Malware Analysis Report

2025-08-05 14:35

Sample ID 250702-x4r4hsgj8w
Target 1.1Android.zip
SHA256 9c2315ee103356f1ff232fc59523289ef34fdc1688520e359fb151a43b1b3182
Tags
score
6/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral17

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral19

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral21

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral8

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral9

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral16

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral25

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral10

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral15

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral29

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral28

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral30

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral12

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral13

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral20

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral22

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral24

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral26

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral6

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral23

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral18

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral31

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral7

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral11

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral14

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral27

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral32

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
6/10

SHA256

9c2315ee103356f1ff232fc59523289ef34fdc1688520e359fb151a43b1b3182

Threat Level: Shows suspicious behavior

The file 1.1Android.zip was found to be: Shows suspicious behavior.

Malicious Activity Summary


Attempts to obfuscate APK file format

Declares services with permission to bind to the system

Requests dangerous framework permissions

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2025-07-02 19:26

Signatures

Attempts to obfuscate APK file format

Declares services with permission to bind to the system

Description Indicator Process Target
Required by in-call services to bind with the system. Allows apps to handle aspects of phone calls while they are in progress. android.permission.BIND_INCALL_SERVICE N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to collect component usage statistics. android.permission.PACKAGE_USAGE_STATS N/A N/A

Analysis: behavioral17

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x64-20250619-en

Max time network

29s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.251.30.95:443 tcp
GB 142.250.140.102:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.14:443 android.apis.google.com tcp
GB 172.217.16.234:443 tcp

Files

N/A

Analysis: behavioral19

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x86-arm-20250619-en

Max time network

16s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral21

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-arm64-20250619-en

Max time network

15s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral8

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.180.10:443 tcp
GB 142.250.187.206:443 tcp
GB 142.250.187.206:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp
GB 142.250.187.234:443 tcp

Files

N/A

Analysis: behavioral9

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x64-arm64-20250619-en

Max time network

25s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.187.206:443 tcp
GB 142.250.187.206:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 216.58.201.110:443 android.apis.google.com tcp
AU 1.1.1.1:53 www.youtube.com udp
GB 216.58.201.110:443 www.youtube.com tcp
GB 216.58.201.110:443 www.youtube.com tcp
GB 216.58.201.110:443 www.youtube.com tcp
US 216.239.38.223:443 tcp

Files

N/A

Analysis: behavioral16

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x86-arm-20250619-en

Max time network

26s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 172.217.169.78:443 tcp
GB 172.217.169.78:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 216.58.201.110:443 android.apis.google.com tcp
GB 142.250.200.10:443 tcp

Files

N/A

Analysis: behavioral25

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x86-arm-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 172.217.169.74:443 tcp
GB 142.250.187.238:443 tcp
GB 142.250.187.238:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:29

Platform

win10v2004-20250619-en

Max time kernel

109s

Max time network

145s

Command Line

java -jar "C:\Users\Admin\AppData\Local\Temp\3 Button Navigation Bar 1.0(1).jar"

Signatures

N/A

Processes

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe

java -jar "C:\Users\Admin\AppData\Local\Temp\3 Button Navigation Bar 1.0(1).jar"

Network

Country Destination Domain Proto
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 g.bing.com udp
US 150.171.28.10:443 g.bing.com tcp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 c.pki.goog udp
GB 142.250.179.227:80 c.pki.goog tcp

Files

memory/5636-2-0x000001D20FA50000-0x000001D20FCC0000-memory.dmp

memory/5636-11-0x000001D20E210000-0x000001D20E211000-memory.dmp

memory/5636-12-0x000001D20FA50000-0x000001D20FCC0000-memory.dmp

Analysis: behavioral10

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x86-arm-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral15

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-arm64-20240910-en

Max time network

4s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.200.46:443 tcp
GB 142.250.200.46:443 tcp
N/A 224.0.0.251:5353 udp
AU 1.1.1.1:53 www.youtube.com udp
GB 142.250.180.14:443 www.youtube.com udp
GB 142.250.180.14:443 www.youtube.com tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.129.138:443 android.apis.google.com tcp
GB 142.250.129.138:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral29

