Malware Analysis Report

2025-03-14 21:45

Sample ID 250130-pljqessqgp
Target http://apkpure.com
Tags
google phishing
score
5/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
5/10

Threat Level: Likely benign

The file http://apkpure.com was found to be: Likely benign.

Malicious Activity Summary

google phishing

Detected potential entity reuse from brand GOOGLE.

Checks CPU information

Checks memory information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2025-01-30 12:24

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2025-01-30 12:24

Reported

2025-01-30 12:55

Platform

android-x64-arm64-20240624-en

Max time kernel

1796s

Max time network

1802s

Command Line

com.android.chrome

Signatures

Detected potential entity reuse from brand GOOGLE.

phishing google

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

com.android.chrome

Network

Country Destination Domain Proto
GB 142.250.187.238:443 tcp
GB 142.250.187.238:443 tcp
GB 142.250.187.238:443 tcp
N/A 224.0.0.251:5353 udp
AU 1.1.1.1:53 android.apis.google.com udp
AU 1.1.1.1:53 apkpure.com udp
AU 1.1.1.1:53 accounts.google.com udp
BE 64.233.167.84:443 accounts.google.com tcp
AU 1.1.1.1:53 accounts.google.com udp
AU 1.1.1.1:53 apkpure.com udp
BE 64.233.184.84:443 accounts.google.com tcp
US 104.22.4.119:80 apkpure.com tcp
US 104.22.4.119:443 apkpure.com tcp
AU 1.1.1.1:53 static.apkpure.com udp
AU 1.1.1.1:53 image.winudf.com udp
US 104.22.4.119:443 static.apkpure.com tcp
US 172.67.68.182:443 image.winudf.com tcp
AU 1.1.1.1:53 a.apkpure.com udp
AU 1.1.1.1:53 i.apkpure.com udp
AU 1.1.1.1:53 static-sg.winudf.com udp
AU 1.1.1.1:53 ssl.google-analytics.com udp
US 172.67.68.182:443 static-sg.winudf.com tcp
GB 142.250.200.8:443 ssl.google-analytics.com tcp
US 104.26.9.22:443 static-sg.winudf.com tcp
US 172.67.8.127:443 i.apkpure.com tcp
US 104.22.5.119:443 i.apkpure.com tcp
AU 1.1.1.1:53 googleads.g.doubleclick.net udp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
AU 1.1.1.1:53 download.apkpure.com udp
AU 1.1.1.1:53 cdnjs.cloudflare.com udp
AU 1.1.1.1:53 cdnpure.com udp
US 104.17.24.14:443 cdnjs.cloudflare.com tcp
US 104.17.24.14:443 cdnjs.cloudflare.com tcp
US 104.26.14.200:443 cdnpure.com tcp
US 104.26.14.200:443 cdnpure.com tcp
US 104.22.5.119:443 download.apkpure.com tcp
US 104.26.14.200:443 cdnpure.com tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
AU 1.1.1.1:53 a.cdnpure.com udp
AU 1.1.1.1:53 fundingchoicesmessages.google.com udp
GB 216.58.204.78:443 fundingchoicesmessages.google.com tcp
AU 1.1.1.1:53 r.cdnpure.com udp
AU 1.1.1.1:53 region1.analytics.google.com udp
AU 1.1.1.1:53 stats.g.doubleclick.net udp
AU 1.1.1.1:53 www.google.co.uk udp
US 216.239.34.36:443 region1.analytics.google.com tcp
BE 142.250.110.155:443 stats.g.doubleclick.net tcp
GB 216.58.204.67:443 www.google.co.uk tcp
AU 1.1.1.1:53 ampcid.google.com udp
GB 216.58.201.110:443 ampcid.google.com tcp
GB 216.58.204.78:443 fundingchoicesmessages.google.com tcp
AU 1.1.1.1:53 svibeacon.onezapp.com udp
HK 129.226.106.210:443 svibeacon.onezapp.com tcp
HK 129.226.106.210:443 svibeacon.onezapp.com tcp
HK 129.226.106.210:443 svibeacon.onezapp.com tcp
AU 1.1.1.1:53 update.googleapis.com udp
