Malware Analysis Report

2024-10-19 13:14

Sample ID 220822-nnvp2afbdl
Target سکس‌چت‌تصویری.apk
SHA256 6461851c092d0074150e4e56a146108ae82130c22580fb444c1444e7d936e0b5
Tags
brata evasion
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

6461851c092d0074150e4e56a146108ae82130c22580fb444c1444e7d936e0b5

Threat Level: Shows suspicious behavior

The file سکس‌چت‌تصویری.apk was found to be: Shows suspicious behavior.

Malicious Activity Summary

brata evasion

Brata family

Brata payload

Requests dangerous framework permissions

Acquires the wake lock.

Reads information about phone network operator.

Removes a system notification.

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2022-08-22 11:33

Signatures

Brata family

brata

Brata payload

Description Indicator Process Target
N/A N/A N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to read SMS messages. android.permission.READ_SMS N/A N/A
Allows an application to send SMS messages. android.permission.SEND_SMS N/A N/A
Allows an application to receive SMS messages. android.permission.RECEIVE_SMS N/A N/A
Allows an application to read the user's contacts data. android.permission.READ_CONTACTS N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2022-08-22 11:33

Reported

2022-08-22 11:35

Platform

android-x86-arm-20220621-en

Max time kernel

3310764s

Max time network

143s

Command Line

ir.shz.shzkisi

Signatures

Acquires the wake lock.

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Removes a system notification.

evasion
Description Indicator Process Target
Framework service call android.app.INotificationManager.cancelNotificationWithTag N/A N/A

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
NL 172.217.168.202:443 tcp
US 1.1.1.1:53 semanticlocation-pa.googleapis.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 174.179.250.142.in-addr.arpa udp
US 1.1.1.1:53 android.apis.google.com udp
NL 216.58.208.110:443 android.apis.google.com tcp
US 1.1.1.1:53 174.179.250.142.in-addr.arpa udp
US 1.1.1.1:53 uklivemy.gq udp
IE 20.238.64.240:443 uklivemy.gq tcp
IE 20.238.64.240:443 uklivemy.gq tcp
IE 20.238.64.240:443 uklivemy.gq tcp
IE 20.238.64.240:443 uklivemy.gq tcp
IE 20.238.64.240:443 uklivemy.gq tcp
IE 20.238.64.240:443 uklivemy.gq tcp
IE 20.238.64.240:443 uklivemy.gq tcp
IE 20.238.64.240:443 uklivemy.gq tcp
US 1.1.1.1:853 tcp
US 1.1.1.1:853 tcp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 218befdf969782dc2782655393bcf09a
SHA1 045f0e9f5e9e8c63ba1adb1af77b176e5624da6e
SHA256 cb2481411d7f08f274bb92732eb9b365ee1b87fb9f715d243faf8e5ec7baf662
SHA512 e319be7ebfeebccd519663aa3e4f3ddee77ac40741b4d74de33fbd92edc1f89b7b02cb22784a8b4c0f33578ccc828f1d76560c12e2b478c1360c6a7b69ed61b5

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation384449174263439152tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 97bc5c90da8c4be6466be914981d0c0f
SHA1 a9d3170810278496710f4faa66abd1e1b49e336b
SHA256 2d6bc59c36f26801be72759a73a90be6d6718f4ff107d8c9b968c49adf4b140d
SHA512 4da143d7f7208ea499c054929f6452ddbe9332c22d958ee383d606cf423fd7073dfb0fa046207dac158128af57d94d4908a83f17226eb1ad6985df0b74668115

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 fb82b3025367ff70706f4f04fcf761ec
SHA1 d62ec9924d4045e7fc9c4919794085f1357bd029
SHA256 6827bcfbc8748f642180fefcff8e1ba86dbf3aeba579c50775af83424482f877
SHA512 a58e760a662296cc53c0810fecd81ffd1f5caddcc44e5110e60cfe37c28e4494d4c6490325f01e67f18807b53b3b6d1cf5eabd8f3874730d9bdc68608cbdd77d

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation3273243466058420938tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 37ef602eeb04cc110716f3ad424cf1d2
SHA1 d229830bc52f9194e23df23488aa61a29c02688a
SHA256 8eb88c6cbd24af43b91f41a29e2e5ed389fa009ab477755793d4a5455861db5b
SHA512 047d252617d2e4d37804fc76536e2f85f315e691179650b5f7b334638d1bdc93d41994904bae0ad42cbb9a0756a7510ab04b0222d19c37f4d1e05eac1ab3a6a2

