c6e9fafd9a7f3283b2ac59a14a014561e9a7d50975f8a0ab888f701d8c04d4c1

Resubmissions

24-06-2021 22:53

210624-v3gjz8dspa 8

24-06-2021 22:46

210624-dd7gjyeq3a 8

Analysis

max time kernel
1077484s
max time network
314s
platform
android_x64
resource
android-x64-arm64
submitted
24-06-2021 22:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

AdGuard-Premium-v3.6.apk
Size

34.2MB
MD5

6f9536e4c3d9b0062676378d10885f6b
SHA1

4d3115b770b5db98cd9ff7a1f27c57e1350329c9
SHA256

c6e9fafd9a7f3283b2ac59a14a014561e9a7d50975f8a0ab888f701d8c04d4c1
SHA512

79a2668054f7cadebd80f13c35f0828508da5da1eaf434c94476254283256b9ab63140122cbb6ef51615db2bdcc9c706b3db76bbdc22814254ac144e65635ff6

Score

3^/10

obfuscation

Malware Config

Signatures

Uses reflection 64 IoCs

obfuscation

Processes:

com.adguard.android

description	pid	process
Acesses field com.adguard.android.filtering.api.UserscriptMeta.name	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Acesses field com.adguard.android.filtering.api.UserscriptMeta.description	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Acesses field com.adguard.android.filtering.api.UserscriptMeta.version	4540	com.adguard.android
Acesses field com.adguard.android.filtering.api.UserscriptMeta.updateURL	4540	com.adguard.android
Acesses field com.adguard.android.filtering.api.UserscriptMeta.downloadURL	4540	com.adguard.android
Acesses field com.adguard.android.filtering.api.UserscriptMeta.homepageURL	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Acesses field com.adguard.android.filtering.api.UserscriptMeta.match	4540	com.adguard.android
Acesses field com.adguard.android.filtering.api.UserscriptMeta.include	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Acesses field com.adguard.android.filtering.api.UserscriptMeta.name	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android
Invokes method com.adguard.android.filtering.api.UserscriptMeta.add	4540	com.adguard.android

com.adguard.android
1⤵
- Uses reflection
PID:4540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.adguard.android/cache/e.id
MD5
5829da83e6a3ec3064c7f80cb6717325

SHA1
68fcb0529630ae02f30aefc983f40a9e539e439c

SHA256
e7f2028bacddbe4b330c9321f1755f8cba332c49c3bdd535116ef19fb326e1b3

SHA512
823d37dfbd52b4a1c3895fd43e144d5ddb59c6305d9c65c34e4c316b9761c7dcd1c2c4c683024d9f1e551754f576c273c947b7564b96fad0169a54bd299e9ffe

Download Submit
/data/user/0/com.adguard.android/cache/sentry/.sentry-native/589c2077-1ed8-456f-60cb-68887f762a9e.run.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.adguard.android/databases/adguard.db
MD5
8cf042ad5fc48e95e046375ff727da67

SHA1
632a0560cbecb66180b7551d1883651a4377393e

SHA256
33d168ab0fb0df2b5866925ef2f214fe5dd9b90567c426cc533a53887e746923

SHA512
bbef8d43d371d2f92dc3039fd807dcdc309707b5e9357099bf1e8fe3caa639c5358a0c725ca70c558741fca5116739e3efd1bd441f1a372303905e268de959a3

Download Submit
/data/user/0/com.adguard.android/databases/adguard.db-journal
MD5
e2b21dfdbf14b16c55905d4eec43b8b0

SHA1
5b81caada681ec692d714c6e39de0b3cc28bacc4

SHA256
f32d2691717821f106ce7d86ed4863ff3e42923302b133edd4d644fa1804d6a8

SHA512
f1c2e9db04dfa15fff9e06cda7f9e7eaa2416f89f19ff69a41fcd9b7759f94c6e4e59069919eab1cd24d566dd12fafb6c68b8aa8a4f01c80cbbe7c1f1e4c1c66

Download Submit
/data/user/0/com.adguard.android/databases/androidx.work.workdb
MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/user/0/com.adguard.android/databases/androidx.work.workdb-journal
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.adguard.android/databases/androidx.work.workdb-shm
MD5
22c44ab526e8230ed25ee2e8e3c5a097

SHA1
1e223503c4fc2f8709477a34ed4f1c070be06c18

SHA256
75f25efbeb8860ba480b4375315a990c7d9d9479412be52e559762623ca5dd53

SHA512
b6c44c41b8a68bebf7c551dbad7fe46fce3a7defecf5a760dd2e274584cf6c988876abe9a08d46de7c4eb25b18609b42a36957e9128cf5c05e8a82c797294dc0

Download Submit
/data/user/0/com.adguard.android/databases/androidx.work.workdb-wal
MD5
0897203111155a2a5b2b8f239a62f846

