agent_smith | a3e95b5774c3f4d0f742fbc61ec0b3536deba4388840a398a8ec9c3eb351a177

Analysis

max time kernel
682365s
max time network
170s
platform
android_x64
resource
android-x64-20220310-en
submitted
03-06-2022 07:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a3e95b5774c3f4d0f742fbc61ec0b3536deba4388840a398a8ec9c3eb351a177.apk
Size

4.0MB
MD5

44bce3a306b0d706c0937a2445bc0743
SHA1

902d91fe8790efe5a1cf76b963bbb63226ffd18a
SHA256

a3e95b5774c3f4d0f742fbc61ec0b3536deba4388840a398a8ec9c3eb351a177
SHA512

b8456ab455d8e6ec277fdb5e2d4951da4cd6899563d0aab7793297cb9684a93f733a3761b0ee21792fe3e6e759a2c381e78f0613f082338fe5aaefcd981afeae

Score

10^/10

agent_smith adware

Malware Config

Signatures

Agent smith
Agent smith is a modular adware that installs malicious ADs into legitimate applications.
adware agent_smith

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

Processes:

com.android.google.coreappx

ioc	pid	process
/data/user/0/com.android.google.coreappx/files/.MultiDex/adsdk.zip	6074	com.android.google.coreappx
/data/user/0/com.android.google.coreappx/files/.MultiDex/patch.zip	6074	com.android.google.coreappx

Reads information about phone network operator.

com.android.google.coreappx
1⤵
- Loads dropped Dex/Jar
PID:6074

chmod 0755 /data/user/0/com.android.google.coreappx/files/.MultiDex/adsdk.zip
2⤵
PID:6172

/system/bin/sh -c getprop
2⤵
PID:6184

chmod 0755 /data/user/0/com.android.google.coreappx/files/.MultiDex/patch.zip
2⤵
PID:6211

getprop
2⤵
PID:6184

/system/bin/sh -c type su
2⤵
PID:6263

/system/bin/sh -c type su
2⤵
PID:6282

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.android.google.coreappx/app_crashrecord/1002
Filesize
235B

MD5
53d17fecc51a60bdaed2f2d70f320a66

SHA1
d07d7bf6d290f3c685ec1b57be700fd1766a7282

SHA256
873c357a1cee51a433ae4d8b5ec68c255dc885178cd3fffd393f000fae060e0e

SHA512
d842fbb2d9ec9e37d9a94af89f679b53d73fbd244cbebc936479a9b7980791455c4fcf2cf02122988c685fa3e10e984e0301ecb5fa2fa93c08d81cf929818d85

Download Submit
/data/user/0/com.android.google.coreappx/app_crashrecord/1004
Filesize
235B

MD5
602b3b518dc9a39acc62e05a8f706eea

SHA1
7ac3958c1f177e279ef69c821d1d138902c1b74d

SHA256
211b6b1c3e4c006a0b0f3a07129b554c13c8d87c2d3832df86ce831920e7d615

SHA512
45c72bc0a49cccd3cff332cbfcc9727e526df919a65a728b0d40fc66e0ff3777e8b85f5179ba6cb6a2b37b8c6dab87c2418949efec430e2e76a33592eabd55cd

Download Submit
/data/user/0/com.android.google.coreappx/databases/bugly_db_
Filesize
312KB

MD5
6a49bd615546d785254a8b677fe19e4e

SHA1
22c2fbcbc04747cad68f5ba49964ea0155007a46

SHA256
495c2e2a736e05a4213fe88869f3749caaf6ef41618750314975910036210cfe

SHA512
f775eacb1afbd4b48a5494c91b11efc3ffdb118c9e2a8a5ab619404740f30d0ed175fda0061576aeca6bd63aa31e9530d65bd173019f574f2b0110eea7e14500

Download Submit
/data/user/0/com.android.google.coreappx/databases/bugly_db_-journal
Filesize
1KB

