38b79473343da89a92dde86a96cb6be64328375ad018d3d5d5f8d3f2d67e78c1 | Triage

Analysis

max time kernel
61s
max time network
156s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
17/01/2025, 16:17 UTC

Sharing

Report Analysis Logs

General

Target

com.wobblylife.app.apk
Size

26.9MB
MD5

7a3bcfc59a595bafdd2728f603e19134
SHA1

167828601eff8b0bc4af3feb8462645fde15850e
SHA256

38b79473343da89a92dde86a96cb6be64328375ad018d3d5d5f8d3f2d67e78c1
SHA512

d956ed1814fd239afcb2e177b4035d030c0fcb6d6506419f6d1ee4711fb3fc0f4947414e977c89e4b133b1ef316601557c78fedd9f02808b94340d43509f7e34
SSDEEP

786432:tggZPHM3ubQYhx5i/LudfYBm5ZwtYewas2iMm0:tggZPs345GLGY7Ceg2im

Score

1^/10

Malware Config

Signatures

com.wobblylife.app
1⤵
PID:4507

Network

DNS

ssl.google-analytics.com

Remote address:

1.1.1.1:53

Request

ssl.google-analytics.com

IN A

Response

ssl.google-analytics.com

IN A

142.250.187.232
DNS

android.apis.google.com

Remote address:

1.1.1.1:53

Request

android.apis.google.com

IN A

Response

android.apis.google.com

IN CNAME

clients.l.google.com

clients.l.google.com

IN A

172.217.16.238

142.250.187.232:443

ssl.google-analytics.com

tls

1.8kB
6.3kB
15
10
142.250.187.206:443

tls, https

1.8kB
40 B
2
1
142.250.187.206:443

tls, https

920 B
40 B
1
1
172.217.16.238:443

android.apis.google.com

tls

5.9kB
10.1kB
23
22
142.250.187.228:443

tls, https

845 B
40 B
2
1
142.250.187.228:443

www.google.com

tls

11.7kB
12.0kB
35
34

224.0.0.251:5353

3.7kB
11
1.1.1.1:53

ssl.google-analytics.com

dns

70 B
86 B
1
1

DNS Request

ssl.google-analytics.com

DNS Response

142.250.187.232
1.1.1.1:53

android.apis.google.com

dns

69 B
109 B
1
1

DNS Request

android.apis.google.com

DNS Response

172.217.16.238

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads