Malware Analysis Report

2025-03-15 04:07

Sample ID 240827-ryznhsxcln
Target http://gamejolt.com/games/fnaf2stingray/877145
Tags
motw phishing
score
6/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
6/10

Threat Level: Shows suspicious behavior

The file http://gamejolt.com/games/fnaf2stingray/877145 was found to be: Shows suspicious behavior.

Malicious Activity Summary

motw phishing

Mark of the Web detected: This indicates that the page was originally saved or cloned.

Checks memory information

Checks CPU information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-08-27 14:36

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-08-27 14:36

Reported

2024-08-27 14:45

Platform

android-33-x64-arm64-20240624-en

Max time kernel

424s

Max time network

504s

Command Line

com.android.chrome

Signatures

Mark of the Web detected: This indicates that the page was originally saved or cloned.

phishing motw
Description Indicator Process Target
N/A https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

com.android.chrome

Network

Country Destination Domain Proto
GB 216.58.201.100:443 udp
GB 216.58.201.100:443 udp
GB 216.58.201.100:443 udp
GB 216.58.201.100:443 tcp
GB 216.58.201.100:443 tcp
N/A 224.0.0.251:5353 udp
GB 172.217.169.10:443 tcp
US 172.64.41.3:443 tcp
US 172.64.41.3:443 tcp
US 172.64.41.3:443 tcp
US 1.1.1.1:53 gamejolt.com udp
US 104.18.5.160:80 gamejolt.com tcp
US 104.18.5.160:80 gamejolt.com tcp
US 1.1.1.1:53 remoteprovisioning.googleapis.com udp
US 104.18.5.160:443 gamejolt.com tcp
GB 142.250.178.10:443 remoteprovisioning.googleapis.com tcp
US 1.1.1.1:53 gmscompliance-pa.googleapis.com udp
US 1.1.1.1:53 accounts.google.com udp
BE 74.125.133.84:443 accounts.google.com tcp
US 1.1.1.1:53 www.google.com udp
US 1.1.1.1:53 chrome.cloudflare-dns.com udp
US 1.1.1.1:53 chrome.cloudflare-dns.com udp
US 1.1.1.1:53 chrome.cloudflare-dns.com udp
US 162.159.61.3:443 chrome.cloudflare-dns.com tcp
US 172.64.41.3:443 chrome.cloudflare-dns.com tcp
US 162.159.61.3:443 chrome.cloudflare-dns.com tcp
GB 216.58.204.78:443 tcp
GB 216.58.204.78:443 tcp
GB 172.217.169.4:443 www.google.com tcp
US 1.1.1.1:53 rcs-acs-tmo-us.jibe.google.com udp
US 216.239.36.155:443 rcs-acs-tmo-us.jibe.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 142.250.180.3:443 update.googleapis.com tcp
US 172.64.41.3:443 chrome.cloudflare-dns.com udp
GB 142.250.187.196:443 tcp
GB 216.58.201.100:443 tcp
GB 142.250.200.36:443 tcp
GB 142.250.200.36:443 tcp
GB 142.250.187.196:443 www.google.com tcp
US 1.1.1.1:53 voilatile-pa.googleapis.com udp
GB 142.250.187.202:443 voilatile-pa.googleapis.com tcp
US 104.18.5.160:80 gamejolt.com tcp
US 104.18.5.160:443 gamejolt.com udp
US 1.1.1.1:53 gamejolt.com udp
US 104.18.4.160:80 gamejolt.com tcp
US 104.18.4.160:80 gamejolt.com tcp
US 104.18.4.160:443 gamejolt.com tcp
US 1.1.1.1:53 accounts.google.com udp
BE 64.233.184.84:443 accounts.google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.4:443 www.google.com tcp
US 1.1.1.1:53 chrome.cloudflare-dns.com udp
US 1.1.1.1:53 chrome.cloudflare-dns.com udp
US 1.1.1.1:53 chrome.cloudflare-dns.com udp
US 172.64.41.3:443 chrome.cloudflare-dns.com tcp
US 162.159.61.3:443 chrome.cloudflare-dns.com tcp
US 162.159.61.3:443 chrome.cloudflare-dns.com tcp
US 162.159.61.3:443 chrome.cloudflare-dns.com udp
US 104.18.25.184:443 tcp
US 104.18.25.184:443 s.gjcdn.net tcp
US 104.18.25.184:443 s.gjcdn.net tcp
US 104.18.25.184:443 udp