MD5
fd8a9c3f3372c3be7cb406d4b201faea

SHA1
584d49a03128dc1c5a0d7d8d0a78a17b055da6d1

SHA256
1101d6aeb84cdc767f59d75303d7cd0316f01df86486fc4eb2ed8cc8d62069c5

SHA512
69b2820769aa1f1b0986960a26055456cd370d506f47e2f37655e6116099cf1fe2d00ef2927f2498fee35d8b0bfac2bda808f01fd77724d175d627cb29474a72

Download Submit
/data/user/0/com.android.google.coreappx/databases/ut.db
Filesize
72KB

MD5
0356315a0c6c8d11b97518f9eb420812

SHA1
87255b36bb7260f8b57aac6046c3c289dc44ee59

SHA256
b2257a229f3de022e68d0fbe475e1c48f36fbcb528c7a2f663b7dcc638ecbe92

SHA512
91a4a6fecc95480146942a1a30461c1031c44927a8f75dd7a290cf3c4e1277589a8d35aa3fde1b6d9168d43de51133569e175a2c00a322c03c4352ca383a6d2f

Download Submit
/data/user/0/com.android.google.coreappx/databases/ut.db-journal
Filesize
1KB

MD5
70da28f6d81a17485b49fb6891bc1efc

SHA1
f4ee467478d4e678568eeabd7d0e45952c238c79

SHA256
677e7d252107f831c15c04095c82ee915cdbb1f935925dafb2b5fccf798e43d5

SHA512
fc02ed58a26bad28b5c43bae786afa6b0574836903c1878578d62f77ed803b960f4dffd3d2d7f0443b20fe37d5def981b151dc0d8d3f832e703387407e4d5c85

Download Submit
/data/user/0/com.android.google.coreappx/files/.MultiDex/adsdk.zip
Filesize
607KB

MD5
348d61335ce9a5660103fbb95dcc4b18

SHA1
605c6d9eb4f2f54b3e001a332bc88530540455ff

SHA256
47c933db74d4ec6bd892d1283b5edd55e6707184d4560639ca97ddefeab8edb8

SHA512
9081f4fa0b986a602e0e3677fa2218654b08fab1966a3e814b0133273f1e3fdf60e1c2c0b14d92052e968fa4063b5af5a700aaf6167b0b378d2f318cdddcf70d

Download Submit
/data/user/0/com.android.google.coreappx/files/.MultiDex/adsdk.zip
Filesize
1.4MB

MD5
b035150edabab741dc96dc61472e89d6

SHA1
3faa091326f3508dc341d623dcb3c0e8c589ea3b

SHA256
185c13f196f3de999fb2a689ee5a7075694c30fad79eff7d353ffd5cb3421efc

SHA512
873103570f2219c3992b8186babbec694d5cc4aca5d88b50547adf5990a8d8604e56870520a6bbcf738f0b9304d869927cd948757d97fc0e12f82ca2a40f61c4

Download Submit
/data/user/0/com.android.google.coreappx/files/.MultiDex/patch.zip
Filesize
254KB

MD5
6bcefc3c9979545aed8635ec9f89afb9

SHA1
7a7aaa2a26d2a72d8a00151c2e615cdf5942dfa9

SHA256
de1b4e933ffd3d85b34e303aacc9800c76a49d74ab45216a39d486eee5c8106a

SHA512
aa333241ed09f4a1d4c1c2191948bc3956d0c3b051906002e438056f1c69373dc81d4acd2462952be0f250281b03566942a0c9c06c7663d95cc7449af8b12df3

Download Submit
/data/user/0/com.android.google.coreappx/files/.MultiDex/patch.zip
Filesize
589KB

MD5
e1d6df766e2a46f57ad2f38114a59967

SHA1
1c23b2bf20610cfb4bad6d94ff77531f52edf2b7

SHA256
890d454f49fa3388ec7435403f90c2dabbcd6b4ee859b6419dcf732947aef597

SHA512
184c97017940b085922f61e79facfa19d5703f006e400cbf894bff81ae22a79b054015904f3de700057895b22980286bd7fd7e0ebd86c2c9875529102cd549c9