SHA1
1a7b6a9d1b634ae8de4599da0a960f2a6550c110

SHA256
ca89284eaf689f6f43760fa51685f13841cb6c90c4d3e94367b55ad8df66d593

SHA512
7138cb45c7ba2a5226ae0127c44a324bf50a04ec81a4533ba434d0f7dca75e1624bd528478862da5ad8a574de1fe68e35febdad7fb987ec01a70f32f5f4e420a

Download Submit
/data/user/0/com.adguard.android/files/adguard-core/gm.db
MD5
ec271de5219708f5ae8ae37b6a6d307f

SHA1
9823eeb9c5117ff59ffd1bf72734ab9631bdf173

SHA256
8a480efe143074faae0be5ceeeff877e262982b0ad9cb08d7bae0963b87f63e0

SHA512
c9b7df2e2a8fd050d0129224bd4b347f82890aea56e6748abade421bfe0b952c368e0d85710cf23658b2149cee512b80822339fcfae93de4283eff246f760fd1

Download Submit
/data/user/0/com.adguard.android/files/adguard-core/gm.db-journal
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.adguard.android/files/adguard-core/version
MD5
c4ca4238a0b923820dcc509a6f75849b

SHA1
356a192b7913b04c54574d18c28d46e6395428ab

SHA256
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

SHA512
4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a

Download Submit
/data/user/0/com.adguard.android/files/userscripts/AdGuard Extra.meta
MD5
770f677efc53a02cdb169475d5e62b0d

SHA1
64b7ac1588800bc15730296c38db8645afdad788

SHA256
16830b9e5572a9e7d6c40faea7fec5fb141d3da8bb594e0a58b51ee7d18a76c5

SHA512
06f49e99a55ccf0d9c2d484194db28086d709daf9ad1eda4526bccf41918aa12dafa63283d51269485c149b208f50da7fbe1ce2642edbcd1443180b4d61cab3d

Download Submit
/data/user/0/com.adguard.android/files/userscripts/AdGuard Extra.source
MD5
274616f2a7c83e5da3dea6b29cf40fdf

SHA1
3f50dc0f27a482e434e7fac25bd4a29d31362435

SHA256
7fab80292baa7ce26e179378786bd01d9887785dfd9ff7c20ae4b67fdd0d7f6d

SHA512
462bc45f3956ef4998bc6fb979217d37572047c509267316e7894ca67acbcd3e32948da883c8fc08b455f5ca051b85822a78e28206aa4b4108e41a5c7b012c3d

Download Submit
/data/user/0/com.adguard.android/files/userscripts/Disable AMP.meta
MD5
53d32038f71686e3e153d066b9b4365a

SHA1
f1f57703519678e338ec8571bc7901462df62bd3

SHA256
d5a09715ea16fdae4195aedbe7687117ce8cf3e8fe668701e6d543f5b74ccdc8

SHA512
31aad6afcc41822c5713ffae67f8b06d3a7b661c784ac04301adb800eccd8328f4b7239bf6aab72a5447b42f5a3316029411ee092dba7ee080573b960e319cfb

Download Submit
/data/user/0/com.adguard.android/files/userscripts/Disable AMP.source
MD5
737775aaa7d13a389c27c4fb9d51689f

SHA1
eeb6fcbf81f3a0b76edc4b63db10c004421ceaed

SHA256
1969ab9a0badce06d282518b8c25f1a3e1e3d77cdaff0a631e04b2b886bf066c

SHA512
af07f1f135c660357db3255deaa68458d4262837a7459566d0452a383a881cb4f42cf870ca1bf2ac313aae4d5f00a6a8f7760bec05c279153d54cd658aa07ef4

Download Submit
/data/user/0/com.adguard.android/shared_prefs/adguard_events.xml
MD5
f916374e2bc8d2a75b2050b9b99ba4be

SHA1
9938915486462212c011bb84fee777fcd6360ff0

SHA256
45a621d603fa9e7d83d93937701641c0ad49848dd6e4cd84a32d017349057cd1

SHA512
aa71f4cf34aec3822211944ca7a2c6e0163458c88ecd4c71f89a237b971737a5b4a0bc576bfa018508b870e86f26b22971115e95118774f4c91e156782703cfd

Download Submit
/data/user/0/com.adguard.android/shared_prefs/androidx.work.util.id.xml
MD5
c2bf7b61386f0285c4c5304fd3b01960

SHA1
7ebee5304cb7f7bb6af3472892f1aacaffc54654

SHA256
69a5b95f884cea06fdf14a6a45e0c86f24359b417a3b081e9e95a7a4082e15b9

SHA512
2d2f64693ab0a7e4ffd1b96f02ac66a1e019868b20680d36eca2a9f12a9cb2a9b695f1e23e17374766cc02b5e97caabb8b5ad98bc7ed753e0a7898a10e5e0951