US 104.18.25.184:443 udp
US 104.18.4.160:443 gamejolt.com udp
GB 172.217.169.4:443 www.google.com udp
US 216.239.34.36:443 region1.google-analytics.com tcp
US 216.239.34.36:443 udp
US 1.1.1.1:53 gmscompliance-pa.googleapis.com udp
GB 142.250.187.194:443 tcp
GB 142.250.187.194:443 tcp
GB 142.250.200.38:443 tcp
GB 142.250.180.2:443 tcp
GB 142.250.187.194:443 tcp
GB 172.217.169.46:443 tcp
US 216.239.34.36:443 tcp
GB 172.217.169.42:443 voilatile-pa.googleapis.com tcp
GB 172.217.16.225:443 tcp
GB 142.250.179.225:443 tcp
US 1.1.1.1:53 voilatile-pa.googleapis.com udp
GB 172.217.16.225:443 tcp
GB 172.217.16.225:443 tcp
GB 172.217.16.225:443 tcp
GB 172.217.16.225:443 tcp
GB 142.250.187.227:443 tcp
GB 142.250.187.227:443 tcp
US 172.64.41.3:443 chrome.cloudflare-dns.com udp
GB 142.250.178.3:443 update.googleapis.com tcp
GB 142.250.178.3:443 udp
GB 172.217.169.4:443 www.google.com udp
GB 172.217.169.10:443 voilatile-pa.googleapis.com tcp
US 104.18.4.160:443 gamejolt.com udp
GB 172.217.169.4:443 www.google.com udp
US 104.18.4.160:443 gamejolt.com udp
US 162.159.61.3:443 chrome.cloudflare-dns.com udp
GB 99.86.114.50:443 global.proper.io tcp
GB 216.58.204.66:443 securepubads.g.doubleclick.net tcp
GB 18.244.114.19:443 abcheck.proper.io tcp
GB 18.244.114.19:443 tcp
DE 91.228.74.244:443 secure.quantserve.com tcp
US 44.227.56.73:443 bids.proper.io tcp
GB 142.250.200.40:443 udp
GB 18.244.179.40:443 api.enthusiastgaming.net tcp
GB 216.58.204.66:443 udp
GB 18.245.187.55:443 rules.quantcount.com tcp
GB 13.224.222.60:443 vplayer.enthusiastgaming.com tcp
GB 142.250.180.14:443 fundingchoicesmessages.google.com tcp
GB 2.23.210.22:443 ced.sascdn.com tcp
GB 18.244.114.32:443 cmp.inmobi.com tcp
GB 13.224.223.9:443 c.amazon-adsystem.com tcp
GB 216.137.44.108:443 tagan.adlightning.com tcp
US 172.67.41.60:443 btloader.com tcp
US 35.241.45.217:443 pghub.io tcp
US 172.67.41.60:443 btloader.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 tcp
GB 13.224.223.9:443 c.amazon-adsystem.com tcp
GB 108.156.39.27:443 config.aps.amazon-adsystem.com tcp
GB 104.78.175.230:443 tcp
GB 104.78.175.230:443 secure.cdn.fastclick.net tcp
US 172.67.36.110:443 cdn.hadronid.net tcp
GB 18.244.114.32:443 cmp.inmobi.com tcp
GB 13.224.222.60:443 udp
US 104.22.4.69:443 id.hadron.ad.gt tcp
GB 142.250.180.14:443 udp
NL 89.207.16.210:443 proc.ad.cpe.dotomi.com tcp
DE 3.122.21.31:443 api.cmp.inmobi.com tcp
GB 13.224.222.60:443 udp
US 104.22.4.69:443 a.ad.gt tcp
GB 216.58.204.66:443 udp
GB 18.165.227.125:443 vcdn.enthusiastgaming.com tcp
GB 18.165.227.125:443 vcdn.enthusiastgaming.com tcp
GB 216.58.212.230:443 tcp
GB 13.224.245.70:443 stats-dev.brid.tv tcp
GB 13.224.245.70:443 tcp
GB 216.58.212.230:443 s0.2mdn.net tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
IE 52.210.249.45:443 rtb.gumgum.com tcp
DE 162.19.138.117:443 id5-sync.com tcp
DE 3.71.149.231:443 ups.analytics.yahoo.com tcp
GB 18.165.242.8:443 sb.scorecardresearch.com tcp
US 104.22.4.69:443 p.ad.gt tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
IE 79.125.113.151:443 ap.lijit.com tcp
DE 51.89.9.254:443 onetag-sys.com tcp
DE 3.72.78.234:443 btlr.sharethrough.com tcp
NL 69.173.156.150:443 prebid-server.rubiconproject.com tcp
DE 3.124.64.248:443 tlx.3lift.com tcp
US 52.37.62.163:443 ids.ad.gt tcp
US 52.37.62.163:443 tcp
NL 185.89.210.46:443 secure.adnxs.com tcp
NL 69.173.156.149:443 token.rubiconproject.com tcp
US 52.223.40.198:443 match.adsrvr.org tcp