Download Submit
/data/user/0/com.android.google.coreappx/files/ap.Lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.android.google.coreappx/files/local_crash_lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.android.google.coreappx/files/security_info
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/Alvin2.xml
Filesize
115B

MD5
01f1058d2d96cbff94781594c73314f4

SHA1
bba8f8093db2c116a6228597d0ca90a34fb82b7b

SHA256
e5439b11c59edabaad50b87903372e6d59a5eaca1a7c0314ef66a65862fd0422

SHA512
c065e561f8ec924d193e0b3e1d70b31fe460c6eaa3396a4ebcb939619362c00d6a8d2ae0bf605fe1421364ff085e372391ece31eeb67721590dfefb60ee7bfb2

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/Alvin2.xml
Filesize
175B

MD5
af192dcae0a731d11bace6cf8d826156

SHA1
6f93fe04cca558d79a309a1a974061e65931ee83

SHA256
5142058a0aa8860cb9f00010731bfd0bd519300edbc8a79f391f55ff961af07b

SHA512
38436f0d22258d82d97cdd2effc34ebd5fe5453471002577258675179e79daa9fa21723526eef63f2aa26b463b9e0a9131254ea03360ad7c425d95d364e4a882

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/BUGLY_COMMON_VALUES.xml
Filesize
103B

MD5
ffbd4279dd2c5e747ff7a6a4407b5073

SHA1
58a0bb21c6d7c66a636c6b2c190d0b3db90db997

SHA256
ef6f212789b6bb61a578326525bcf920ebd86480442900f653973bc63f3b8e03

SHA512
465744752ed2c8a5eb53c520282fe3077c993086b6f410d873d8d6278d33d4161dad5d2de1d61c84ced7d910564e5470e5229b939583399cd25169602e786b62

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/ContextData.xml
Filesize
115B

MD5
77aa2dd4dc4bbeb06dd27a91599fb682

SHA1
91171bc23737d2f5614cbda87e3755130cc36105

SHA256
a58980ac34b693793f75a73a695209ca36c425da4427ffe87e7e0fd06960ed6c

SHA512
ac2313f497d9312a98674e55b7036521d81e9635c03edb0231e69cfc9d3d4cfb4bae8b53efc808eb3de82b0bb267641de8454f598d329ba492722f5261b759e2

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/ContextData.xml
Filesize
221B

MD5
38942eef01025b1503df221106d0bf76

SHA1
fd0df00cb9a7170bc6b0afc2a762acbe12294b43

SHA256
6fd6ebc819217d8e9a8c5aecc504bbbb9f759c3a1810b4368ffb0f90d199f220

SHA512
0bd37f4b248048d261ac94fbc4893e2e01feb14fbfb1abd352d516a41b4c9eef0902c99ba9521d87e94c30444f5b2a6869fbbb79f192fe29abd94afa5441ef11

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/UTCommon.xml
Filesize
135B

MD5
07306d84d8a1f1c3c0aabfb893b93a60

SHA1
e50efdec4d30479aa7a931184730d66b1a7722cd

SHA256
67f6902c5d61e40b9ad8ca28c22032efd001cb139242090d1c22e9967aa8644b

SHA512
6df16179563a8a7fd395c05116d99cc203831a4d2df5164ccd540661488d7d42d1e13ceb1ce9bc64d1c6d271e247ebe67a49a80ca063548aab141e3d013f9196

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/UTCommon.xml
Filesize
200B

MD5
4277ccaecb33ed39cfdd671d86f70d46

SHA1
5c004f37a0a38ba4abec31a14f44b472e8a043a3

SHA256
9189662e26c0d5ec77ad83fdb3d1bf27674ec5d6a04b763c8fc1193020e8e249

SHA512
061b955f5d42ad8866ff5c1875e19a838d5c31b92104d5851b6b99cd75d4e59f615991a996d78f70d2b9f986ca2d8ddcb9808266ae2717436772012572157657

