Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    7s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    23/08/2024, 07:08 UTC

General

  • Target

    ProjectA2-Aug17.apk

  • Size

    66.2MB

  • MD5

    431b84011e61d03020ecbd564b2430da

  • SHA1

    dd4fb99355b15d90ece186ae20e5136675a958fa

  • SHA256

    b397bf2341aa8938ff47ea8d783685e598559e2c3efbe26afbaab3fa2633f558

  • SHA512

    3d49db431d888eed1f5d9cf55eab71f85674c17ae7fe68de3d48234816f8a1127efc9bb15be5f6aa37f89da6a9c4b4386dd570a1dbb40de9b00d3e3db82ca2eb

  • SSDEEP

    1572864:2Gf8qz8tWeNUgsp07ZqkWzZDjpXiG65Y+DVPVecr5YULq0CPiilU/:1f3Jgsgpc/sFa+50crRwPlU

Score
6/10

Malware Config

Signatures

Processes

  • com.AnotherAxiom.A2
    1⤵
    • Queries information about active data network
    • Checks memory information
    PID:4519

Network

  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.180.14
  • flag-us
    DNS
    example.com
    Remote address:
    1.1.1.1:53
    Request
    example.com
    IN A
    Response
    example.com
    IN A
    93.184.215.14
  • flag-us
    HEAD
    https://example.com/
    Remote address:
    93.184.215.14:443
    Request
    HEAD / HTTP/1.1
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 11; Pixel 2 Build/RSR1.210722.013)
    Host: example.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 200 OK
    Accept-Ranges: bytes
    Age: 142538
    Cache-Control: max-age=604800
    Content-Type: text/html; charset=UTF-8
    Date: Fri, 23 Aug 2024 07:10:01 GMT
    Etag: "3147526947"
    Expires: Fri, 30 Aug 2024 07:10:01 GMT
    Last-Modified: Thu, 17 Oct 2019 07:18:26 GMT
    Server: ECAcc (bsb/27E6)
    X-Cache: HIT
    Content-Length: 1256
  • flag-us
    DNS
    ssl.google-analytics.com
    Remote address:
    1.1.1.1:53
    Request
    ssl.google-analytics.com
    IN A
    Response
    ssl.google-analytics.com
    IN A
    142.250.179.232
  • 142.250.187.206:443
    tls, https
    1.5kB
    40 B
    1
    1
  • 142.250.187.206:443
    tls, https
    1.5kB
    40 B
    1
    1
  • 142.250.180.14:443
    android.apis.google.com
    tls
    5.6kB
    8.7kB
    23
    22
  • 93.184.215.14:443
    https://example.com/
    tls, http
    2.0kB
    5.8kB
    14
    11

    HTTP Request

    HEAD https://example.com/

    HTTP Response

    200
  • 142.250.179.232:443
    ssl.google-analytics.com
    tls
    1.3kB
    5.8kB
    8
    8
  • 142.250.187.228:443
    tls, https
    847 B
    40 B
    2
    1
  • 142.250.187.228:443
    www.google.com
    tls
    11.1kB
    10.2kB
    29
    27
  • 224.0.0.251:5353
    3.7kB
    11
  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
    109 B
    1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.180.14

  • 1.1.1.1:53
    example.com
    dns
    57 B
    73 B
    1
    1

    DNS Request

    example.com

    DNS Response

    93.184.215.14

  • 1.1.1.1:53
    ssl.google-analytics.com
    dns
    70 B
    86 B
    1
    1

    DNS Request

    ssl.google-analytics.com

    DNS Response

    142.250.179.232

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.