NL 198.47.127.205:443 image2.pubmatic.com tcp
GB 172.217.16.226:443 cm.g.doubleclick.net tcp
US 35.244.193.51:443 lexicon.33across.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 52.37.62.163:443 tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 69.166.1.66:443 sync.go.sonobi.com tcp
US 52.36.63.88:443 usync.proper.io tcp
GB 172.217.16.226:443 udp
FR 91.134.110.136:443 sync.smartadserver.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
DE 51.89.9.254:443 udp
US 34.149.50.64:443 s.seedtag.com tcp
US 35.186.253.211:443 rtb.openx.net tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
GB 108.138.217.48:443 hb.yellowblue.io tcp
GB 13.224.245.70:443 udp
US 104.22.4.69:443 p.ad.gt tcp
US 35.244.159.8:443 u.openx.net tcp
IE 54.154.198.136:443 ad.360yield.com tcp
US 104.22.4.69:443 seg.ad.gt tcp
GB 216.137.44.88:443 pb-stats.brid.tv tcp
US 216.239.34.36:443 udp
IE 67.220.228.201:443 aax-eu.amazon-adsystem.com tcp
US 172.67.23.234:443 pixels.ad.gt tcp
GB 216.58.212.226:443 pubads.g.doubleclick.net tcp
NL 46.228.174.117:443 sync.1rx.io tcp
US 35.244.159.8:443 udp
IE 52.215.131.87:443 match.prod.bidr.io tcp
US 104.18.36.155:443 ssum-sec.casalemedia.com tcp
FR 178.32.197.53:443 ssbsync.smartadserver.com tcp
NL 63.215.202.137:443 amazon-tam-match.dotomi.com tcp
NL 46.228.174.117:443 tcp
DE 18.195.234.25:443 tcp
GB 92.123.242.2:443 eus.rubiconproject.com tcp
GB 92.123.242.2:443 tcp
IN 142.250.77.227:443 tcp
IN 142.250.77.227:443 csi.gstatic.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
US 76.223.111.18:443 eb2.3lift.com tcp
US 76.223.111.18:443 tcp
US 135.148.152.193:443 adapi-srv-us-east.smartadserver.com tcp
DE 18.195.234.25:443 match.sharethrough.com tcp
DE 18.195.234.25:443 tcp
IN 142.250.77.227:443 tcp
NL 35.214.132.90:443 u.ipw.metadsp.co.uk tcp
IE 34.247.229.60:443 ce.lijit.com tcp
US 135.148.152.193:443 tcp
IE 34.247.229.60:443 tcp
US 104.18.36.155:443 udp
IE 67.220.228.201:443 aax-eu.amazon-adsystem.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 209.54.182.161:443 s.amazon-adsystem.com tcp
IE 67.220.228.201:443 aax-eu.amazon-adsystem.com tcp
US 34.96.105.8:443 tr.blismedia.com tcp
US 135.148.152.193:443 adapi-srv-us-east.smartadserver.com tcp
US 209.54.182.161:443 s.amazon-adsystem.com tcp
DE 18.195.234.25:443 tcp
NL 35.214.132.90:443 udp
NL 178.250.1.3:443 tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
US 8.2.110.134:443 tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com tcp
US 74.121.140.211:443 sync.mathtag.com tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
US 80.77.87.163:443 cs.admanmedia.com tcp
NL 89.149.193.85:443 ssbsync-global.smartadserver.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
US 80.77.87.163:443 cs.admanmedia.com tcp
US 104.22.50.98:443 spl.zeotap.com tcp
US 104.22.50.98:443 tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
IE 18.200.154.164:443 tcp
US 69.173.146.5:443 pixel-us-east.rubiconproject.com tcp
US 69.173.146.5:443 pixel-us-east.rubiconproject.com tcp
US 52.71.88.198:443 sync.srv.stackadapt.com tcp
US 52.71.88.198:443 sync.srv.stackadapt.com tcp
US 52.71.88.198:443 sync.srv.stackadapt.com tcp
US 52.71.88.198:443 sync.srv.stackadapt.com tcp
DE 51.89.9.254:443 udp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
NL 185.184.8.90:443 tcp
NL 185.184.8.90:443 creativecdn.com tcp
NL 35.204.74.118:443 um.simpli.fi tcp
GB 108.156.39.117:443 s.ad.smaato.net tcp
IE 18.200.154.164:443 pr-bh.ybp.yahoo.com tcp