AU 1.1.1.1:53 ep1.adtrafficquality.google udp
GB 142.250.178.2:443 ep1.adtrafficquality.google tcp
AU 1.1.1.1:53 ep2.adtrafficquality.google udp
GB 172.217.169.65:443 ep2.adtrafficquality.google tcp
AU 1.1.1.1:53 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp
AU 1.1.1.1:53 tpc.googlesyndication.com udp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.178.2:443 ep1.adtrafficquality.google tcp
AU 1.1.1.1:53 redirector.gvt1.com udp
AU 1.1.1.1:53 r3---sn-aigzrn76.gvt1.com udp
GB 173.194.137.72:443 r3---sn-aigzrn76.gvt1.com tcp
AU 1.1.1.1:53 r1---sn-aigzrn7k.gvt1.com udp
GB 173.194.139.6:443 r1---sn-aigzrn7k.gvt1.com tcp
AU 1.1.1.1:53 r1---sn-aigzrnsz.gvt1.com udp
GB 74.125.175.166:443 r1---sn-aigzrnsz.gvt1.com tcp
AU 1.1.1.1:53 r3---sn-aigzrn7z.gvt1.com udp
GB 173.194.135.104:443 r3---sn-aigzrn7z.gvt1.com tcp
AU 1.1.1.1:53 r5---sn-aigzrnse.gvt1.com udp
GB 74.125.168.202:443 r5---sn-aigzrnse.gvt1.com tcp
AU 1.1.1.1:53 r3---sn-aigzrn7s.gvt1.com udp
GB 173.194.129.200:443 r3---sn-aigzrn7s.gvt1.com tcp
AU 1.1.1.1:53 r3---sn-aigzrnsl.gvt1.com udp
GB 74.125.168.232:443 r3---sn-aigzrnsl.gvt1.com tcp
AU 1.1.1.1:53 r5---sn-aigzrnsl.gvt1.com udp
GB 74.125.168.234:443 r5---sn-aigzrnsl.gvt1.com tcp
AU 1.1.1.1:53 r5---sn-aigzrnze.gvt1.com udp
GB 74.125.175.234:443 r5---sn-aigzrnze.gvt1.com tcp
AU 1.1.1.1:53 r4---sn-aigzrn7d.gvt1.com udp
GB 173.194.138.201:443 r4---sn-aigzrn7d.gvt1.com tcp
HK 129.226.106.210:443 svibeacon.onezapp.com tcp
HK 129.226.106.210:443 svibeacon.onezapp.com tcp
AU 1.1.1.1:53 s0.2mdn.net udp
GB 142.250.187.198:443 s0.2mdn.net tcp
AU 1.1.1.1:53 cdn.doubleverify.com udp
GB 142.250.187.198:443 s0.2mdn.net tcp
AU 1.1.1.1:53 googleads4.g.doubleclick.net udp
AU 1.1.1.1:53 cm.g.doubleclick.net udp
AU 1.1.1.1:53 dsum-sec.casalemedia.com udp
GB 2.23.210.98:443 cdn.doubleverify.com tcp
AU 1.1.1.1:53 ib.adnxs.com udp
AU 1.1.1.1:53 cms.quantserve.com udp
GB 142.250.178.2:443 cm.g.doubleclick.net tcp
GB 142.250.178.2:443 cm.g.doubleclick.net tcp
US 104.18.27.193:443 dsum-sec.casalemedia.com tcp
NL 185.89.210.46:443 ib.adnxs.com tcp
AU 1.1.1.1:53 gcm.ctnsnet.com udp
AU 1.1.1.1:53 tr.blismedia.com udp
AU 1.1.1.1:53 d.agkn.com udp
AU 1.1.1.1:53 dis.criteo.com udp
AU 1.1.1.1:53 match.prod.bidr.io udp
GB 142.250.178.2:443 cm.g.doubleclick.net tcp
AU 1.1.1.1:53 onetag-sys.com udp
DE 91.228.74.159:443 cms.quantserve.com tcp
US 35.186.193.173:443 gcm.ctnsnet.com tcp
US 34.96.105.8:443 tr.blismedia.com tcp
IE 52.212.45.94:443 d.agkn.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
IE 52.49.138.0:443 match.prod.bidr.io tcp
DE 51.89.9.252:443 onetag-sys.com tcp
AU 1.1.1.1:53 d17ebhrlbr4s4.cloudfront.net udp
GB 99.86.105.10:443 d17ebhrlbr4s4.cloudfront.net tcp
AU 1.1.1.1:53 tps.doubleverify.com udp
US 130.211.44.5:443 tps.doubleverify.com tcp
AU 1.1.1.1:53 ads.travelaudience.com udp
AU 1.1.1.1:53 pr-bh.ybp.yahoo.com udp
AU 1.1.1.1:53 creativecdn.com udp
AU 1.1.1.1:53 sync.teads.tv udp
NL 185.184.8.90:443 creativecdn.com tcp
US 35.190.0.66:443 ads.travelaudience.com tcp
IE 34.251.248.234:443 pr-bh.ybp.yahoo.com tcp
GB 23.36.249.37:443 sync.teads.tv tcp
NL 185.184.8.90:443 creativecdn.com tcp
GB 142.250.200.36:443 tcp
GB 142.250.200.36:443 tcp