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 06a63e5b2248c4181777890624f7a0f7
SHA1 79c08b1dee120ea3a4ab4caeb0aece1f6d932a6a
SHA256 0132bd10d7d89f63d9f0475b71dcc74df8f29e04761a08f7d0d6de063f4eb86d
SHA512 f35a658e67ad010edcc3f98bf60a6522cf2c58d28a0e7424f54007e8f4e4e73f56ac66fe077ab55bf9557579bdf52b6733454435f7ce9cec6dbe301d3b775db4

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 e07db2dd91ada78c03e36a4e0be753e7
SHA1 7be9180d708c7eb99ff117fbdc1dd483c6db762a
SHA256 2f93b863e0fc49d090c49aa8e506c3fe302f592bc1d05e82ef667e0defc406b9
SHA512 091557a41ed8c6ebcb13f24eb32d7f274c6e31b98f696bc56c75efabcf3be9435fdfb43668533dce53f85592d2496d50e20a0f5e20234b8734cce67629c894bc

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 fa2ed47b7773300411fb42303f93fb2d
SHA1 1465bf812b3bb5a5e73f5afbcc49c46cb1fbad80
SHA256 3bb36a1da59f9efb154fb42239b641d669828867eacea61ea5fedf40572490c1
SHA512 5ba4896ef5a11c622c6bd117695729151f283f970c76264c43d0a2801405f05b198b61c6d0dc9bbc45a3ac4599e928a54797180e810c31f5330b17180e361910

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 89cd606d433241b0e400ec6e41988cef
SHA1 89b9c657f7f3fb4ccfb91cc80fc96e8856c48ed3
SHA256 fcba6384af560e501a3fae9ffa613d5f9d08484ae6c759bf54ae4178d4c2d253
SHA512 f79809217f10226f1a915adad15ff5d89aae50835c718a7ca3a9a25fa570f005c8b0ae0eaea767b68bb666d8128426be51b3fbad8e3b024a7f0f0302b14179a1

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 b48ce0becfe69ede14cb36022c06e37c
SHA1 9a6c19f90d86d168fd9a5cbf5dee1b73dcb4742b
SHA256 c1f94bb78d545a71fe70e177a4d2f0d1d5eb7fe96d14100e8c2bb26cf14ed73c
SHA512 dd7e52561de07863775038fe5d02287b0a18d6776d385381e0e3cf60a716f93f484279c2626163b3b374337eb75b50bccf444aaa636a205f753fdb265002b554

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 948b665ba9d0230f8333b3c7b40956ad
SHA1 f662a4ff1cc5059d31f12e4a01e83035e47d0dbc
SHA256 8a36f19028c79f9ebbd31c1c98f79ffebceabc5db1fb40cc9f8304995016f71a
SHA512 40368dafb8e37ccf4e5c752c6cc645198bc2969d31c27d1bb4c21c0d6c76504e77de9a96be39d6bdd84cba2bde89c952afe1e9ecdb572c4c8292fd2e42ebc491

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 75a7abcf0e6538d6fb554479dcc27af8
SHA1 6d5b866cad3d15339709d5bfbe7a8f385aa1c7c4
SHA256 36da64ba22fc930764ab73428b3382e4b2e515e16f42a1e137c4354f6285af1c
SHA512 4f960e73197bf6f99ee068aa5a5a847dfe8002c1db6e3016b0b5d550a49fe0c095a9f264f415005d3a2f603a225a870aab4c91c8ab47a180dabbd35043709c92

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 9b503eb5178a61614b7fac97924ba60b
SHA1 73d25b1395d5edf632bf9924cdd7ee8bb13f2c47
SHA256 174c1e73575f7fb6ea80f37c5bc1cedf2aeae0ab87f0e928d702cccf59262059
SHA512 42a0b1cda843da8d77a52d70903f06735889aa4275abf51fd0bf005d32c1bd4d0d7058e91ecc2dc89b5ee25b57a5421513c97256fe695bffd9f5d514d8f8711f