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-20240910-en

Max time network

2s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral2

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:29

Platform

win10v2004-20250610-en

Max time kernel

99s

Max time network

139s

Command Line

java -jar "C:\Users\Admin\AppData\Local\Temp\3 Button Navigation Bar 1.0(2).jar"

Signatures

N/A

Processes

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe

java -jar "C:\Users\Admin\AppData\Local\Temp\3 Button Navigation Bar 1.0(2).jar"

Network

Country Destination Domain Proto
US 8.8.8.8:53 g.bing.com udp
US 150.171.27.10:443 g.bing.com tcp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 c.pki.goog udp
GB 142.250.179.227:80 c.pki.goog tcp

Files

memory/5576-2-0x0000021243CD0000-0x0000021243F40000-memory.dmp

memory/5576-11-0x00000212424F0000-0x00000212424F1000-memory.dmp

memory/5576-12-0x0000021243CD0000-0x0000021243F40000-memory.dmp

Analysis: behavioral4

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:28

Platform

android-x86-arm-20240910-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral5

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x64-20250619-en

Max time network

27s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.251.29.95:443 tcp
GB 216.58.204.78:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.180.14:443 android.apis.google.com tcp
GB 142.250.200.42:443 tcp

Files

N/A

Analysis: behavioral28

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x86-arm-20250619-en

Max time network

27s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.46:443 tcp
GB 142.250.200.46:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral30

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x64-arm64-20250619-en

Max time network

5s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 tcp
GB 142.250.187.238:443 android.apis.google.com tcp
GB 142.250.187.238:443 android.apis.google.com tcp
AU 1.1.1.1:53 www.youtube.com udp
GB 142.250.200.14:443 www.youtube.com udp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
US 216.239.32.223:443 tcp

Files

N/A

Analysis: behavioral12

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-arm64-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
AU 1.1.1.1:53 www.youtube.com udp
GB 142.251.30.93:443 www.youtube.com tcp
GB 216.58.204.78:443 www.youtube.com tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
GB 142.250.200.46:443 android.apis.google.com tcp
US 216.239.34.223:443 tcp

Files

N/A

Analysis: behavioral13

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x86-arm-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral20

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-20240910-en

Max time network

1s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.180.10:443 tcp

Files

N/A

Analysis: behavioral22

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:28

Platform

win10v2004-20250610-en

Max time kernel

105s

Max time network

135s

Command Line

java -jar C:\Users\Admin\AppData\Local\Temp\split_config.arm64_v8a.jar

Signatures

N/A

Processes

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe

java -jar C:\Users\Admin\AppData\Local\Temp\split_config.arm64_v8a.jar

Network

Country Destination Domain Proto
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 c.pki.goog udp
GB 142.250.179.227:80 c.pki.goog tcp

Files

memory/64-2-0x0000028BC0500000-0x0000028BC0770000-memory.dmp

memory/64-12-0x0000028BC0500000-0x0000028BC0770000-memory.dmp

memory/64-11-0x0000028BBEAD0000-0x0000028BBEAD1000-memory.dmp

Analysis: behavioral24

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:28

Platform

win10v2004-20250610-en

Max time kernel

103s

Max time network

141s

Command Line

java -jar C:\Users\Admin\AppData\Local\Temp\split_config.xxhdpi.jar

Signatures

N/A

Processes

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe

java -jar C:\Users\Admin\AppData\Local\Temp\split_config.xxhdpi.jar

Network

Country Destination Domain Proto
US 8.8.8.8:53 g.bing.com udp
US 150.171.27.10:443 g.bing.com tcp
GB 2.18.27.82:443 www.bing.com tcp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 c.pki.goog udp
GB 142.250.179.227:80 c.pki.goog tcp

Files

memory/5644-2-0x0000023141F10000-0x0000023142180000-memory.dmp

memory/5644-11-0x0000023140720000-0x0000023140721000-memory.dmp

memory/5644-12-0x0000023141F10000-0x0000023142180000-memory.dmp

Analysis: behavioral26

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.10:443 tcp
GB 142.250.180.14:443 tcp
GB 142.250.180.14:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.180.14:443 android.apis.google.com tcp
GB 216.58.204.74:443 tcp

