Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

6

292b6e8ff3...8b.apk

android-9-x86

10

292b6e8ff3...8b.apk

android-10-x64

10

292b6e8ff3...8b.apk

android-11-x64

10

Analysis

  • max time kernel
    144s
  • max time network
    146s
  • platform
    android_x64
  • resource
    android-x64-20240624-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
  • submitted
    19/12/2024, 11:11 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    292b6e8ff3435540c5c08038a5bdb38b.apk

  • Size

    3.9MB

  • MD5

    292b6e8ff3435540c5c08038a5bdb38b

  • SHA1

    6dbba2151d46e40e53db95e9b13b6909f21d82d9

  • SHA256

    8d06809f05039a050b9635d6fd2a22648dcae4f8c5962a35233cbb1efed437a4

  • SHA512

    bcb971abd0e9f58b8cf38edd4a3e4673d76d82d9162eac4288252c914cccb0bff0c03a4c3071156243a115bd506c615a19a749cbd995820efa940e89135589bc

  • SSDEEP

    98304:pfy+2wcn9R5LIva11W5vBjJbIVekUJCL0wx:lU9oC1kJBDCAwx

Score
10/10
hydrabankercollectioncredential_accessdiscoveryevasioninfostealerpersistencetrojan

Malware Config

Signatures

  • Hydra

    Android banker and info stealer.

    bankertrojaninfostealerhydra
  • Hydra family
    hydra
  • Hydra payload 2 IoCs
  • Loads dropped Dex/Jar 1 TTPs 1 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Makes use of the framework's Accessibility service 4 TTPs 2 IoCs

    Retrieves information displayed on the phone screen using AccessibilityService.

    collectionevasioncredential_access
  • Legitimate hosting services abused for malware hosting/C2 1 TTPs 10 IoCs
  • Looks up external IP address via web service 1 IoCs

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence

Processes

  • com.rude.stamp
    1⤵
    • Loads dropped Dex/Jar
    • Makes use of the framework's Accessibility service
    • Queries information about active data network
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:5051