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 e42a6e9a98ca542bdd948d578c918811
SHA1 e836e748d90662b2faec75a0ce5731615e2e0d09
SHA256 d3933a61a04ffe34faf6b01e8a63532ece3be1ced3dd863a8241bef6f862ca1c
SHA512 b2ee05ce77630a30be5f74eb80f0d283debce8a9e36db722c90cd2341619c68d3224566346c7c7e069aa74e4b1736d1b52150fd3a5e6d5a9546f1aa995e447cb

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 706e5de829babd552bad46bd6157dec4
SHA1 1c55ecab4fc3093d89bee524c1677e3b3b5dbbba
SHA256 03ca4f21da3f4bff0e84fc390f4626976cb0fcce3ba03868aeb1da02b3e82b23
SHA512 03b2372c8826cb89b3c50c00a1dd226df972641e122edc594d7ab6ad3d56d48fe21db43b9c4e404fdef448b083ceddcb3112bc3b255b101bd1372b2932a05d1f

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 401abeb79c8732d33a8c808d51fdb356
SHA1 d0db7040c00a012f48dd65364eae0a71c1685131
SHA256 47a8f4d8bd586c6500414de82ca6a274b18d4e0073567e1c89b787515aa7d109
SHA512 be544bd1e4a4a436ccb1b419ab53cde80713a80cef0cf4d7f5d42ecb3f17a79c7331b10752c8c48d60918e4e8fbc6b6d23db4c0ff26f682b4359eb4edc2f85f1

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 47dbeaa32269e0eacafca64d1e5e44c1
SHA1 9fd196f594dc732a9c8cb8866df89a95419f4365
SHA256 7dda2506b410140dd7ea0649213ddeeebc13c9be76d0d966294fc3af4a372013
SHA512 dabe9a871a0169563212e408dd599a5ed1c2814666652a218c9aa7d99bd16fb595f40d4ad9f56ef228e638413d456700f32af50a08c4feb41edb215c6b4f74c3

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 89a1af5df6d86f269154a739cd292c3a
SHA1 a6e0c7f3567c462cca1ffbcbebf7670951483319
SHA256 07b94f3e29e9fbb8c413fe3545d02a3a92ca45186002008b35aa88c8c7eaab0a
SHA512 68cfd6b718182c9f37bd6e19eb552bde9a7922b422f036419b1e553dcc490fcea73be3b8ccb6126b0d33bd54f0a8200c02e386ba00c37a3e4d4bb4898b6fa30f

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 6819fa3ac736308810621728a30ef4c5
SHA1 128fc9694ec2fd98a24d8043c7726d57cda9feed
SHA256 a7e2be436ed3816fd8ae394910ab1f9ce21b9fd4f49e6972212dc4fb38c90011
SHA512 d2b9ff46f58439383640d0e54f1fdc56603d77321cdd4fa13931c961890b8d6b5391b06173b9effb1c77161b33cce57acd5f4c68cdb910d5b70cad34c63646d2

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 30695195e6cd525724f3df61882c1778
SHA1 5af0ff7879a76d5066144fb0cda816dc3fb288e5
SHA256 1095d1d13dc438945f73052ae46ae8976092caa77e08e2014c4fe3d84a5bdcbb
SHA512 5bb72e982a6cfe5181c4d58c1c3a2637ff54e665dec9818f59ca532b5a887e2ba507720d17e57779e49dacb8002dfb959b2fac15e25dde2d88bb96466819e90d

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 7692603a228e1e1df2bc9d6d91ef6b8b
SHA1 f3dbda3dbfc10feb045f744f9953c521c00ceba3
SHA256 ccab80f247b4a751421521d650306de3cc029b3a51b4af65fb19f1dc8b45a650
SHA512 0724449531d98a21f11a15f462a442ea09292149a84718cf3e68820236cdf854ee7aba9e728b768424924773d7ed83f46b76e2e40dcf0bdfbea2875e648d89e7

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/cache/1

MD5 ae708ecc3fda3ce6c6206cf947cfcfcc
SHA1 bcb7506b036b352a3ef11966df58f3c8c06ca779
SHA256 ab9c83e8eedb85a2ff37261ed66ec7c16fa8e3b0bce49af2f66c597724c9e7ec
SHA512 2305f14974b96bd5ea72db758ad6b9d1ed153dc94d3f99fce8e4fe775bb0b4fc3884d03ae67577278f3937034b8cd07ff8e45c2cf95792b3c5f372f31e25090c

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/app_webview/variations_seed_new