AU 1.1.1.1:53 tpsc-ew1.doubleverify.com udp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
AU 1.1.1.1:53 ade.googlesyndication.com udp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
AU 1.1.1.1:53 syndicatedsearch.goog udp
GB 216.58.213.14:443 syndicatedsearch.goog tcp
AU 1.1.1.1:53 partner.googleadservices.com udp
GB 216.58.201.98:443 partner.googleadservices.com tcp
AU 1.1.1.1:53 clients1.google.com udp
GB 216.58.213.14:443 clients1.google.com tcp
AU 1.1.1.1:53 update.googleapis.com udp
GB 142.250.178.3:443 update.googleapis.com tcp
AU 1.1.1.1:53 cdnjs.cloudflare.com udp
AU 1.1.1.1:53 download.apkpure.com udp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
AU 1.1.1.1:53 static.xx.fbcdn.net udp
GB 163.70.147.23:443 static.xx.fbcdn.net tcp
GB 142.250.179.228:443 www.google.com tcp
AU 1.1.1.1:53 www.google.com udp
GB 142.250.200.4:443 www.google.com tcp
AU 1.1.1.1:53 encrypted-tbn0.gstatic.com udp
GB 142.250.200.14:443 encrypted-tbn0.gstatic.com tcp
AU 1.1.1.1:53 www.google.com udp
GB 142.250.200.2:443 tcp
AU 1.1.1.1:53 lh5.googleusercontent.com udp
GB 142.250.187.193:443 lh5.googleusercontent.com tcp
GB 92.123.128.192:80 www.bing.com tcp
GB 92.123.128.192:80 www.bing.com tcp
GB 92.123.128.192:443 www.bing.com tcp
GB 92.123.128.192:443 www.bing.com tcp
AU 1.1.1.1:53 duckduckgo.com udp
AU 1.1.1.1:53 duckduckgo.com udp
IE 52.142.124.215:443 duckduckgo.com tcp
IE 52.142.124.215:443 duckduckgo.com tcp
AU 1.1.1.1:53 improving.duckduckgo.com udp
AU 1.1.1.1:53 clients1.google.com udp
GB 216.58.204.78:443 clients1.google.com tcp
IE 52.142.124.215:443 improving.duckduckgo.com tcp
AU 1.1.1.1:53 links.duckduckgo.com udp
IE 20.223.54.233:443 links.duckduckgo.com tcp
AU 1.1.1.1:53 external-content.duckduckgo.com udp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.124.215:443 improving.duckduckgo.com tcp
IE 52.142.124.215:443 improving.duckduckgo.com tcp
IE 52.142.124.215:443 improving.duckduckgo.com tcp
AU 1.1.1.1:53 apkpure.com udp
AU 1.1.1.1:53 a.cdnpure.com udp
AU 1.1.1.1:53 static.apkpure.com udp
AU 1.1.1.1:53 cdnjs.cloudflare.com udp
AU 1.1.1.1:53 tpc.googlesyndication.com udp
AU 1.1.1.1:53 a.apkpure.com udp
AU 1.1.1.1:53 cdnpure.com udp
AU 1.1.1.1:53 i.apkpure.com udp
AU 1.1.1.1:53 image.winudf.com udp
AU 1.1.1.1:53 googleads.g.doubleclick.net udp
GB 142.250.200.2:443 googleads.g.doubleclick.net tcp
GB 142.250.200.2:443 googleads.g.doubleclick.net tcp
AU 1.1.1.1:53 svibeacon.onezapp.com udp
HK 129.226.103.123:443 svibeacon.onezapp.com tcp
HK 129.226.103.123:443 svibeacon.onezapp.com tcp
AU 1.1.1.1:53 fundingchoicesmessages.google.com udp
GB 172.217.169.14:443 fundingchoicesmessages.google.com tcp
HK 129.226.103.123:443 svibeacon.onezapp.com tcp
AU 1.1.1.1:53 region1.analytics.google.com udp
AU 1.1.1.1:53 www.google.co.uk udp
US 216.239.32.36:443 region1.analytics.google.com tcp
GB 216.58.212.227:443 www.google.co.uk tcp
GB 172.217.169.14:443 fundingchoicesmessages.google.com tcp
AU 1.1.1.1:53 ep1.adtrafficquality.google udp
GB 172.217.16.226:443 ep1.adtrafficquality.google tcp
AU 1.1.1.1:53 ep2.adtrafficquality.google udp
GB 172.217.169.65:443 ep2.adtrafficquality.google tcp
AU 1.1.1.1:53 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
