Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

VideoStrea...15.apk

android-10-x64

VideoStrea...15.apk

android-11-x64

7

VideoStrea...15.apk

android-13-x64

7

VideoStrea...15.apk

android-9-x86

1

Resubmissions

15/09/2024, 13:14 UTC

240915-qgz3aavdnh 10

04/09/2024, 21:03 UTC

240904-zwaklswejq 10

04/09/2024, 21:02 UTC

240904-zvlaqaxdqa 10

Analysis

  • max time kernel
    3s
  • max time network
    51s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    15/09/2024, 13:14 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VideoStreamHub_v2.8.4.apk_2520_15.apk

  • Size

    79.9MB

  • MD5

    5a4a75c9695c2c86f55d3a73a8519121

  • SHA1

    0385f31ba9e7b5c37106a422c4a34e2046435cfd

  • SHA256

    cf631d0c3b3a91b7e41a491a396ec0be4aa9d3b74024836dcaa5caa54d85ac5d

  • SHA512

    2cce857562d311b956213d4128b7f1e452ef059e4a808494274f5e68797ba2f81574e9c973e34a4079ec18f0f08b90700526099262bbe21cd3d7bdaeda97b830

  • SSDEEP

    1572864:7Xd7VusQ93J0xXSuKkugGkSDcxgf0w0scWNA3w:7XdjaJCXSuKtNxDcx090sVNWw

Score
7/10
evasion

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 2 IoCs

    Runs executable file dropped to the device during analysis.

    evasion

Processes

  • com.yowhats.software
    1⤵
    • Loads dropped Dex/Jar
    PID:4452

Network

  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    216.58.212.238
  • flag-us
    DNS
    digitalassetlinks.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    digitalassetlinks.googleapis.com
    IN A
    Response
    digitalassetlinks.googleapis.com
    IN A
    142.250.200.10
    digitalassetlinks.googleapis.com
    IN A
    172.217.16.234
    digitalassetlinks.googleapis.com
    IN A
    216.58.204.74
    digitalassetlinks.googleapis.com
    IN A
    172.217.169.42
    digitalassetlinks.googleapis.com
    IN A
    216.58.212.202
    digitalassetlinks.googleapis.com
    IN A
    142.250.187.202
    digitalassetlinks.googleapis.com
    IN A
    172.217.169.10
    digitalassetlinks.googleapis.com
    IN A
    142.250.187.234
    digitalassetlinks.googleapis.com
    IN A
    172.217.169.74
    digitalassetlinks.googleapis.com
    IN A
    216.58.201.106
    digitalassetlinks.googleapis.com
    IN A
    142.250.178.10
    digitalassetlinks.googleapis.com
    IN A
    142.250.180.10
    digitalassetlinks.googleapis.com
    IN A
    142.250.200.42
    digitalassetlinks.googleapis.com
    IN A
    142.250.179.234
    digitalassetlinks.googleapis.com
    IN A
    216.58.213.10
  • flag-us
    DNS
    ssl.google-analytics.com
    Remote address:
    1.1.1.1:53
    Request
    ssl.google-analytics.com
    IN A
    Response
    ssl.google-analytics.com
    IN A
    216.58.201.104
  • 142.250.179.238:443
    tls, https
    1.5kB
     40 B
     1
    1
  • 142.250.179.238:443
    tls, https
    1.5kB
     40 B
     1
    1
  • 216.58.212.238:443
    android.apis.google.com
    tls
    5.4kB
     8.8kB
     23
    23
  • 142.250.200.10:443
    digitalassetlinks.googleapis.com
    tls
    4.4kB
     8.1kB
     24
    37
  • 216.58.201.104:443
    ssl.google-analytics.com
    tls
    1.3kB
     5.8kB
     8
    8
  • 142.250.187.196:443
    tls, https
    436 B
     40 B
     2
    1
  • 142.250.187.196:443
    www.google.com
    tls
    11.0kB
     11.6kB
     29
    36
  • 224.0.0.251:5353
    2.9kB
     9
  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    216.58.212.238

  • 1.1.1.1:53
    digitalassetlinks.googleapis.com
    dns
    78 B
     318 B
     1
    1

    DNS Request

    digitalassetlinks.googleapis.com

    DNS Response

    142.250.200.10
    172.217.16.234
    216.58.204.74
    172.217.169.42
    216.58.212.202
    142.250.187.202
    172.217.169.10
    142.250.187.234
    172.217.169.74
    216.58.201.106
    142.250.178.10
    142.250.180.10
    142.250.200.42
    142.250.179.234
    216.58.213.10

  • 1.1.1.1:53
    ssl.google-analytics.com
    dns
    70 B
     86 B
     1
    1

    DNS Request

    ssl.google-analytics.com

    DNS Response

    216.58.201.104

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /system_ext/framework/androidx.window.sidecar.jar
    Filesize

    12KB

    MD5

    bdf3529e80318eb14e53a5bf3720c10d

    SHA1

    25c9ace4b1af6e80ebb2572345972c56505969ba

    SHA256

    bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

    SHA512

    48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.