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/channel.xml
Filesize
144B

MD5
aed2a3b17597309c7dd21c3916dbd1f7

SHA1
3976d54fffb28fd55e21d1fa8aca09a4e5f80e8f

SHA256
f21a2e86131344a81ecc9b71954f56e72db82460e0d48cabe1e2a5de0b74a5d4

SHA512
aac9e7b9a15e430fa49e695d94018850035371507fefba054a0c6bbc45bed14aa0ab47a9d6888661156011106d3195dda2b1b4752061aad4498bc6f1b2522994

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/channel.xml
Filesize
190B

MD5
b817ec2c0fa57b241716358f27dc7a01

SHA1
470b1a451966a0baecfb310a526f5c88dbbb38b7

SHA256
3e5281b0ec28051fdc4817c84843f857eb325ca15803dbae45890d2791a18b6c

SHA512
b47d59a4e37d208878ea6d43e60e82e809074a525ae2fd155661ae974c28942e6d8de17d587f77efc9e078ceb9d17ffddeb229e22e9680e27fe36e82776bd430

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/channel.xml
Filesize
252B

MD5
dcb29c9223ad9511325204df3bbce7a1

SHA1
e4ba49d015c3c81be249caf34083c7d5a8eab2ca

SHA256
7ad050bcdac45c23a2606ecea7670f248db3fa0b79c49cf5d1b44f056fb7be13

SHA512
26f31686dedba99f82e62e5e1de6feaf41cdc128b5cd4a89a6c84a87e0f1f3604328de1d4ae01d0e4b39e541d5e5042cf3b32d01f7005c6f35e557c7b3d41d13

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/channel.xml
Filesize
336B

MD5
e1a83953e63c6f860426928dc8fb0c0a

SHA1
bd0ee2d712e480b5a0ec19d1b92326732a8b8e99

SHA256
05845b5e8364ce0685607684764a5b06cb3326cf14c6382b5bc134f363436302

SHA512
7127bacb1b5b4569c927b63d11592a3dbe4eaf3b33cb1aef59e13e10f2259e5f7b939dee5c55e08a9e06585069fef283d2f7fb0ee31ca64651acf98eedf948a5

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/com.android.google.coreappx.BETA_VALUES.xml
Filesize
118B

MD5
a887ba8ba2f6852ca7b0226906adb4bb

SHA1
7817af445b1a55ee2d5c94e7bd8b3dc60bd0a6b7

SHA256
068456c8cf5f1d5658211bac28984998659e9c8441ad3989366a864504c61daa

SHA512
9a977d9985108fe986b1717b5edb9336018c8cb87f59ae1bd0fa3469635e0ddf8958b85180518478b9fb1649c729358bad6d6275de99306ec4865b4b01fb18b2

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/com.android.google.coreappx.BETA_VALUES.xml
Filesize
314B

MD5
9653752fd35b3a6b87f416f7dc5ae937

SHA1
f107e8925455fb89aa7f7f026a0e38f47f8c84cb

SHA256
2d46c79287cb7fd412b8b00a9ea265b2a60227f56d3f1a3eb38c051184cb2500

SHA512
7d837965a0d6d3429ad9198b7efa580bb3ce8a0d44a4e50e6729d5d00971ad0ec7a42b6fb3a4ee5dce68daf7bf2741ded382b923f201808041154abb1dc06bdb

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/com.android.google.coreappx_preferences.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/crashrecord.xml
Filesize
139B

MD5
7c35b76d3baef7b19d229ef3c0df1e6a

SHA1
597a8ef469bb2eb7afb5d70927f29fed99cd31f3

SHA256
004f162bfabaff222daf814bd3e1872418f939489083eee8b9fae48f08050e5f

SHA512
5bfcf7c70a737065d085371063b4c7529192c358146c59918a5d8837c86511c31d3d5f0a416fc8e68f611a3eac57dcfb25d1c33b5cf705b98ae07bde9ece1680

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/crashrecord.xml
Filesize
208B