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/WebViewChromiumPrefs.xml

MD5 21223e9184445fe043476484cd8cb1f9
SHA1 2b4813f849121d60ba35eb0889080668bb62c778
SHA256 bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af
SHA512 be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

/data/user/0/ir.shz.shzkisi/app_webview/variations_stamp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/webview_data.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 39f158778784fd211ef44ce5cd20f42b
SHA1 da7cd7e5ac509cfca8a549ba0dfc2a0d4994f728
SHA256 84cc46848041b390e64e41102e50a887afc5acc9405c7bf3cf12ad541fb00969
SHA512 d5cffaa257fbfff83a2f1740ce08190143e40c82be0a3a56cf3133e9e9b9de6e2eba51cd061059e4b6afe12200254f3e207422a0d3091ba48ca19167201ebf80

/data/user/0/ir.shz.shzkisi/app_webview/Web Data

MD5 dc79f9ce5f3ab5270b33e61119dfc959
SHA1 1844bf222a5144b513dcf2fb50a18c011701c647
SHA256 47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65
SHA512 18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

/data/user/0/ir.shz.shzkisi/app_webview/Web Data-journal

MD5 71c0feab46d78fb8df75ac9247d43347
SHA1 883113364e6edd9fc1004d151bbb7aaeacf81191
SHA256 f92c10013a8d8af090c10e701411d1438aa3c46f2b98f3a341c374b76471bf9b
SHA512 64e2ad4cb1efc823bb57d7ab97484506d23d139c8368967f4cac4084c26f1bd59ec5559ff8c20d039b3bd3aa606d26932ef8f36a7d3ca3e5857123c606fe331c

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 86ff8355f1eb6271402d0e256a07cb33
SHA1 020792d0503d83e17fc203fd9d3c3bfd3c6b106d
SHA256 f6b4f734cbc9108f25b2f91de87a745671ecd6acab91ce73719ce181deff88a1
SHA512 10e65ed36b8056e66d98b026804946b8839ebe42a803981d0e9099fa08217cec6d2ea1947114c6fd0d0ca9cb4fbf4ee14296f672239c046c15622c7007fd704b

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index

MD5 93027d42b314432c4216e6cfca48b384
SHA1 43448dd8102979c3926828182579691945eedd4e
SHA256 3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c
SHA512 a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

/data/user/0/ir.shz.shzkisi/app_webview/Cookies

MD5 cb7543c4df600f2af58097cce0e334ba
SHA1 83cc92f38c27fdb4fa519b1ce2f37912f24af1f0
SHA256 64c022ae708f94ffde986e105d88f708884de325720bfb9925c4160a6d417233
SHA512 ad51cad0472327bd68aa2d791341cfafed58971752352537bb603ed18b15a3f9185e9150983a28ecd09606e8dcaef6d1c9d93213dd246ef7720f39842eb3d980

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index-dir/temp-index

MD5 83ae3a1b0ac278b723c270e1f9ac86f2
SHA1 ef4330fc2d0eec16d963608c92fe71c2b110d45f
SHA256 3638b9ff9d0e3543bcb2be68003cea5b0c401fa26256100ba080b99fec0a9cfc
SHA512 2202d9a111bb1afdf0d2fed356cd97031715795d91ab28e85cd3d0bf8dd96277fd85dbb54442007426092e707751bc2f75525a1b2ce216513915387921ac015f

/data/user/0/ir.shz.shzkisi/app_webview/Cookies-journal

MD5 1dcffdb05c3df024361e2bfe3787efc5
SHA1 8867af2e462d370bb34ff0ee67b29fe6f187d062
SHA256 b83dae47df96462781cce7eb231d13d2283f3ff41cdfd175f803eba9d65e010b
SHA512 3073ec9af25ca6fb9879482ac881c8c941b4ff8212dc9ba788218f91d4c0eb1181ae7440a144607890fa25ac8ae4c36540ea8e187fb758cef8e83a62032c148f

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index

MD5 93027d42b314432c4216e6cfca48b384
SHA1 43448dd8102979c3926828182579691945eedd4e
SHA256 3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c
SHA512 a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/2a356b036b50b7bc_0