US 52.71.88.198:443 tcp
US 69.173.146.5:443 tcp
US 34.36.216.150:443 tcp
NL 185.184.8.90:443 tcp
NL 35.204.74.118:443 tcp
GB 108.156.39.117:443 tcp
NL 154.59.122.79:443 ums.acuityplatform.com tcp
IE 52.50.19.120:443 dpm.demdex.net tcp
FR 45.137.176.88:443 sync.adotmob.com tcp
US 104.18.36.155:443 tcp
US 15.197.193.217:443 tcp
FR 45.137.176.88:443 tcp
NL 69.173.156.149:443 token.rubiconproject.com tcp
NL 69.173.156.149:443 token.rubiconproject.com tcp
NL 69.173.156.149:443 token.rubiconproject.com tcp
IE 52.215.131.87:443 match.prod.bidr.io tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
US 151.101.1.108:443 acdn.adnxs.com tcp
US 104.16.187.87:443 cs.seedtag.com tcp
US 143.244.208.184:443 tcp
GB 143.204.176.112:443 sync.serverbid.com tcp
US 143.244.208.184:443 sid.storygize.net tcp
GB 143.204.176.112:443 tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
US 54.167.154.222:443 aorta.clickagy.com tcp
GB 216.58.212.230:443 udp
NL 69.173.156.148:443 tcp
BE 35.206.140.87:443 pool.admedo.com tcp
NL 69.173.156.148:443 tcp
US 34.36.216.150:443 udp
NL 198.47.127.20:443 image4.pubmatic.com tcp
US 104.18.41.104:443 capi.connatix.com tcp
US 151.101.130.49:443 sync-tm.everesttech.net tcp
US 151.101.130.49:443 tcp
US 104.18.14.32:443 download.gamejolt.net tcp
NL 145.40.97.77:443 prebid.a-mo.net tcp
US 135.148.152.193:443 use2.smartadserver.com tcp
US 64.202.112.95:443 b1sync.zemanta.com tcp
IE 52.19.119.234:443 pm.w55c.net tcp
NL 64.158.223.137:443 triplelift-match.dotomi.com tcp
US 104.18.14.32:443 tcp
GB 2.23.204.244:443 ads.pubmatic.com tcp
GB 2.23.204.244:443 tcp
NL 35.214.199.88:443 udp
US 35.186.253.211:443 udp
BE 35.206.140.87:443 udp
NL 63.215.202.169:443 openx2-match.dotomi.com tcp
DK 37.157.5.133:443 c1.adform.net tcp
GB 18.245.187.108:443 live.primis.tech tcp
IE 54.75.251.201:443 tcp
IE 54.75.251.201:443 sync.crwdcntrl.net tcp
US 34.111.113.62:443 pixel.tapad.com tcp
US 34.149.50.64:443 udp
US 64.202.112.95:443 b1sync.zemanta.com tcp
GB 2.23.204.244:443 tcp
US 34.111.113.62:443 tcp
US 1.1.1.1:53 secure-assets.rubiconproject.com udp
US 1.1.1.1:53 csync.smartadserver.com udp
US 1.1.1.1:53 sync.richaudience.com udp
US 1.1.1.1:53 visitor.omnitagjs.com udp
US 1.1.1.1:53 csync.loopme.me udp
US 1.1.1.1:53 sync.adkernel.com udp
GB 23.215.239.190:443 secure-assets.rubiconproject.com tcp
GB 2.19.117.8:443 csync.smartadserver.com tcp
FR 185.255.84.153:443 visitor.omnitagjs.com tcp
DE 168.119.146.39:443 sync.richaudience.com tcp
DE 168.119.146.39:443 sync.richaudience.com tcp
US 34.1.245.24:443 csync.loopme.me tcp
NL 77.245.57.72:443 sync.adkernel.com tcp
US 1.1.1.1:53 ads.us.e-planning.net udp
NL 193.3.178.4:443 ads.us.e-planning.net tcp
DK 37.157.6.243:443 cm.adform.net tcp
NL 193.0.160.131:443 tcp
NL 193.0.160.131:443 p.rfihub.com tcp
NL 35.214.241.248:443 tcp
NL 193.0.160.131:443 tcp
NL 35.214.241.248:443 ads.creative-serving.com tcp
US 1.1.1.1:53 dsp-ap.eskimi.com udp
US 1.1.1.1:53 sync.ipredictive.com udp
NL 188.42.63.48:443 dsp-ap.eskimi.com tcp
US 54.144.14.120:443 sync.ipredictive.com tcp
DE 168.119.146.39:443 sync.richaudience.com tcp
US 34.98.64.218:443 tcp
US 34.111.113.62:443 udp
US 104.18.37.193:443 a.tribalfusion.com tcp
NL 188.42.63.48:443 dsp-ap.eskimi.com tcp
US 52.73.22.15:443 sync.ipredictive.com tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
DE 168.119.146.39:443 sync.richaudience.com tcp
GB 2.23.210.33:443 ced-ns.sascdn.com tcp
GB 23.59.171.18:443 tcp