MD5
dc3f33a30dee2fcb528324f90e24e736

SHA1
a7396e15e7f62a989a7c02595764a74bb5465e66

SHA256
ae4327d819c918d3c7dcd35e55118ace2a253be0529f03948d994d2bccc057cf

SHA512
bcc986291f4bc1593657a2216ff86281664cd7c1b52f90645282c6e85f612e87e42b4ab882387135a5d0df2e4b16f01021d0a28444f81d89d2becab1181d4b26

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/multidex.version.xml
Filesize
156B

MD5
a106af851b312ac00b0202d2849363de

SHA1
c3da16d5c738fddc79474a6732e94d628dd45b3a

SHA256
f0ceec359d106dd74a48445fbf886ca4be98dcbb6cad8efd2ca60a1026de8776

SHA512
40af40c126e352670f71ddfffb818cab39fbeda836fa7032018e8ce46e65b8ccc4ceafa21aa853b5501f718babc3e1caa38a018dbd4eff19388126ec33334c46

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/spread_shared.xml
Filesize
114B

MD5
bb814258514f37b495a3bc2a34cacaa2

SHA1
04a0d5d7de4d977c13285ecd5d894e55281be0e0

SHA256
55ae920df1f6f1248b5af9d48132034e819fdb43fad6b0027c026a9a848fa81c

SHA512
4ab63150a26e93d6a6042d7ef4e6e6d9ef029a6993080107639c28835f93207628ae58e54d30509c8c6422792a051ee9c41bd4d3c41c3dbcd8a7abd21f633253

Download Submit
/data/user/0/com.android.google.coreappx/shared_prefs/spread_shared.xml
Filesize
189B

MD5
1daffdd14ed11786db15c3fe95e59b83

SHA1
92bda47393b3493ce0f7baecef0e1275d36dcd6b

SHA256
1243a69291fca5500d3b35bf0a9f230c74bf8384d721beed6bffc00b6436ba97

SHA512
5463280bb0c0f99c27986e66990d6b2d780811a284dc9f3cbaeb9d4208bcf8b0d90f7d8969a1bb78e9bd250214af03e783c6f477d8f741e9d7f60c832ed7bb39

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
111B

MD5
157d894a3b016cdf7fa61076733fc95f

SHA1
af94c5ee8178cd09918084fa23e8bfdd8b1fe321

SHA256
ea944bb6d677ac5d80020670dc9d4d1d65b18dd069bef7f8c689d202c6019725

SHA512
9f726f215ec7d8d3235c51b7887111b9e418319a38813f1bb189f51a032c7a6a4541c0946ec9210b2f73accb8b8aa47c1f195d140eba68a40421cfa203e17c55

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
213B

MD5
7a9b2ea46be2a4cc9ce1f35e115cc224

SHA1
9308cce1771d52030e31afb4756276c8978e65a7

SHA256
4a2d8c21f7937493e5e464efe738f229fb5b1541e72a3aa321c2aeaf725cfffc

SHA512
9249a3b1a17d02c2d9da14c42b0c5db5129bdee3924e52496709e29197620f4c11575badd357544dab2c5033dfb05f61092718bb78e464b634ab45efdbe2ab56

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
111B

MD5
377f259e1db693ecb6d1e6ef71883bf4

SHA1
16a5edd770e34a100b58121099ba513e463021d7

SHA256
85bffc0bf9368d943add9101173d92a3e4304e250f0c8baac4c46b1e02ec5822

SHA512
0bdbf7336cbd17e4db89c51ebdd695ca4c3c462939825f95dd89c491118b47b97bc3c538b261dcb1a3837cb4584ebd58e5a77939e094c70a4daa90cef1fee8c5

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
167B

MD5
6b169b5573e39bc182ac4648df414653

SHA1
bd8258b41b6a1249675add34ddd06e3825c3c2ec

SHA256
c7fb36a2d4ad1480daeb037213ce2753e196a77f1a147a6c2de5d232b5ceb653

SHA512
1be7f31bd987aced23a12b2ec7e504a07c5c316151658157b542a4d5bae9c6642b508a9d3a70c45de9763d76f2d32e438fec94aa821c1bf9f7725c5160082e4e

Download Submit