Overview

overview

10

Static

static

10

ready.apk

android-10-x64

7

ready.apk

android-11-x64

7

ready.apk

android-13-x64

7

ready.apk

android-9-x86

7

Analysis

  • max time kernel
    1s
  • max time network
    152s
  • platform
    android-10_x64
  • resource
    android-x64-20240910-en
  • resource tags

    arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
  • submitted
    28/03/2025, 19:20 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ready.apk

  • Size

    4.4MB

  • MD5

    b2dfed5dcb6dd9d35dae33e2abd8dd3e

  • SHA1

    6d6cf1497a24f565cda402b6ff1aa68f3ecefbf9

  • SHA256

    fa1039e2f95d9f7931a092a3d0d56ddda607565ee0b95fb98cf039f8f2a622b4

  • SHA512

    5be45e39bc3f36362b7f591932968e2be4620b82c100d16eb7f8da3dd69342989110a67c4dc3afa780361ebbf0c2013671bc382bcd3d68e1f7ee023c4b83c523

  • SSDEEP

    98304:8yDoHMkXGqH6rGF3VQ98t2mzDzBBTm0tgMYj:8eoskgeQKBzvt2

Score
7/10
bankerdiscovery

Malware Config

Signatures

Processes

  • germany.contrast.flag
    1⤵
      PID:5163

    Network

    • flag-au
      DNS
      android.apis.google.com
      Remote address:
      1.1.1.1:53
      Request
      android.apis.google.com
      IN A
      Response
      android.apis.google.com
      IN CNAME
      clients.l.google.com
      clients.l.google.com
      IN A
      142.250.200.46
    • flag-au
      DNS
      semanticlocation-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      semanticlocation-pa.googleapis.com
      IN A
      Response
      semanticlocation-pa.googleapis.com
      IN A
      172.217.169.42
      semanticlocation-pa.googleapis.com
      IN A
      142.250.178.10
      semanticlocation-pa.googleapis.com
      IN A
      142.250.179.234
      semanticlocation-pa.googleapis.com
      IN A
      142.250.187.202
      semanticlocation-pa.googleapis.com
      IN A
      172.217.16.234
      semanticlocation-pa.googleapis.com
      IN A
      216.58.212.202
      semanticlocation-pa.googleapis.com
      IN A
      142.250.187.234
      semanticlocation-pa.googleapis.com
      IN A
      216.58.201.106
      semanticlocation-pa.googleapis.com
      IN A
      142.250.200.42
      semanticlocation-pa.googleapis.com
      IN A
      216.58.213.10
      semanticlocation-pa.googleapis.com
      IN A
      142.250.180.10
      semanticlocation-pa.googleapis.com
      IN A
      172.217.169.74
      semanticlocation-pa.googleapis.com
      IN A
      142.250.200.10
      semanticlocation-pa.googleapis.com
      IN A
      216.58.204.74
    • flag-au
      DNS
      www.google.com
      Remote address:
      1.1.1.1:53
      Request
      www.google.com
      IN A
      Response
      www.google.com
      IN A
      216.58.204.68
    • flag-au
      DNS
      g.tenor.com
      Remote address:
      1.1.1.1:53
      Request
      g.tenor.com
      IN A
      Response
      g.tenor.com
      IN CNAME
      tenor.googleapis.com
      tenor.googleapis.com
      IN A
      142.250.178.10
      tenor.googleapis.com
      IN A
      216.58.201.106
      tenor.googleapis.com
      IN A
      216.58.204.74
      tenor.googleapis.com
      IN A
      216.58.212.202
      tenor.googleapis.com
      IN A
      172.217.169.42
      tenor.googleapis.com
      IN A
      142.250.179.234
      tenor.googleapis.com
      IN A
      142.250.180.10
      tenor.googleapis.com
      IN A
      142.250.187.202
      tenor.googleapis.com
      IN A
      142.250.187.234
      tenor.googleapis.com
      IN A
      142.250.200.10
      tenor.googleapis.com
      IN A
      142.250.200.42
      tenor.googleapis.com
      IN A
      172.217.16.234
    • flag-au
      DNS
      quality-storm.gl.at.ply.gg
      Remote address:
      1.1.1.1:53
      Request
      quality-storm.gl.at.ply.gg
      IN A
      Response
      quality-storm.gl.at.ply.gg
      IN A
      147.185.221.27
    • 216.58.201.110:443
      tls, https
      914 B
       40 B
       1
      1
    • 216.58.201.110:443
      tls, https
      914 B
       40 B
       1
      1
    • 216.58.201.110:443
      tls, https
      914 B
       40 B
       1
      1
    • 216.58.201.110:443
      tls, https
      914 B
       40 B
       1
      1
    • 142.250.200.46:443
      android.apis.google.com
      tls
      2.1kB
       6.0kB
       12
      12
    • 142.250.200.46:443
      android.apis.google.com
      520 B
       10
    • 172.217.169.66:443
      468 B
       9
    • 74.125.133.188:5228
      364 B
       7
    • 216.58.213.4:443
      520 B
       10
    • 172.217.169.42:443
      semanticlocation-pa.googleapis.com
      tls
      1.8kB
       5.9kB
       12
      11
    • 142.250.200.46:443
      android.apis.google.com
      tls
      10.7kB
       12.3kB
       40
      35
    • 216.58.204.68:443
      www.google.com
      tls
      7.6kB
       6.8kB
       22
      23
    • 142.250.178.10:443
      g.tenor.com
      tls
      1.8kB
       8.0kB
       13
      14
    • 147.185.221.27:5329
      quality-storm.gl.at.ply.gg
      3.3kB
       59.5kB
       63
      53
    • 224.0.0.251:5353
      3.9kB
       13
    • 1.1.1.1:53
      android.apis.google.com
      dns
      69 B
       109 B
       1
      1

      DNS Request

      android.apis.google.com

      DNS Response

      142.250.200.46

    • 1.1.1.1:53
      semanticlocation-pa.googleapis.com
      dns
      80 B
       304 B
       1
      1

      DNS Request

      semanticlocation-pa.googleapis.com

      DNS Response

      172.217.169.42
      142.250.178.10
      142.250.179.234
      142.250.187.202
      172.217.16.234
      216.58.212.202
      142.250.187.234
      216.58.201.106
      142.250.200.42
      216.58.213.10
      142.250.180.10
      172.217.169.74
      142.250.200.10
      216.58.204.74

    • 1.1.1.1:53
      www.google.com
      dns
      60 B
       76 B
       1
      1

      DNS Request

      www.google.com

      DNS Response

      216.58.204.68

    • 216.58.204.68:443
      www.google.com
      https
      1.5kB
       49 B
       2
      1
    • 1.1.1.1:53
      g.tenor.com
      dns
      57 B
       280 B
       1
      1

      DNS Request

      g.tenor.com

      DNS Response

      142.250.178.10
      216.58.201.106
      216.58.204.74
      216.58.212.202
      172.217.169.42
      142.250.179.234
      142.250.180.10
      142.250.187.202
      142.250.187.234
      142.250.200.10
      142.250.200.42
      172.217.16.234

    • 1.1.1.1:53
      quality-storm.gl.at.ply.gg
      dns
      72 B
       88 B
       1
      1

      DNS Request

      quality-storm.gl.at.ply.gg

      DNS Response

      147.185.221.27

    MITRE ATT&CK Mobile v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.