GB 13.224.222.60:443 eu-west-1-cs-rtb.openwebmp.com tcp
US 54.235.220.110:443 api-2-0.spot.im tcp
IE 34.253.170.144:443 jadserve.postrelease.com tcp
US 172.111.38.111:443 tracker.open-adsyield.com tcp
US 35.244.174.68:443 id.rlcdn.com tcp
US 104.17.44.93:443 gum.aidemsrv.com tcp
GB 92.123.140.19:443 player.aniview.com tcp
US 67.202.105.22:443 ssc-cms.33across.com tcp
US 3.209.126.202:443 cs-server-s2s.yellowblue.io tcp
GB 2.23.161.35:443 sync.teads.tv tcp
US 172.111.38.111:443 tcp
US 67.202.105.22:443 tcp
US 3.209.126.202:443 tcp
GB 92.123.140.19:443 tcp
NL 198.47.127.19:443 image6.pubmatic.com tcp
NL 198.47.127.19:443 tcp
NL 35.214.241.248:443 udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
US 80.77.87.163:443 tcp
US 64.38.119.42:443 bttrack.com tcp
DE 57.129.18.113:443 wt.rqtrk.eu tcp
US 64.38.119.42:443 tcp
NL 193.3.178.1:443 s.e-planning.net tcp
US 54.159.171.74:443 cookies.nextmillmedia.com tcp
NL 35.214.174.141:443 a.sportradarserving.com tcp
NL 35.214.174.141:443 tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
DE 162.19.138.117:443 id5-sync.com tcp
US 35.190.80.1:443 tcp
NL 35.214.149.91:443 tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
NL 198.47.127.19:443 tcp
DE 18.195.234.25:443 tcp
US 54.88.142.103:443 pxl.iqm.com tcp
NL 35.214.154.108:443 csync.loopme.me tcp
NL 188.42.34.65:443 ads.betweendigital.com tcp
NL 188.42.34.65:443 tcp
DE 85.114.159.93:443 dsp.adfarm1.adition.com tcp
IE 52.16.138.16:443 ms-cookie-sync.presage.io tcp
IE 52.16.138.16:443 ms-cookie-sync.presage.io tcp
US 172.64.151.101:443 tcp
DE 18.195.234.25:443 tcp
US 35.190.80.1:443 udp
US 69.166.1.66:443 sync.go.sonobi.com tcp
GB 185.64.191.210:443 simage2.pubmatic.com tcp
US 172.240.45.78:443 sync.aniview.com tcp
US 80.77.87.163:443 cs.admanmedia.com tcp
NL 35.214.174.141:443 udp
US 198.206.157.249:443 imglaunch-us.e-planning.net tcp
US 54.187.187.137:443 visitor-ow.omnitagjs.com tcp
US 198.206.157.249:443 tcp
US 54.187.187.137:443 tcp
DE 18.195.234.25:443 match.sharethrough.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
NL 35.214.154.108:443 csync.loopme.me tcp
IE 18.200.89.214:443 ads.yieldmo.com tcp
IE 18.200.89.214:443 tcp
DE 18.195.234.25:443 tcp
NL 193.3.178.4:443 ads.us.e-planning.net tcp
NL 193.3.178.4:443 ads.us.e-planning.net tcp
US 34.96.71.22:443 s.company-target.com tcp
US 104.17.72.14:443 ajax.cloudflare.com tcp
NL 89.207.16.201:443 equativ-match.dotomi.com tcp
US 3.231.85.192:443 i.liadm.com tcp
US 3.231.85.192:443 tcp
US 23.23.91.66:443 rtb.adentifi.com tcp
NL 188.166.17.21:443 match.adsby.bidtheatre.com tcp
GB 108.138.233.18:443 cs.openwebmp.com tcp
GB 108.138.233.18:443 tcp
GB 108.138.233.18:443 tcp
US 23.23.91.66:443 tcp
NL 188.166.17.21:443 match.adsby.bidtheatre.com tcp
GB 108.138.233.18:443 tcp
NL 188.166.17.21:443 tcp
US 34.96.71.22:443 tcp
DE 80.82.210.217:443 dsp-cookie.adfarm1.adition.com tcp
NL 193.3.178.4:443 ads.us.e-planning.net tcp
GB 108.138.233.18:443 tcp
GB 108.138.233.18:443 tcp
US 80.77.87.163:443 cs.admanmedia.com tcp
US 104.18.37.193:443 udp
US 34.102.163.6:443 tcp
US 35.186.193.173:443 ipac.ctnsnet.com tcp
SE 13.53.196.230:443 d5p.de17a.com tcp
SI 195.5.165.20:443 core.iprom.net tcp
IE 52.215.155.11:443 cm.adgrx.com tcp
NL 63.215.202.172:443 casale-match.dotomi.com tcp
US 34.102.163.6:443 tcp
SG 35.186.154.107:443 tcp
US 34.111.129.221:443 cr.frontend.weborama.fr tcp
FR 141.95.171.142:443 green.erne.co tcp