MD5 e4b9c1c6f32dc48189f25263affc97e1
SHA1 5e73a78be17a4d634407f44f6b8b7a48020c671a
SHA256 c2e120bebc0a391a6a94a306a7ef61ed148acf619f3fffdcd1a9e799841a9923
SHA512 541ad250ba80220af5f761c5dceccb49cef281039f291dd8ba99e105af465695f02bc213d74efefedbf8243b59607e65e608b4d3dc7e51482fecf169a1c62290

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 8575a67c361a5f9cacf110fd4899cf2b
SHA1 70b13084f97f12cbc46cbb385ba6b291d09f25f1
SHA256 7b252868ed96387f4e8e096d9670cbba4190f39b90174911400992db914c143f
SHA512 7bc8d6d9da625be10f9786724d10f3dac4e869cf22f6627198ad46fd23429c493a9b5bc680c0a4a377ddc4ca640a8c56ede8750eadc5cd6c8e57e2ba7dfaad2f

/data/user/0/ir.shz.shzkisi/cache/2

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 d81398714555e9de46a9594ea87019e0
SHA1 cdb99a4c822266067722dbe4220ff2d559b74b11
SHA256 8dd9434d736cab0dd79b8dd579e235c4f405a19f88526c8a5e66d36f4649042d
SHA512 c5d804e04033f40246b932c3d5bbd1e004abeca4171b4785de6760e12236d3e558d00fa40d0e9c91bd93a33fcff25f6d8bcdb04d85b1a90ffde2b1d7919a9975

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/1baafe1d57f34594_0

MD5 06a1a5b0bc0ebaa26706f6a37252d2d8
SHA1 6388d7e12de6150e0752d7c6314a52bf20fe52b6
SHA256 f477cb61142842262619eab48e278218721321e97f4921fb71396d1d2aed499d
SHA512 cab0de2c664c9cb4c846e2d9ce0ba91cdeef801b03db3776f41a75b3139d53e3e4bf3f42fa2d241b4f0f895cbeda9b741f9adacbc49661fb8188e5be4c8c51ef

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/a3c1636d56043558_0

MD5 232c44be46b8e3e8f83ca300460d9dc4
SHA1 045765c6f3cc2cda51d302cc72ab676c8f681ab2
SHA256 169ab02d89e9edb2eace463ddeb8bb9327583718e1764a3136bac2a02fbf66d5
SHA512 aa29ef80e80c2bb7a37c8f5a6a47fd1cdb4e87182d9e7d8bc4f21f576bf53683e5906d2fa1e7b70c2aa86e858967a8e2db4bfb953f3e658441142204b97e1406

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/fd573a67572449e0_0

MD5 2f978e072c2d85c6554cd15906fa9b3e
SHA1 ffe574ab5dfe94388406c4369fdc8c7e79a25530
SHA256 9b4f72d703c22f60b21032a9bd1e11ee19cd59c4fe4f4710921e883bc65be372
SHA512 ff00a864f9558ca4ebc4f4211b67c0aede1c54c61e6a57bd1699280201d99656e7cd814aa13ac3457f2ddfcfd72340aed5ac6e69fd39db14482e85ea578e8f7c

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/436f4b35d03896fc_0

MD5 1a8df67d94540c6cf7d6c5b6435db1ae
SHA1 fe6e0f566f54f01f1f85347fe8453342ba735748
SHA256 a3922e33484395d005a906a47d969ccace8730a0b4268e9c434efae2e4d7596c
SHA512 8e079e3d2b41be918684ff98f3dc4c3a73f34a2785e3865bec61c5927686bb70147a7a259f54180dcef9e2d4c3b92a1f8777fc8654264b3bae49beb6b8037949

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/f6c9ddc8d3861277_0

MD5 995e5a6eedba1c63e3cfa6a3a2b7ee16
SHA1 3e3ec151e89d8f2f56e3d583527e71442c872c83
SHA256 71c4a369635538b7b1a7cd41f93625da9461f3f0cc27896a1e42483ce55d9b37
SHA512 218828127df8fc1d56914d7ea2066499175719470560c14215c0c3c2fa1f586471ed9726b17394d58302cc6b3cd6d3a0308357b4143607d536b95e00730cc291

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/16432dc8b6483f17_0

MD5 68cb0ecc5fcbb16aa18444609426bdfb
SHA1 68603f1371bf82744d36ed637c70fce6f00e34af
SHA256 452b4a258e8f5ee335ecf90f5f8d1b0787a986eac03059ee62aa7172f2250ff0
SHA512 50f107a58d6ebfb0ae1fc565c3efa847ade016816307b36d989ef210816c36d67a42f515fe6549c3b2e63ff11426ceee965db4dc4226d2c985dbdc6eda9a7bb3