Files

N/A

Analysis: behavioral6

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-arm64-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.200.46:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.180.14:443 android.apis.google.com tcp
N/A 224.0.0.251:5353 udp
AU 1.1.1.1:53 www.youtube.com udp
GB 142.250.180.14:443 www.youtube.com tcp
GB 142.250.187.238:443 www.youtube.com udp
GB 142.250.187.238:443 www.youtube.com tcp
GB 142.250.180.14:443 www.youtube.com tcp

Files

N/A

Analysis: behavioral23

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:29

Platform

win10v2004-20250610-en

Max time kernel

103s

Max time network

125s

Command Line

java -jar C:\Users\Admin\AppData\Local\Temp\split_config.en.jar

Signatures

N/A

Processes

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe

java -jar C:\Users\Admin\AppData\Local\Temp\split_config.en.jar

Network

Country Destination Domain Proto
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 c.pki.goog udp
GB 142.250.179.227:80 c.pki.goog tcp

Files

memory/2648-2-0x000001E188630000-0x000001E1888A0000-memory.dmp

memory/2648-11-0x000001E186E10000-0x000001E186E11000-memory.dmp

memory/2648-12-0x000001E188630000-0x000001E1888A0000-memory.dmp

Analysis: behavioral3

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:29

Platform

win10v2004-20250619-en

Max time kernel

101s

Max time network

143s

Command Line

java -jar "C:\Users\Admin\AppData\Local\Temp\3 Button Navigation Bar 1.0.jar"

Signatures

N/A

Processes

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe

java -jar "C:\Users\Admin\AppData\Local\Temp\3 Button Navigation Bar 1.0.jar"

Network

Country Destination Domain Proto
GB 2.18.27.76:443 www.bing.com tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 c.pki.goog udp
GB 142.250.179.227:80 c.pki.goog tcp

Files

memory/5496-2-0x000001FA83490000-0x000001FA83700000-memory.dmp

memory/5496-11-0x000001FA81C80000-0x000001FA81C81000-memory.dmp

memory/5496-12-0x000001FA83490000-0x000001FA83700000-memory.dmp

Analysis: behavioral18

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-arm64-20240910-en

Max time network

4s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.46:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.178.14:443 android.apis.google.com tcp
AU 1.1.1.1:53 www.youtube.com udp
GB 142.250.129.93:443 www.youtube.com tcp
GB 142.250.178.14:443 android.apis.google.com tcp
US 216.239.36.223:443 tcp

Files

N/A

Analysis: behavioral31

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-arm64-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
AU 1.1.1.1:53 www.youtube.com udp
GB 216.58.204.78:443 www.youtube.com udp
GB 216.58.204.78:443 www.youtube.com tcp
GB 142.250.187.206:443 www.youtube.com tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral7

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x86-arm-20250619-en

Max time network

28s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral11

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x64-20250619-en

Max time network

28s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.151.95:443 tcp
GB 142.250.187.238:443 tcp
GB 142.250.187.238:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 172.217.169.14:443 android.apis.google.com tcp
GB 172.217.169.42:443 tcp

Files

N/A

Analysis: behavioral14

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x64-20250619-en

Max time network

25s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.117.95:443 tcp
GB 142.250.180.14:443 tcp
GB 142.250.180.14:443 tcp
GB 142.250.180.14:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
GB 216.58.213.10:443 tcp

Files

N/A

Analysis: behavioral27

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:27

Platform

android-x64-arm64-20250619-en

Max time network

27s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.178.14:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp
AU 1.1.1.1:53 www.youtube.com udp
GB 142.250.180.14:443 www.youtube.com udp
GB 142.250.180.14:443 www.youtube.com tcp
GB 142.250.179.238:443 www.youtube.com tcp

Files

N/A

Analysis: behavioral32

Detonation Overview

Submitted

2025-07-02 19:24

Reported

2025-07-02 19:26

Platform

android-x64-20240910-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.10:443 tcp
GB 216.58.212.238:443 tcp
GB 142.250.180.14:443 tcp
GB 216.58.212.206:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.180.14:443 android.apis.google.com tcp

Files

N/A