IE 54.154.175.66:443 cs.yellowblue.io tcp
SG 35.186.154.107:443 tcp
FR 141.95.171.142:443 tcp
GB 18.134.84.18:443 1f2e7.v.fwmrm.net tcp
IE 54.154.175.66:443 tcp
IE 54.154.175.66:443 tcp
DE 80.82.210.217:443 tcp
GB 18.244.179.42:443 cs.openwebmedia.org tcp
US 172.240.45.78:443 udp
US 172.240.45.78:443 udp
US 1.1.1.1:53 pixel-eu.onaudience.com udp
FR 54.38.113.6:443 pixel-eu.onaudience.com tcp
US 47.253.61.56:443 gw-iad-bid.ymmobi.com tcp
US 104.19.159.19:443 assets.a-mo.net tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
US 34.111.129.221:443 udp
GB 185.64.190.81:443 simage4.pubmatic.com tcp
NL 37.230.131.22:443 dm-eu.hybrid.ai tcp
DE 18.193.42.96:443 match.justpremium.com tcp
GB 18.245.143.100:443 tags.crwdcntrl.net tcp
FR 54.38.113.3:443 pixel-eu.onaudience.com tcp
DK 77.243.51.122:443 uipglob.semasio.net tcp
DE 162.55.120.196:443 matching.truffle.bid tcp
DK 77.243.51.122:443 uipglob.semasio.net tcp
DK 77.243.51.122:443 uipglob.semasio.net tcp
FR 54.38.113.3:443 pixel-eu.onaudience.com tcp
DE 3.120.214.218:443 ps.eyeota.net tcp
DE 79.127.216.47:443 tcp
DE 3.120.214.218:443 ps.eyeota.net tcp
NL 147.75.85.97:443 sync.a-mo.net tcp
NL 147.75.85.97:443 tcp
NL 147.75.85.97:443 tcp
NL 147.75.85.97:443 tcp
NL 147.75.85.97:443 tcp
NL 147.75.84.158:443 tcp
FR 54.36.150.183:443 tcp
FR 54.36.150.183:443 tcp
NL 46.228.164.13:443 tcp
US 1.1.1.1:53 i.w55c.net udp
IE 52.19.119.234:443 i.w55c.net tcp
NL 185.89.208.11:443 prebid.adnxs.com tcp
NL 185.64.189.116:443 ow.pubmatic.com tcp
DE 79.127.216.47:443 tcp
US 52.71.88.198:443 tcp
IE 52.215.131.87:443 match.prod.bidr.io tcp
US 52.71.88.198:443 sync.srv.stackadapt.com tcp
NL 178.250.1.8:443 tcp
NL 185.89.210.20:443 ib.adnxs.com tcp
DE 3.72.78.234:443 tcp
NL 69.173.156.139:443 tcp
NL 178.250.1.7:443 tcp
NL 178.250.1.7:443 tcp
US 135.148.152.193:443 tcp
US 135.148.152.193:443 tcp
GB 172.217.169.4:443 www.google.com udp
US 135.148.152.193:443 tcp
US 104.16.187.87:443 tcp
NL 69.173.156.150:443 tcp
IE 67.220.228.201:443 aax-eu.amazon-adsystem.com tcp
IE 67.220.228.201:443 tcp
GB 23.59.171.18:443 tcp
NL 46.228.164.11:443 tcp
NL 46.228.174.117:443 tcp
FR 91.134.110.136:443 tcp
GB 142.250.179.226:443 tcp
FR 91.134.110.136:443 tcp
FR 91.134.110.136:443 tcp
DE 18.195.234.25:443 match.sharethrough.com tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
NL 69.173.156.129:443 beacon-ams3.rubiconproject.com tcp
IE 52.215.131.87:443 tcp
FR 91.134.110.136:443 rtb-csync.smartadserver.com tcp
IE 52.215.131.87:443 tcp
GB 142.250.179.226:443 udp
FR 178.32.197.53:443 ssbsync.smartadserver.com tcp
NL 154.59.122.79:443 ums.acuityplatform.com tcp
GB 2.23.204.119:443 ad.yieldlab.net tcp
US 35.186.194.101:443 tcp
US 35.186.194.101:443 ad.sxp.smartclip.net tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
GB 216.58.212.230:443 udp
GB 142.250.200.34:443 googleads4.g.doubleclick.net tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
US 35.186.194.101:443 udp
GB 142.250.200.34:443 udp
GB 216.58.212.226:443 udp
IN 142.250.77.227:443 udp
GB 142.250.200.33:443 udp
US 104.18.4.160:443 gamejolt.com udp
GB 172.217.169.42:443 voilatile-pa.googleapis.com tcp
GB 142.250.180.14:443 tcp
GB 142.250.187.227:443 tcp
GB 142.250.187.227:443 tcp
GB 142.250.187.227:443 tcp
GB 142.250.187.238:443 tcp
GB 216.58.213.27:443 tcp
US 216.239.34.223:443 tcp
GB 64.233.166.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.204.68:443 www.google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp