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/0275c587adeb6678_0

MD5 f18aa99daf66e20f0d4df63fcf1a44f4
SHA1 0baa69a9d186c20b54a4d25987df5a71fe0c4a80
SHA256 2036a588045529dd0fd6698b4bcfd15e23e58b0599aeb8a99b704a875c2ef043
SHA512 b9f00572a6728cf2d545a2c9992e1262a0a08bb3bcc2018010d893f98cf2243f28acb9d06518dd0ba2d640a1f5490cbfbd25b5f8d641a33d2fc31538f9cf0c4c

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/da927421f96fdb3b_0

MD5 025ff725a627fcdcffb7c34c4f455b29
SHA1 71a9f8fff7685bb901dfaeffe30ce4d702557899
SHA256 587ae1603b761512df09ebcc31dcb1d144ffd779e9406e6525f252d0ea669a55
SHA512 0275e9643cc833fda49c6243c90a8a47bd0b56528a0b1a5a025e1c17023725e0e2a19075bd96d331c96affd251900d7e32bc3983c4b2cac57a051071fe708e19

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/4b65a0e152884d9d_0

MD5 6b1c367c3492380753d213f29c806de6
SHA1 b6d7d7fed8c90d33580ceff0ee01294fa64ff4a2
SHA256 722047c7780738bb1c8638fa5cd96c0d468697d956a2ca724418cf52f3bdaeeb
SHA512 7013b7ffd239b58d50fc34495e1bf7ae9c4e8f3c7cc26c5dc5339d6a17064db0597066508a76060255e04da7f2d5e1a5e63096733d0a6c2ffc1fff75da5f5361

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/eac0c9889718a308_0

MD5 04efc09bc411a8dd0851219fe3d3a788
SHA1 1e7f7f8f7352cd34857f8342914ba4938e82c099
SHA256 ffa96b430814ed612e54fd45f27227018e19fef2174cb4b4759ea9856cb4a306
SHA512 aadd5f5bbf03a16bda4f816532e11ba66b7371ea7c127d8217e7e07fe1c0b1321594d2e0f0b2e3566f9b7e0ee5ed1ff7a7cb115f64f1b33602d2329e59799fe3

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/e31a4805a1e52fdc_0

MD5 947278176c30efcb620a62208a0ccb63
SHA1 8e0327e0a1590ce4b95bc8effb3598bcb30f3403
SHA256 6e83dd551f29645fc584238ba58e2ffa13f539d236460fcf72e9067960625779
SHA512 69f26c699a574c0e72c393cea685b2a5932212485359f91b351c0a8b16931ece79f7572d134adcfeed8931648600fc0a0d4b544796af20c543a6164c7b56c5ae

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/488b851f04bb054e_0

MD5 68ae2a154675a139c9fb298763c63765
SHA1 dc417af4f197a9d596a72c472bd92c367402ec40
SHA256 51dd44c51a2916bbfd078f40d38c2f4794eb266eaac9e1fe3d2d5f172a98721a
SHA512 9848841841f804f0b7afc2cb52e25b8316cb80c738d89ae38cef3f3ea45b4bdf471c3a5afe973cd65491b32c82c0635263a7aba3c7580fb1a89673fa956ad686

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/55db8d33c21882ff_0

MD5 6f67189728161cb349f15182072d70d3
SHA1 01b92432753122b569a205be0915da7e820490c5
SHA256 0827ba4deac9194cec91a9dd7326ebd5f3267f71d47f31e3021f0f4504deffd0
SHA512 ce8c038ca9d12d5c17b057ebbe2d3644698154072524855670e6e16566751a80df198e050f86e786599b8e0fc6c80479142d8abade734d6d5a5925226aa3abbd

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/16432dc8b6483f17_0

MD5 33385695a403c96536a27885f2eb203e
SHA1 61240da26bb505b32cdd843a7e94b235b9e96d69
SHA256 f259d37f97f23f2e26cd15a3f94c3b7dc2fbc8e812bfd92ba29a39a4fa998caf
SHA512 ed94c9875da421fa218ce5b644e860f8f5f7ef61ededb46c01b14db2900b94d2c6dacf5549ed1cb2ad68ab2df40eff906bef76d65256eacf961c36529febee32