Download Submit
/data/user/0/com.adguard.android/shared_prefs/androidx.work.util.id.xml
MD5
5b9e2d83c9070d490dc7787847007e43

SHA1
aad33e381409c240017960220474d16a0d0942cb

SHA256
6fcf1d35d1ad6208402e8174067bbcfc5e1f8251482c2eaaa281a254ccb9a188

SHA512
3c711779b8a7ca07eea66aee662be6cc5d24b39552c9b56b110185684a821926575b958133d6b8bc041e7a576d059be3a8e8cf07a27e748c741b745d545de0f4

Download Submit
/data/user/0/com.adguard.android/shared_prefs/androidx.work.util.id.xml
MD5
5ab954a915cc8456300910b7f722ac2f

SHA1
bc1cab08b41c9c738297daaba8ff1ec81778df5d

SHA256
78f3f9851d3b83b6ea5cd02654b614052c8765cae39e1e176519c0b815114458

SHA512
a00ff7d105d1fdce9ec7422e33f67448b4cf79ed449da7414ed89c63fa52b9a04f1c3b873923e71247f3fb95d650f32a96e244fb0c2261941cf7ad203e281fc0

Download Submit
/data/user/0/com.adguard.android/shared_prefs/androidx.work.util.id.xml
MD5
a6be746cbc13263202de45225104687b

SHA1
92ada566bab976b59234bfcaac75ae41e5b4e553

SHA256
5d612bdb0f506746a01c8b7ad2e246789116e9ce32a3dd519007acdff35357e7

SHA512
833e0cc3e86616fd524863f1428774a7175c8c275d571e384116ab86fab7430233ddc6fedda48faa0c20029d68eb7743d34b2f72215a0cafe396b253ade92d9a

Download Submit
/data/user/0/com.adguard.android/shared_prefs/androidx.work.util.id.xml
MD5
0979581cb6da986e18f740c9bb8e7187

SHA1
312b60d9f58b2d05f4cfce0ce3b1c77b925eda3d

SHA256
42410259fd9b18cbf3f48a970995c821f8cd763dc47563400b4653da18c2825d

SHA512
8f36e5989ba2e4bacd7af21e414826c3a11abb552b9a705a9e910cb730070ba6867c7649242fca22868e7818cdf41e72cec6a6cc9ee5094d752eb507fabcba98

Download Submit
/data/user/0/com.adguard.android/shared_prefs/com.adguard.android_preferences.xml
MD5
f58a10c122c76a1b223164ac50ab777c

SHA1
70a422029db0b3296fdf46dfc8256c6e7a32031c

SHA256
3d5e0dd6afda2d8d4be028d4b9142502c9597261af0747caced6ffa7afc3eeab

SHA512
c86a6e08bf455ee5cec725919ad26b12b3440aa2db82a6fb7c0d5766578b9b2a8b703f09318312e5a6a89eb2e1268af169c8c0966b2c88da3c5890e125b5da28

Download Submit
/data/user/0/com.adguard.android/shared_prefs/com.adguard.android_preferences.xml
MD5
ef839d8db2aa778b9d0c34b6e7bad72d

SHA1
d7a2b33347678d84ebc2089ad85180e3660b4977

SHA256
e80ad0d81f93799d4e0ab644ba0f971baacb997df15bd2b3d6bd6a61eecdda2c

SHA512
ff7f33c10e401ff6aa12adae9e6711449ffd8132391a4bddbe1acfefaf667209bd406ca59ec72895537adf6e4fcca1d4a8e6cebeaad6145230631fb5cef71887

Download Submit
/storage/emulated/0/Android/data/com.adguard.android/cache/battery.dat
MD5
0b8f2a3721a9219f31cee9799ee71eca

SHA1
2ba4fc682ebd12baceeca42caf30eb450c0846bd

SHA256
82edaff86f6b08c842c4581bf30d95f92e8bfb2f98d2e10fce33bce5aa75338e

SHA512
1243b79717207439cf894e741b7a37f97be33f9f25b9f9e7af2ffe2a4703e9ca4f62e8b5c0af96ccca04d4a7288a98fea5972db076577aa1abe59a9ad8bad142

Download Submit
/storage/emulated/0/Android/data/com.adguard.android/cache/log/adguard.log
MD5
9f5fed6aa3abd891302113c792636dbd

SHA1
a4a87de2e2a890b356e4591e3eece57d7030d0c6

SHA256
a01596ca4893d314d42d881beadaad927024d4478890ddeee424ebc0fe32410f

SHA512
a7d4cd908db70e9723139276b111450bb85b5cd3da9517d52ca29f36646e9dc0ab673477fd792c171fbe5646b15f1f12b45ec9b5d9b900d88f908061e0d746cc

Download Submit