GB 172.217.16.226:443 ep1.adtrafficquality.google tcp
HK 129.226.103.123:443 svibeacon.onezapp.com tcp
HK 129.226.103.123:443 svibeacon.onezapp.com tcp
HK 129.226.103.123:443 svibeacon.onezapp.com tcp
AU 1.1.1.1:53 download.apkpure.com udp
AU 1.1.1.1:53 t3.cdnpure.com udp
AU 1.1.1.1:53 accounts.google.com udp
BE 64.233.166.84:443 accounts.google.com tcp
AU 1.1.1.1:53 www.googletagservices.com udp
GB 142.250.187.226:443 www.googletagservices.com tcp
AU 1.1.1.1:53 securepubads.g.doubleclick.net udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
AU 1.1.1.1:53 cdn.taboola.com udp
US 151.101.65.44:443 cdn.taboola.com tcp
AU 1.1.1.1:53 d.apkpure.com udp
AU 1.1.1.1:53 2f9b54e829e167ae0818f8fd2d24bb9f.safeframe.googlesyndication.com udp
GB 216.58.213.1:443 2f9b54e829e167ae0818f8fd2d24bb9f.safeframe.googlesyndication.com tcp
AU 1.1.1.1:53 beacon.taboola.com udp
AU 1.1.1.1:53 trc.taboola.com udp
AU 1.1.1.1:53 d-23.winudf.com udp
DE 51.75.147.148:443 d-23.winudf.com tcp
US 151.101.65.44:443 trc.taboola.com tcp
AU 1.1.1.1:53 gum.criteo.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
AU 1.1.1.1:53 images.taboola.com udp
AU 1.1.1.1:53 15.taboola.com udp
AU 1.1.1.1:53 sync.taboola.com udp
AU 1.1.1.1:53 cds.taboola.com udp
NL 141.226.228.48:443 sync.taboola.com tcp
US 141.226.224.32:443 cds.taboola.com tcp
AU 1.1.1.1:53 am-wf.taboola.com udp
AU 1.1.1.1:53 vidstat.taboola.com udp
NL 141.226.228.48:443 am-wf.taboola.com tcp
AU 1.1.1.1:53 www.temu.com udp
US 172.64.144.50:443 www.temu.com tcp
AU 1.1.1.1:53 imprammp.taboola.com udp
AU 1.1.1.1:53 am-vid-events.taboola.com udp
AU 1.1.1.1:53 am-match.taboola.com udp
AU 1.1.1.1:53 am-trc-events.taboola.com udp
AU 1.1.1.1:53 match.adsrvr.org udp
AU 1.1.1.1:53 pr-bh.ybp.yahoo.com udp
US 15.197.193.217:443 match.adsrvr.org tcp
IE 34.243.141.86:443 pr-bh.ybp.yahoo.com tcp
AU 1.1.1.1:53 ups.analytics.yahoo.com udp
AU 1.1.1.1:53 eus.rubiconproject.com udp
GB 87.248.114.12:443 ups.analytics.yahoo.com tcp
GB 92.123.242.2:443 eus.rubiconproject.com tcp
AU 1.1.1.1:53 token.rubiconproject.com udp
NL 69.173.156.148:443 token.rubiconproject.com tcp
AU 1.1.1.1:53 pixel-us-east.rubiconproject.com udp
US 69.173.146.5:443 pixel-us-east.rubiconproject.com tcp
AU 1.1.1.1:53 cm.g.doubleclick.net udp
AU 1.1.1.1:53 s.amazon-adsystem.com udp
AU 1.1.1.1:53 pixel.rubiconproject.com udp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
AU 1.1.1.1:53 aax-eu.amazon-adsystem.com udp
AU 1.1.1.1:53 match.prod.bidr.io udp
GB 172.217.169.66:443 cm.g.doubleclick.net tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
US 98.82.157.231:443 s.amazon-adsystem.com tcp
IE 52.214.52.104:443 match.prod.bidr.io tcp
IE 54.239.33.159:443 aax-eu.amazon-adsystem.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
AU 1.1.1.1:53 px.ads.linkedin.com udp
US 13.107.42.14:443 px.ads.linkedin.com tcp
AU 1.1.1.1:53 live.primis.tech udp
US 98.82.157.231:443 s.amazon-adsystem.com tcp
GB 18.245.187.42:443 live.primis.tech tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
AU 1.1.1.1:53 prebid.a-mo.net udp
AU 1.1.1.1:53 wf.taboola.com udp
AU 1.1.1.1:53 sync.ipredictive.com udp
NL 163.5.194.37:443 prebid.a-mo.net tcp
