{"report_id":"6ce9e592-4364-4fcc-8280-d2498fd5ed82","version":6,"status":"done","tags":[],"date":"2023-09-09T16:01:55Z","url":{"schema":"http","addr":"r2-static-assets.androidapksfree.com/sdata/7a4d0cc33a3e98a81442fb50dfe616a6/com.corner23.android.universalandroot_v1.6.2-beta-11_android-2.3.apk","fqdn":"r2-static-assets.androidapksfree.com","domain":"androidapksfree.com","tld":"com"},"ip":{"addr":"104.20.19.102","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"about:privatebrowsing"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-28T07:41:54Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r2-static-assets.androidapksfree.com","ip":{"addr":"104.20.18.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-07-21","domain_rank":545867,"first_seen":"2019-11-13 15:31:23","last_seen":"2023-09-07 16:20:13","alert_count":1,"request_count":1,"received_data":960581,"sent_data":600,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"7a4d0cc33a3e98a81442fb50dfe616a6","sha1":"ddb8cc9bf82c9ea6bb26b6d90b48c77cae321ebc","sha256":"fe09ecd6ae77581770f6614b8c489cc8d81fba53d5f4256129ced1fd5e282149","sha512":"17c318f7c08b69e6b26baa682d1992eb336329a6360c33588ac012e474aff54704bcac2eb2c47258a17c24d02c55ec94992562ddd3c9127af02d1b4abb47134c","magic":"Java archive data (JAR)\\012- data","size":959799,"url":{"schema":"https","addr":"r2-static-assets.androidapksfree.com/sdata/7a4d0cc33a3e98a81442fb50dfe616a6/com.corner23.android.universalandroot_v1.6.2-beta-11_android-2.3.apk","fqdn":"r2-static-assets.androidapksfree.com","domain":"androidapksfree.com","tld":"com"},"ip":{"addr":"104.20.18.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"archive":null,"alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2023-07-31","alert":"Scan result 45/65","trigger":"fe09ecd6ae77581770f6614b8c489cc8d81fba53d5f4256129ced1fd5e282149","verdict":"malicious","severity":"","comment":"malicious - 45/65","link":"https://www.virustotal.com/gui/file/fe09ecd6ae77581770f6614b8c489cc8d81fba53d5f4256129ced1fd5e282149","meta":null}]}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"r2-static-assets.androidapksfree.com/sdata/7a4d0cc33a3e98a81442fb50dfe616a6/com.corner23.android.universalandroot_v1.6.2-beta-11_android-2.3.apk","fqdn":"r2-static-assets.androidapksfree.com","domain":"androidapksfree.com","tld":"com"},"ip":{"addr":"104.20.18.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-09-09T16:01:27.536Z","timestamp":1694275287536,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"androidapksfree.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 22 Aug 2023 05:11:48 GMT","end":"Mon, 20 Nov 2023 05:11:47 GMT"},"fingerprint":{"sha1":"A7:23:A0:BC:08:52:0B:FF:AD:69:C0:7C:9E:3F:64:84:40:29:05:F2","sha256":"0C:AD:8E:CA:A8:18:11:14:54:F7:89:6B:C4:5A:0F:F9:DF:DE:DB:73:70:A6:4D:0C:7F:E6:41:6C:2E:89:AD:DA"}}},"request":{"raw":"GET /sdata/7a4d0cc33a3e98a81442fb50dfe616a6/com.corner23.android.universalandroot_v1.6.2-beta-11_android-2.3.apk HTTP/1.1\r\nHost: r2-static-assets.androidapksfree.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 09 Sep 2023 16:01:27 GMT\r\ncontent-type: application/vnd.android.package-archive\r\ncontent-length: 959799\r\ncf-ray: 8040a6631a6bb4f1-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\nage: 240572\r\ncache-control: max-age=31536000\r\netag: \"7a4d0cc33a3e98a81442fb50dfe616a6\"\r\nlast-modified: Tue, 30 Jun 2020 08:49:38 GMT\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\nvary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin, Accept-Encoding\r\ncf-apo-via: origin,host\r\nx-amz-meta-s3cmd-attrs: md5:7a4d0cc33a3e98a81442fb50dfe616a6\r\nx-amz-request-id: tx000000000000007a3bda3-00644956ed-3a00f9df-fra1a\r\nx-hw: 1694034715.dop238.am5.t,1694034715.cds255.am5.c\r\nx-rgw-object-type: Normal\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":959799,"size_decoded":0,"mime_type":"application/vnd.android.package-archive","magic":"Java archive data (JAR)\\012- data","md5":"7a4d0cc33a3e98a81442fb50dfe616a6","sha1":"ddb8cc9bf82c9ea6bb26b6d90b48c77cae321ebc","sha256":"fe09ecd6ae77581770f6614b8c489cc8d81fba53d5f4256129ced1fd5e282149","sha512":"17c318f7c08b69e6b26baa682d1992eb336329a6360c33588ac012e474aff54704bcac2eb2c47258a17c24d02c55ec94992562ddd3c9127af02d1b4abb47134c","ssdeep":"24576:Gg44k9mj1CzF8k+qGsl1joQfwqOHUJjxD5fWk0JaclP1sP1n:DzkMj1CB8a7l1cHqO0JlNfsFKx","tlshash":"bf15237c57ff51f0f2f94a3a83e66a00a17b34bac545860c9235a80fd597e11e8a17f2","first_seen":"2023-09-06T23:12:13Z","last_seen":"2026-02-20T14:16:10.925921Z","times_seen":10,"resource_available":true,"data":null}},"time_used":258,"timings":{"blocked":22,"dns":1,"connect":1,"send":0,"wait":27,"receive":185,"ssl":19},"alerts":{"ids":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2023-07-31","alert":"Scan result 45/65","trigger":"fe09ecd6ae77581770f6614b8c489cc8d81fba53d5f4256129ced1fd5e282149","verdict":"malicious","severity":"","comment":"malicious - 45/65","link":"https://www.virustotal.com/gui/file/fe09ecd6ae77581770f6614b8c489cc8d81fba53d5f4256129ced1fd5e282149","meta":null}],"urlquery":null}}]}