Network

  • flag-us
    DNS
    ssl.google-analytics.com
    Remote address:
    1.1.1.1:53
    Request
    ssl.google-analytics.com
    IN A
    Response
    ssl.google-analytics.com
    IN A
    142.250.200.40
  • flag-us
    DNS
    raw.githubusercontent.com
    Remote address:
    1.1.1.1:53
    Request
    raw.githubusercontent.com
    IN A
    Response
    raw.githubusercontent.com
    IN A
    185.199.109.133
    raw.githubusercontent.com
    IN A
    185.199.111.133
    raw.githubusercontent.com
    IN A
    185.199.110.133
    raw.githubusercontent.com
    IN A
    185.199.108.133
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: E693:3A550C:E3FAB:132C03:6763FF5A
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:11:39 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lcy-eglc8600062-LCY
    X-Cache: HIT
    X-Cache-Hits: 0
    X-Timer: S1734606700.523413,VS0,VE1
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: 154e96440e61a3ef91122061b4e3ef91c691e89e
    Expires: Thu, 19 Dec 2024 11:16:39 GMT
    Source-Age: 10
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: E693:3A550C:E3FAB:132C03:6763FF5A
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:11:49 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lcy-eglc8600049-LCY
    X-Cache: HIT
    X-Cache-Hits: 0
    X-Timer: S1734606709.072014,VS0,VE1
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: b55725a88b8c8309f7fd645c64f692f512fed4b7
    Expires: Thu, 19 Dec 2024 11:16:49 GMT
    Source-Age: 20
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.179.238
  • flag-us
    DNS
    ip-api.com
    Remote address:
    1.1.1.1:53
    Request
    ip-api.com
    IN A
    Response
    ip-api.com
    IN A
    208.95.112.1
  • flag-us
    GET
    http://ip-api.com/json
    Remote address:
    208.95.112.1:80
    Request
    GET /json HTTP/1.1
    Authorization: fbd4915e654343f2
    Content-Type: application/json
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: ip-api.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 200 OK
    Date: Thu, 19 Dec 2024 11:11:51 GMT
    Content-Type: application/json; charset=utf-8
    Content-Length: 291
    Access-Control-Allow-Origin: *
    X-Ttl: 60
    X-Rl: 44
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: 94C0:3A7A02:E563F:1342D7:6763FF6A
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:11:53 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lon420118-LON
    X-Cache: HIT
    X-Cache-Hits: 0
    X-Timer: S1734606713.999308,VS0,VE1
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: 175a6282ca56c4db871c0460ea61fea38d595566
    Expires: Thu, 19 Dec 2024 11:16:53 GMT
    Source-Age: 11
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: E693:3A550C:E3FAB:132C03:6763FF5A
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:12:17 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lcy-eglc8600069-LCY
    X-Cache: HIT
    X-Cache-Hits: 6
    X-Timer: S1734606737.242496,VS0,VE0
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: 4fc8fd38c81c6ac5e1a2ae1bb063f90c2e6ccda5
    Expires: Thu, 19 Dec 2024 11:17:17 GMT
    Source-Age: 48
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: E691:14E2F9:E4C7E:133AA7:6763FFA0
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:12:33 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lcy-eglc8600060-LCY
    X-Cache: MISS
    X-Cache-Hits: 0
    X-Timer: S1734606753.993419,VS0,VE107
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: 434f0cbb3d26a26dddf991321d16a567f63f379d
    Expires: Thu, 19 Dec 2024 11:17:33 GMT
    Source-Age: 0
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: E691:14E2F9:E4C7E:133AA7:6763FFA0
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:12:53 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lcy-eglc8600083-LCY
    X-Cache: HIT
    X-Cache-Hits: 0
    X-Timer: S1734606773.003349,VS0,VE1
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: aad054a478207c2804a2c527fc75e9aca4fbf115
    Expires: Thu, 19 Dec 2024 11:17:53 GMT
    Source-Age: 20
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: E691:14E2F9:E4C7E:133AA7:6763FFA0
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:13:13 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lcy-eglc8600055-LCY
    X-Cache: HIT
    X-Cache-Hits: 0
    X-Timer: S1734606793.068591,VS0,VE1
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: 8237d2f950db30b61e7ca72eaa0dcb6dcf1c08cc
    Expires: Thu, 19 Dec 2024 11:18:13 GMT
    Source-Age: 40
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: E691:14E2F9:E4C7E:133AA7:6763FFA0
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:13:33 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lcy-eglc8600025-LCY
    X-Cache: HIT
    X-Cache-Hits: 0
    X-Timer: S1734606813.073117,VS0,VE1
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: 5a0411be6fa7c935df9c9910bedf54ddf3e3e8e9
    Expires: Thu, 19 Dec 2024 11:18:33 GMT
    Source-Age: 60
  • flag-us
    GET
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    Remote address:
    185.199.109.133:443
    Request
    GET /dyd1y/tor-files/main/all_tor.zip HTTP/1.1
    Range: bytes=0-
    Authorization: token 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
    User-Agent: Dalvik/2.1.0 (Linux; U; Android 10; Pixel 2 Build/QSR1.210802.001)
    Host: raw.githubusercontent.com
    Connection: Keep-Alive
    Accept-Encoding: gzip
    Response
    HTTP/1.1 404 Not Found
    Connection: keep-alive
    Content-Length: 14
    Content-Security-Policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-Frame-Options: deny
    X-XSS-Protection: 1; mode=block
    Content-Type: text/plain; charset=utf-8
    X-GitHub-Request-Id: E691:14E2F9:E5403:134411:6763FFF0
    Accept-Ranges: bytes
    Date: Thu, 19 Dec 2024 11:13:53 GMT
    Via: 1.1 varnish
    X-Served-By: cache-lcy-eglc8600076-LCY
    X-Cache: MISS
    X-Cache-Hits: 0
    X-Timer: S1734606833.094698,VS0,VE101
    Vary: Authorization,Accept-Encoding,Origin
    Access-Control-Allow-Origin: *
    Cross-Origin-Resource-Policy: cross-origin
    X-Fastly-Request-ID: 9040c8b493d0ce28e709184c1d9fbc66be9b7949
    Expires: Thu, 19 Dec 2024 11:18:53 GMT
    Source-Age: 0
  • 142.250.200.40:443
    ssl.google-analytics.com
    tls
    1.3kB
     6.3kB
     8
    9
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    1.4kB
     5.7kB
     10
    10

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    1.3kB
     1.7kB
     8
    7

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 142.250.187.238:443
    tls, https
    857 B
     40 B
     1
    1
  • 142.250.179.238:443
    android.apis.google.com
    tls
    4.7kB
     7.6kB
     14
    19
  • 208.95.112.1:80
    http://ip-api.com/json
    http
    452 B
     640 B
     5
    4