AU 1.1.1.1:53 ib.adnxs.com udp
US 34.238.70.60:443 sync.ipredictive.com tcp
AU 1.1.1.1:53 match.sharethrough.com udp
NL 185.89.210.46:443 ib.adnxs.com tcp
AU 1.1.1.1:53 sync-gdpr.intentiq.com udp
AU 1.1.1.1:53 pixel.tapad.com udp
DE 18.184.119.72:443 match.sharethrough.com tcp
GB 18.245.253.80:443 sync-gdpr.intentiq.com tcp
US 34.111.113.62:443 pixel.tapad.com tcp
DE 18.184.119.72:443 match.sharethrough.com tcp
AU 1.1.1.1:53 prg.smartadserver.com udp
AU 1.1.1.1:53 hbopenbid.pubmatic.com udp
FR 164.132.25.176:443 prg.smartadserver.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
FR 164.132.25.176:443 prg.smartadserver.com tcp
AU 1.1.1.1:53 x.bidswitch.net udp
AU 1.1.1.1:53 us-u.openx.net udp
NL 35.214.136.108:443 x.bidswitch.net tcp
US 35.244.159.8:443 us-u.openx.net tcp
AU 1.1.1.1:53 sync-t1.taboola.com udp
AU 1.1.1.1:53 c1.adform.net udp
DK 37.157.4.29:443 c1.adform.net tcp
AU 1.1.1.1:53 image8.pubmatic.com udp
NL 198.47.127.18:443 image8.pubmatic.com tcp
AU 1.1.1.1:53 image2.pubmatic.com udp
GB 185.64.191.210:443 image2.pubmatic.com tcp
AU 1.1.1.1:53 creativecdn.com udp
NL 185.184.8.90:443 creativecdn.com tcp
AU 1.1.1.1:53 ads.pubmatic.com udp
GB 2.23.204.244:443 ads.pubmatic.com tcp
AU 1.1.1.1:53 image6.pubmatic.com udp
NL 198.47.127.19:443 image6.pubmatic.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
AU 1.1.1.1:53 pixel.onaudience.com udp
AU 1.1.1.1:53 uipglob.semasio.net udp
AU 1.1.1.1:53 mwzeom.zeotap.com udp
FR 54.38.113.7:443 pixel.onaudience.com tcp
DK 77.243.51.121:443 uipglob.semasio.net tcp
US 104.22.51.98:443 mwzeom.zeotap.com tcp
AU 1.1.1.1:53 simage2.pubmatic.com udp
AU 1.1.1.1:53 um.simpli.fi udp
NL 35.204.74.118:443 um.simpli.fi tcp
AU 1.1.1.1:53 image4.pubmatic.com udp
GB 185.64.190.81:443 image4.pubmatic.com tcp
AU 1.1.1.1:53 ps.eyeota.net udp
DE 3.120.214.218:443 ps.eyeota.net tcp
AU 1.1.1.1:53 simage4.pubmatic.com udp
AU 1.1.1.1:53 sync.crwdcntrl.net udp
NL 185.89.210.46:443 ib.adnxs.com tcp
IE 108.128.47.81:443 sync.crwdcntrl.net tcp
AU 1.1.1.1:53 sync.1rx.io udp
AU 1.1.1.1:53 cms.quantserve.com udp
NL 46.228.174.117:443 sync.1rx.io tcp
DE 91.228.74.244:443 cms.quantserve.com tcp
AU 1.1.1.1:53 ad.turn.com udp
NL 46.228.164.11:443 ad.turn.com tcp
GB 142.250.187.238:443 tcp
AU 1.1.1.1:53 config.unityads.unity3d.com udp
US 34.110.229.214:443 config.unityads.unity3d.com tcp
AU 1.1.1.1:53 webview.unityads.unity3d.com udp
GB 18.165.227.39:443 webview.unityads.unity3d.com tcp
AU 1.1.1.1:53 loowz.com udp
US 195.179.237.72:80 loowz.com tcp
US 195.179.237.72:443 loowz.com tcp
AU 1.1.1.1:53 publisher-config.unityads.unity3d.com udp
US 34.110.229.214:443 publisher-config.unityads.unity3d.com tcp
AU 1.1.1.1:53 thind.unityads.unity3d.com udp
US 34.107.172.168:443 thind.unityads.unity3d.com tcp
US 34.107.172.168:443 thind.unityads.unity3d.com tcp
AU 1.1.1.1:53 auction.unityads.unity3d.com udp
US 34.110.184.100:443 auction.unityads.unity3d.com tcp
AU 1.1.1.1:53 assets.mintegral.com udp
GB 18.245.162.85:443 assets.mintegral.com tcp
AU 1.1.1.1:53 httpkafka.unityads.unity3d.com udp
US 35.244.205.3:443 httpkafka.unityads.unity3d.com tcp
US 34.110.229.214:443 publisher-config.unityads.unity3d.com tcp
