flash

be.sciensano.coronalert_1.11.2.apk

Status: finished
Submission Time: 30.01.2021 12:57:56
Suspicious

Comments

Tags

Details

  • Analysis ID:
    346306
  • API (Web) ID:
    594536
  • Analysis Started:
    30.01.2021 12:58:03
  • Analysis Finished:
    30.01.2021 13:21:11
  • MD5:
    e6328f186a98bcd7ce7c5521a6c16bc4
  • SHA1:
    b9ff85fd796241f33ad1a8f2180a9ff9a48277c0
  • SHA256:
    801e3dacee4bb3954097bb8af4c94a49f18aa9a2527a8300e2c835f7acff0434
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports
New

System: Android 9 (Pie)

suspicious
30/100

System: Android 9 (Pie)
Run Condition: No behavior, retry without instrumentation

suspicious
30/100

IPs

IP Country Detection
172.217.17.99
United States
8.8.4.4
United States
172.217.168.206
United States
Click to see the 13 hidden entries
172.217.17.138
United States
216.58.208.106
United States
172.217.168.234
United States
172.217.19.202
United States
216.239.35.0
United States
142.250.27.99
United States
13.226.169.40
United States
142.250.27.103
United States
172.217.17.131
United States
172.217.20.74
United States
172.217.20.110
United States
172.217.20.67
United States
172.217.17.42
United States

Domains

Name IP Detection
time.android.com
216.239.35.0

URLs

Name Detection
https://android.googlesource.com/toolchain/llvm
http://schemas.android.com/apk/res/android
http://schemas.android.com/apk/res/android$$layout/include_tracing_status_card_0
Click to see the 19 hidden entries
https://github.com/DP-3T/documents.
https://developer.android.com/reference/com/google/android/play/core/splitinstall/model/SplitInstall
https://www.gegevensbeschermingsautoriteit.be
http://schemas.android.com/apk/res/android--layout/include_submission_done_further_info_0
http://schemas.android.com/aapt
https://c19-submission-prd.ixor.be
https://www.autoriteprotectiondonnees.be
https://developer.android.com/reference/com/google/android/play/core/install/model/InstallErrorCode#
http://schemas.android.com/apk/res-auto
http://www.autoriteprotectiondonnees.be
https://c19statcdn-prd.ixor.be
http://www.dataprotectionauthority.be
https://android.googlesource.com/toolchain/clang
https://coronalert-prd.ixor.be
http://www.gegevensbeschermingsautoriteit.be
https://developer.android.com/reference/com/google/android/play/core/assetpacks/model/AssetPackError
https://www.dataprotectionauthority.be
https://c19-verification-prd.ixor.be
https://c19distcdn-prd.ixor.be

Dropped files

Name File Type Hashes Detection
/data/user/0/be.sciensano.coronalert/cache/http_cache/journal.tmp
ASCII text, with no line terminators
#
/data/user/0/be.sciensano.coronalert/shared_prefs/shared_preferences_cwa.xml
XML 1.0 document text
#