Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

TASK-MANAGER.apk

android-9-x86

8

TASK-MANAGER.apk

android-10-x64

8

TASK-MANAGER.apk

android-11-x64

8

Analysis

  • max time kernel
    70s
  • max time network
    154s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    17/01/2025, 00:48 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    TASK-MANAGER.apk

  • Size

    256KB

  • MD5

    aff6bce844a656890e3a647a8871c479

  • SHA1

    070c319ac871d9bd63a6af562bd8e5b237e01acf

  • SHA256

    ab5d91a02f508e5e0e9567e1558ce1e006c0e30a6b432bef72842a1adebffbff

  • SHA512

    c7e7b41fc9bcda5fb1c4741bc7ece6d6714265e06b3835a2c307a1a1d279ba109f91d762008fb672f3a90e78cac121163424569f8d6f08f20dcecc0d2f5e59c8

  • SSDEEP

    6144:vie8HiRem77eyFBPxoLZ7ILWFDPLnQ/9UNPIDdjQXvhuN5DuUuF:vi7HiRh6CoV08nI9UNADlQ/h6aBF

Score
8/10
collectioncredential_accessevasionimpactstealthtrojan

Malware Config

Signatures

Processes

  • com.etechd.l3mon
    1⤵
    • Removes its main activity from the application launcher
    • Obtains sensitive information copied to the device clipboard
    • Requests accessing notifications (often used to intercept notifications before users become aware).
    PID:4208

Network

  • flag-us
    DNS
    semanticlocation-pa.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    semanticlocation-pa.googleapis.com
    IN A
    Response
    semanticlocation-pa.googleapis.com
    IN A
    142.250.200.42
    semanticlocation-pa.googleapis.com
    IN A
    172.217.16.234
    semanticlocation-pa.googleapis.com
    IN A
    216.58.204.74
    semanticlocation-pa.googleapis.com
    IN A
    142.250.178.10
    semanticlocation-pa.googleapis.com
    IN A
    216.58.213.10
    semanticlocation-pa.googleapis.com
    IN A
    216.58.201.106
    semanticlocation-pa.googleapis.com
    IN A
    142.250.180.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.179.234
    semanticlocation-pa.googleapis.com
    IN A
    142.250.200.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.187.234
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.74
    semanticlocation-pa.googleapis.com
    IN A
    172.217.169.10
    semanticlocation-pa.googleapis.com
    IN A
    142.250.187.202
    semanticlocation-pa.googleapis.com
    IN A
    216.58.212.202
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.178.14
  • flag-us
    DNS
    www.google.com
    Remote address:
    1.1.1.1:53
    Request
    www.google.com
    IN A
    Response
    www.google.com
    IN A
    142.250.200.4
  • flag-us
    DNS
    update.googleapis.com
    Remote address:
    1.1.1.1:53
    Request
    update.googleapis.com
    IN A
    Response
    update.googleapis.com
    IN A
    172.217.16.227
  • 142.250.200.42:443
    tls, https
    202 B
     40 B
     1
    1
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    240 B
     4
  • 216.58.204.78:443
    tls, https
    858 B
     40 B
     1
    1
  • 142.250.178.14:443
    android.apis.google.com
    tls
    5.1kB
     8.8kB
     22
    23
  • 142.250.200.4:443
    www.google.com
    tls
    1.9kB
     10.4kB
     16
    22
  • 172.217.16.227:443
    update.googleapis.com
    tls
    1.7kB
     6.2kB
     8
    10
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    240 B
     4
  • 10.20.30.40:4488
    180 B
     3
  • 224.0.0.251:5353
    3.7kB
     11
  • 1.1.1.1:53
    semanticlocation-pa.googleapis.com
    dns
    80 B
     304 B
     1
    1

    DNS Request

    semanticlocation-pa.googleapis.com

    DNS Response

    142.250.200.42
    172.217.16.234
    216.58.204.74
    142.250.178.10
    216.58.213.10
    216.58.201.106
    142.250.180.10
    142.250.179.234
    142.250.200.10
    142.250.187.234
    172.217.169.74
    172.217.169.10
    142.250.187.202
    216.58.212.202

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     109 B
     1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.178.14

  • 1.1.1.1:53
    www.google.com
    dns
    60 B
     76 B
     1
    1

    DNS Request

    www.google.com

    DNS Response

    142.250.200.4

  • 1.1.1.1:53
    update.googleapis.com
    dns
    67 B
     83 B
     1
    1

    DNS Request

    update.googleapis.com

    DNS Response

    172.217.16.227

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.