Files

/storage/emulated/0/Download/.pending-1725374614-stingray-lnyn.apk (deleted)

MD5 207478be07333ec8f3666975ecba6da6
SHA1 9d95db25f5f8b56e4a35226afd95912decc8d4ea
SHA256 bc8dfd748ab4a517b66f1928453e4ffd73f36577e542d10b2331bed373744ed0
SHA512 0c1f7030456c5de66ebbd102254848073c573e59562ca0d3fa3005d7c9f8e7f5e77b1175ac875a0a93af93072e167397bceb7b8ad182a18c49da94695f73e904

/storage/emulated/0/Download/.pending-1725374614-stingray-lnyn.apk

MD5 b36d60045d7b4261fa1af637127571b3
SHA1 dab81f0eebe6a55caf2468db18d2bc23e1117493
SHA256 56fb4b0d754cbc84ef1a2f523c6cac7e85977af51979fb62cea612095ca8fa1f
SHA512 75c537017b45797517b5370aa95e93e89a516e76f7e9daa78e147f2c87f4935f60f46c93c09373a8b6a915ccd0d5e3116b067160f5d6003c8e19ea66e6537e73

/storage/emulated/0/Download/.pending-1725374614-stingray-lnyn.apk

MD5 4308b1b07a4cbd42381d2c738d60e917
SHA1 f77f1ffb3e9ff166df1935208e806d57c1447fcb
SHA256 d10e9ef8e554559328bfed2ae43f50d9ecc4241b60b52a70e641cf7d326cea48
SHA512 2034db378663275df3eea842ee5d01cb4b69d3719a402ec36b5f098532560dc10c1811c78cbbdf3da2aaf5e6cf0e2bfd03399c04f7201bef1515c23f55538e82