{"report_id":"4a6ba641-fb3e-42c3-9d7a-db3f479ff02a","version":6,"status":"done","tags":[],"date":"2024-01-06T01:59:28Z","url":{"schema":"http","addr":"r2-static-assets.androidapksfree.com/sdata/6efce1c18baa8aa1223d5abbeb6ca3fc/com.facebook.katana_v443.0.0.23.229-447626277_Android-8.0.apk","fqdn":"r2-static-assets.androidapksfree.com","domain":"androidapksfree.com","tld":"com"},"ip":{"addr":"172.67.0.247","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"about:privatebrowsing"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T04:54:35Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r2-static-assets.androidapksfree.com","ip":{"addr":"104.20.19.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-07-21","domain_rank":545867,"first_seen":"2019-11-13 15:31:23","last_seen":"2024-01-02 08:29:48","alert_count":1,"request_count":1,"received_data":59541508,"sent_data":603,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"6efce1c18baa8aa1223d5abbeb6ca3fc","sha1":"12ce297a9cc470958fbb532598343e922ab8ea1e","sha256":"345786aaeb8ca46e1c6e59a6aed79166eb6f47bb80f35f6a62ea53427d0b5ab6","sha512":"2537a3bfbef17e05256984f3557f18462dab6178f0a68471eceb5f4d23139209342043b7c6e99e18b3571764a9cda2b89a086a6b7ee650e8c1f76a2a2d1f84ec","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","size":59540717,"url":{"schema":"https","addr":"r2-static-assets.androidapksfree.com/sdata/6efce1c18baa8aa1223d5abbeb6ca3fc/com.facebook.katana_v443.0.0.23.229-447626277_Android-8.0.apk","fqdn":"r2-static-assets.androidapksfree.com","domain":"androidapksfree.com","tld":"com"},"ip":{"addr":"104.20.19.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"archive":null,"alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2023-12-15","alert":"Scan result 2/62","trigger":"345786aaeb8ca46e1c6e59a6aed79166eb6f47bb80f35f6a62ea53427d0b5ab6","verdict":"suspicious","severity":"","comment":"suspicious - 2/62","link":"https://www.virustotal.com/gui/file/345786aaeb8ca46e1c6e59a6aed79166eb6f47bb80f35f6a62ea53427d0b5ab6","meta":null}]}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"r2-static-assets.androidapksfree.com/sdata/6efce1c18baa8aa1223d5abbeb6ca3fc/com.facebook.katana_v443.0.0.23.229-447626277_Android-8.0.apk","fqdn":"r2-static-assets.androidapksfree.com","domain":"androidapksfree.com","tld":"com"},"ip":{"addr":"104.20.19.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-01-06T01:59:03.332Z","timestamp":1704506343332,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r2-static-assets.androidapksfree.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 14 Nov 2023 03:04:15 GMT","end":"Mon, 12 Feb 2024 03:04:14 GMT"},"fingerprint":{"sha1":"AA:2C:72:D3:98:FA:27:40:32:E1:BE:50:72:21:3E:B2:5A:5A:D5:3A","sha256":"E7:FC:92:15:3B:5F:83:B9:C1:69:A0:F3:F1:06:79:C7:68:BE:74:7E:C6:C4:5D:BC:F9:30:35:FB:2E:33:71:C5"}}},"request":{"raw":"GET /sdata/6efce1c18baa8aa1223d5abbeb6ca3fc/com.facebook.katana_v443.0.0.23.229-447626277_Android-8.0.apk HTTP/1.1\r\nHost: r2-static-assets.androidapksfree.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 06 Jan 2024 01:59:03 GMT\r\ncontent-type: application/vnd.android.package-archive\r\ncontent-length: 59540717\r\ncf-ray: 84105c05cec6b527-OSL\r\ncf-cache-status: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=31536000\r\netag: \"86526360de3e707941b739efd421e264-4\"\r\nlast-modified: Sat, 09 Dec 2023 17:44:04 GMT\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nx-amz-meta-s3cmd-attrs: md5:6efce1c18baa8aa1223d5abbeb6ca3fc\r\nx-amz-request-id: tx00000b4fdbee12a0916e0-006593aac4-3c28cb3d-fra1a\r\nx-do-cdn-uuid: 387dec5b-91d8-49d6-93d7-9ee0031ee82b\r\nx-envoy-upstream-healthchecked-cluster: \r\nx-rgw-object-type: Normal\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":59540717,"size_decoded":59540717,"mime_type":"application/vnd.android.package-archive","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","md5":"6efce1c18baa8aa1223d5abbeb6ca3fc","sha1":"12ce297a9cc470958fbb532598343e922ab8ea1e","sha256":"345786aaeb8ca46e1c6e59a6aed79166eb6f47bb80f35f6a62ea53427d0b5ab6","sha512":"2537a3bfbef17e05256984f3557f18462dab6178f0a68471eceb5f4d23139209342043b7c6e99e18b3571764a9cda2b89a086a6b7ee650e8c1f76a2a2d1f84ec","ssdeep":"1572864:XRHZNmIlo2+IkjJvGWkGvoy8OYtOZ0ZwO+HLNRIo4IyMpNoinIYyYgVx2C:hZQIlj3AG0oy8bsZ0CxNCxeIOgd","tlshash":"a4d7239db3989831dc33a9318cd02ee537594d214e17d287290832fe6e739f68f466da","first_seen":"2024-08-20T13:49:30.396428Z","last_seen":"2024-08-20T13:49:30.396428Z","times_seen":1,"resource_available":false,"data":null}},"time_used":8357,"timings":{"blocked":-1,"dns":0,"connect":10,"send":0,"wait":55,"receive":8278,"ssl":12},"alerts":{"ids":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2023-12-15","alert":"Scan result 2/62","trigger":"345786aaeb8ca46e1c6e59a6aed79166eb6f47bb80f35f6a62ea53427d0b5ab6","verdict":"suspicious","severity":"","comment":"suspicious - 2/62","link":"https://www.virustotal.com/gui/file/345786aaeb8ca46e1c6e59a6aed79166eb6f47bb80f35f6a62ea53427d0b5ab6","meta":null}],"urlquery":null}}]}