    HTTP Request

    GET http://ip-api.com/json

    HTTP Response

    200
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    1.3kB
     1.6kB
     7
    6

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    2.6kB
     3.7kB
     17
    10

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 142.250.179.228:443
    tls, https
    455 B
     40 B
     2
    1
  • 142.250.179.228:443
    120 B
     2
  • 142.250.179.228:443
    www.google.com
    tls
    8.3kB
     7.9kB
     24
    27
  • 142.250.179.228:443
    www.google.com
    tls
    1.0kB
     5.0kB
     9
    6
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    1.3kB
     1.7kB
     8
    7

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    1.4kB
     2.7kB
     10
    9

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    1.3kB
     1.7kB
     8
    7

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    1.3kB
     1.7kB
     8
    7

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 185.199.109.133:443
    https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip
    tls, http
    1.3kB
     1.7kB
     8
    7

    HTTP Request

    GET https://raw.githubusercontent.com/dyd1y/tor-files/main/all_tor.zip

    HTTP Response

    404
  • 224.0.0.251:5353
    3.7kB
     11
  • 1.1.1.1:53
    ssl.google-analytics.com
    dns
    70 B
     86 B
     1
    1

    DNS Request

    ssl.google-analytics.com

    DNS Response

    142.250.200.40

  • 1.1.1.1:53
    raw.githubusercontent.com
    dns
    71 B
     135 B
     1
    1

    DNS Request

    raw.githubusercontent.com

    DNS Response

    185.199.109.133
    185.199.111.133
    185.199.110.133
    185.199.108.133

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.179.238

  • 1.1.1.1:53
    ip-api.com
    dns
    56 B
     72 B
     1
    1

    DNS Request

    ip-api.com

    DNS Response

    208.95.112.1

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.rude.stamp/app_DynamicOptDex/oBERE.json
    Filesize

    1.9MB

    MD5

    becbf1d1e2ab80bd84d9abc4a1926784

    SHA1

    499e267e537d1ecc094f60b07e54fca71491c39d

    SHA256

    f8e55182f9092b24aebc857f21fd0abac829749add655e828e7cfd2d01c29d71

    SHA512

    cdd25ed40c372bb3d55fc759dcecaf5839d05d784b6d22fb1c0aaa9760c2a00b20f78e11ce7f8af06b0741d1b7e0bacdac9bcadcef195745e6d4830f9f40067f

    Download Submit

  • /data/data/com.rude.stamp/app_DynamicOptDex/oBERE.json
    Filesize

    1.9MB

    MD5

    0f4d94abed91a3e6cf3f59bdb53e446f

    SHA1

    d3d13ca825171e01f7fad23dfaeb0321eb5a10cf

    SHA256

    876270bb0879a2d6291f9ef75014d6367d0b959ae36f16088134cf9539284234

    SHA512

    262eae496c91948fd1c2096a13165f0ad7b7e64570c40ddcbdcf2dedce55a170d5a1a9cc01568471e36857ee15e21469cde9460e9b826661d420fc4da9eec361

    Download Submit

  • /data/data/com.rude.stamp/app_DynamicOptDex/oat/oBERE.json.cur.prof
    Filesize

    1KB

    MD5

    55e52e639266c57f736e77c4be1b1f13

    SHA1

    1d29064756f442e715b2e5aaeb9bbff7b8959ccb

    SHA256

    d3f6cac154218cd46a07096fc43d1ae9695428067b899033e802963803964abf

    SHA512

    986fea669090447479fc43eb09024b11ad2b2412788130352a8b88e7298325c3777e6490298a5cfba9806ae6439d24bd2b06e52c31d0d568c003e23287d65966

    Download Submit

  • /data/user/0/com.rude.stamp/app_DynamicOptDex/oBERE.json
    Filesize

    5.0MB

    MD5

    10c5c7ee79684a25651ed7acd4004183

    SHA1

    7e9686ffd78e2d112eda3ada566bb09aa439755d

    SHA256

    335fc3d13f9be5844768a4ce80bfd36dec66dc474ac7c34459a3dc3c59858000

    SHA512

    807ded0e6e6cc63ac1b851cdbee8b6534c73757a3153d983aa65f640819b65f1cdba851e1bc690118a87ee3c2579351ddf726a0eb0d2d24cefcfd9a005067702

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.