US 35.244.205.3:443 httpkafka.unityads.unity3d.com tcp
AU 1.1.1.1:53 events.mz.unity3d.com udp
US 34.117.123.243:443 events.mz.unity3d.com tcp
US 34.117.123.243:443 events.mz.unity3d.com tcp
AU 1.1.1.1:53 gateway.unityads.unity3d.com udp
US 34.117.123.243:443 events.mz.unity3d.com tcp
US 34.117.123.243:443 events.mz.unity3d.com tcp
AU 1.1.1.1:53 vg-ali-mtgtracking-adx-k8s.rayjump.com udp
US 34.149.76.49:443 gateway.unityads.unity3d.com tcp
US 47.253.70.177:443 vg-ali-mtgtracking-adx-k8s.rayjump.com tcp
US 34.110.184.100:443 auction.unityads.unity3d.com tcp
GB 18.245.162.85:443 assets.mintegral.com tcp
AU 1.1.1.1:53 newplayable.mintegral.com udp
GB 18.244.179.78:443 newplayable.mintegral.com tcp
GB 18.244.179.78:443 newplayable.mintegral.com tcp
GB 18.244.179.78:443 newplayable.mintegral.com tcp
AU 1.1.1.1:53 analytics-h5.rayjump.com udp
US 34.117.255.242:443 analytics-h5.rayjump.com tcp
US 34.117.255.242:443 analytics-h5.rayjump.com tcp
US 34.117.255.242:443 analytics-h5.rayjump.com tcp
GB 18.245.162.85:443 assets.mintegral.com tcp
AU 1.1.1.1:53 net.rayjump.com udp
US 34.117.255.242:443 analytics-h5.rayjump.com tcp
US 34.117.255.242:443 analytics-h5.rayjump.com tcp
GB 18.245.162.85:443 assets.mintegral.com tcp
US 34.117.255.242:443 analytics-h5.rayjump.com tcp
US 34.54.216.218:443 net.rayjump.com tcp
US 47.253.70.177:443 vg-ali-mtgtracking-adx-k8s.rayjump.com tcp
AU 1.1.1.1:53 cdn-adn-https-new.mtgglobals.com udp
AU 1.1.1.1:53 nl-gcp-ad-track-sdk-europe-west4-c.mtgglobals.com udp
NL 34.1.238.35:443 nl-gcp-ad-track-sdk-europe-west4-c.mtgglobals.com tcp
NL 34.1.238.35:443 nl-gcp-ad-track-sdk-europe-west4-c.mtgglobals.com tcp
GB 18.165.227.37:443 cdn-adn-https-new.mtgglobals.com tcp
GB 18.165.227.37:443 cdn-adn-https-new.mtgglobals.com tcp
GB 18.165.227.37:443 cdn-adn-https-new.mtgglobals.com tcp
GB 18.165.227.37:443 cdn-adn-https-new.mtgglobals.com tcp
GB 18.165.227.37:443 cdn-adn-https-new.mtgglobals.com tcp
GB 18.165.227.37:443 cdn-adn-https-new.mtgglobals.com tcp
US 34.117.123.243:443 events.mz.unity3d.com tcp
US 34.117.123.243:443 events.mz.unity3d.com tcp
US 34.117.123.243:443 events.mz.unity3d.com tcp
US 47.253.70.177:443 vg-ali-mtgtracking-adx-k8s.rayjump.com tcp
US 34.110.184.100:443 auction.unityads.unity3d.com tcp
AU 1.1.1.1:53 d1om9znyumzhxf.cloudfront.net udp
GB 18.165.227.109:443 d1om9znyumzhxf.cloudfront.net tcp
GB 18.165.227.109:443 d1om9znyumzhxf.cloudfront.net tcp
GB 18.165.227.109:443 d1om9znyumzhxf.cloudfront.net tcp
GB 18.165.227.109:443 d1om9znyumzhxf.cloudfront.net tcp
GB 18.165.227.109:443 d1om9znyumzhxf.cloudfront.net tcp
GB 18.165.227.109:443 d1om9znyumzhxf.cloudfront.net tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.206:443 android.apis.google.com tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
BE 74.125.133.188:5228 tcp
AU 1.1.1.1:53 www.google.com udp
GB 216.58.213.4:443 www.google.com tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 172.217.169.78:443 android.apis.google.com tcp
GB 172.217.169.78:443 android.apis.google.com tcp
GB 172.217.169.78:443 android.apis.google.com tcp
AU 1.1.1.1:53 accounts.google.com udp
BE 66.102.1.84:443 accounts.google.com tcp
AU 1.1.1.1:53 update.googleapis.com udp

