858 B
    40 B
    1
    1
  • 142.250.200.46:443
    android.apis.google.com
    tls
    5.6kB
    8.4kB
    15
    22
  • 216.58.204.74:443
    tls, https
    1.2kB
    40 B
    1
    1
  • 172.217.169.10:443
    semanticlocation-pa.googleapis.com
    tls
    1.7kB
    5.9kB
    11
    10
  • 142.250.200.4:443
    www.google.com
    tls
    91.4kB
    61.4kB
    128
    183
  • 142.250.179.228:443
    www.google.com
    tls
    2.0kB
    5.9kB
    12
    14
  • 224.0.0.251:5353
    3.3kB
    10
  • 1.1.1.1:53
    web.archive.org
    dns
    61 B
    77 B
    1
    1

    DNS Request

    web.archive.org

    DNS Response

    207.241.237.3

  • 1.1.1.1:53
    archive.org
    dns
    57 B
    73 B
    1
    1

    DNS Request

    archive.org

    DNS Response

    207.241.224.2

  • 1.1.1.1:53
    web-static.archive.org
    dns
    68 B
    84 B
    1
    1

    DNS Request

    web-static.archive.org

    DNS Response

    207.241.237.2

  • 1.1.1.1:53
    wayback-api.archive.org
    dns
    69 B
    108 B
    1
    1

    DNS Request

    wayback-api.archive.org

    DNS Response

    207.241.237.8

  • 1.1.1.1:53
    athena.archive.org
    dns
    64 B
    132 B
    1
    1

    DNS Request

    athena.archive.org

    DNS Response

    207.241.225.195

  • 1.1.1.1:53
    update.googleapis.com
    dns
    67 B
    83 B
    1
    1

    DNS Request

    update.googleapis.com

    DNS Response

    216.58.212.227

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
    109 B
    1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.200.46

  • 1.1.1.1:53
    semanticlocation-pa.googleapis.com
    dns
    80 B
    336 B
    1
    1

    DNS Request

    semanticlocation-pa.googleapis.com

    DNS Response

    172.217.169.10
    216.58.204.74
    142.250.179.234
    142.250.180.10
    216.58.213.10
    142.250.187.234
    172.217.16.234
    216.58.201.106
    172.217.169.42
    216.58.212.202
    216.58.212.234
    142.250.187.202
    172.217.169.74
    142.250.200.42
    142.250.178.10
    142.250.200.10

  • 1.1.1.1:53
    www.google.com
    dns
    60 B
    76 B
    1
    1

    DNS Request

    www.google.com

    DNS Response

    142.250.200.4

  • 142.250.200.4:443
    www.google.com
    https
    1.5kB
    49 B
    2
    1
  • 1.1.1.1:53
    www.google.com
    dns
    60 B
    76 B
    1
    1

    DNS Request

    www.google.com

    DNS Response

    142.250.179.228

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • files/dom-0.html

    Filesize

    2KB

    MD5

    53a3f02a3b5f01b07ad7078b8e2a5b1c

    SHA1

    2f3fef9858b448ee1f0279b60cce101c2c19854b

    SHA256

    bd6f177e7b82a7b8facf4c06df031b042416c63c2a7684b5ef6e7d838fec0d5d

    SHA512

    2034124f3b2ed1634f661e138938676d52bb291ffd4c55d1093e31230527706e10083b342107f7275c5685673f91642b6244658f7706da2df9ff0407cfddff94

  • /storage/emulated/0/Download/.com.google.Chrome.sOS64Q

    Filesize

    192KB

    MD5

    8ae370494e539291344925e9a7c6598c

    SHA1

    80622cc6583048548393185992b74eceb7f0e7eb

    SHA256

    a4ba493fa425d42ea933514b8e4bba225cfaffdba89c3bc963cc2ea823d32874

    SHA512

    09bc5e711e440fcc779ec547721670af33c9052f980996eb22907cf12fa057c5cab8cfeaa6d7230001c6d1d6c786651761ee3687668466c34a4246cbdd3e17a5

  • /storage/emulated/0/Download/Unconfirmed 772431.crdownload

    Filesize

    549KB

    MD5

    06d47ef8c6b95dc181787d9d37f22c83

    SHA1

    9603c192e78f1891bd4a054045e71b5ae512b461

    SHA256

    913637f82603e242655ac10278e87f3b21366dad40c09dded407d7bb5d21b175

    SHA512

    0a42894d2c0c7f55570ea9a426037beadc99a529cd8aa6bd78db8c52e5a09343b9baf9378caad7bf076db448d72c0a24ce6fb328858b31bf1f4237ca8d45c51a

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.