Files

files/dom-0.html

MD5 070e4738646820b31f6d9eeff22192f4
SHA1 facb20615818b8e6bbea3f463d04db92751a74ab
SHA256 e1d0242bbfe54800bb9a0d78368785b29f5e4a953e6a6d76f274296c4cdeafdd
SHA512 98fe93878b893e430fc80f6a3fd2fa57ecaa4147237749e8a8b1b3be263071ea1e608ce02942677c42e9201943c6eae07701d32b6c44d8654387cc2ca621fce5

/storage/emulated/0/Download/.pending-1738845135-Among Us Fake Video Call_1_APKPure.apk (deleted)

MD5 4bedb241cb35018d54efb11c1512c282
SHA1 a7150730c2edfd4f7a6d103c6523ea9eaed102d3
SHA256 7bf49fb3dd93998401d10a9b9d67db03be79f15186eec74a106c17b4d05aa8fe
SHA512 da82cb511c6a72aa38dab9d2985b328f83731f68db06c372270dd129bb1784c168256535f7629ab02c4eaaea9d2ddc53876c72b1549bd6b205a157972bf65b5d

/storage/emulated/0/Download/.pending-1738845135-Among Us Fake Video Call_1_APKPure.apk

MD5 a66c19a872ad1c9e575f6c9478b8837f
SHA1 7b3b5fa4a4fe4f4306677ec69451d0f409d71ee3
SHA256 427485a2f8ed578099f6740cc4c04ff2368b630c4253c48dd5e874b12dac625a
SHA512 7634e7491f1e9b4309a3bc021a9452ee821ab8701f1336693459d58cf1011bc970b69314ad1f8694db16bea2c98012a6296fb178519e7dc4eb3fa0634bc0bdb0