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/ac7d51154190884a_0

MD5 4a8d5cf98a06570c07473fcb69c7a34f
SHA1 90d747c987f100ae0c1dcfff24c36ec9520ec075
SHA256 ec5800aef8f84c49f7c3a29d8f9eecccef0614c55d55c609359a20a637c320e1
SHA512 095d440472c5939e38a3781a41ca82ede325204b298b15b83947e771e9ba9150cdc6b01e25978783b1ae31a44c393ceafdb348fd8041b6acd5547843a229fafc

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/e92d4e69fae97d54_0

MD5 20c389c944bd267315ed14529feee362
SHA1 88854552ca98aa7256b6515e028cd4af6738dec7
SHA256 1c72e857e92596642525906e7aee61a0d94b8d592e13fadf56d1c58bfed48062
SHA512 158bd6a1886f99c0cd6dcaa3188ea8700a91295de8b8057a1d2aee4b3c976b320ad2bde3723e2c49788fe85f589cb723b9272abc90598e37a80f277141058598

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/da927421f96fdb3b_0

MD5 37ed5618246f94237fd58ac50975eb5d
SHA1 188f2c0dd258f9b5e5f3e4595ab1d7e72d1f2097
SHA256 dcfe6bc4b181bfc239086b4ba09c9848e66b604b2e1a61efc1fbd6fdac9fe42b
SHA512 0dff5a84c9017845741eb919911c53205604bae9f2e3d4d99f350de5e786f21be105f5a327922448304df7e281336e7779782f52024460cf0388e621ae8bb8be

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/2d07f77dfbdf4f51_0

MD5 a7ae2e17dfae83a6a89dcf4d24c1e351
SHA1 4f0cc663141b0e62a4db6d3e0642377eeb443a35
SHA256 43d534b68753d28e9fe67656f0b2934b727763dae67758e76ec11c3802134c33
SHA512 1ae0fbf74ebed698a922f67c9cf646f8f4e02667541eda949f1d0f55c0c72ed602db106cc088095f8766ae7c2f7032f0825a6025f8e903abbc9f770e9bf1ba2b

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/00575905bf029295_0

MD5 e16abb21cee2d0d304c7282bc28a9b45
SHA1 6778d19b6640f995804ea193031e240675eaa489
SHA256 72a541a65d2f87727787ff2cc1bab607ce930cfeebdcb55cec97a76d8e8883b2
SHA512 0f0e9dabb77be25632c5e910cc5bd0f8d9b29d2c8854075d8b9aa21852a72ec491c1c538c42f3d0d3cbbf2c49da014e0f520d9b2a685fadc278df8ab81bc51d3

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 a99f3952185e1384cccdaf0cefad21ce
SHA1 d2bb5979913ed97d4421eee96b9003f1cda935f1
SHA256 1aa0f668a45e434690745f39ca90df6174b9acaf339cd5c802fd0ec9bdb5a59a
SHA512 8b55ab4c56d09552e83536514654151f604b82df0e1579847b6f83f0e13fb4351cac2d9f602403f04b13afccf2682e29fd3f17cf513f61f0ba369fa3290fbd57

Analysis: behavioral2

Detonation Overview

Submitted

2022-08-22 11:33

Reported

2022-08-22 11:36

Platform

android-x64-20220621-en

Max time network

135s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
NL 142.251.36.42:443 tcp
US 1.1.1.1:853 tcp
US 1.1.1.1:853 tcp
NL 142.251.36.42:443 tcp
NL 216.58.214.14:443 tcp
NL 142.251.39.106:443 tcp
NL 142.250.179.142:443 udp
NL 142.251.36.40:443 tcp
NL 142.250.179.142:443 tcp
NL 142.251.36.42:443 tcp
US 1.1.1.1:853 tcp

Files

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2022-08-22 11:33

Reported

2022-08-22 11:35

Platform

android-x64-arm64-20220621-en

Max time kernel

3310750s

Max time network

150s

Command Line

ir.shz.shzkisi

Signatures

Acquires the wake lock.

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Processes

ir.shz.shzkisi

Network

Country Destination Domain Proto
NL 142.250.179.195:443 tcp
NL 142.251.39.99:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:853 tcp
US 1.1.1.1:853 tcp
NL 142.251.39.106:443 tcp
NL 172.217.168.232:443 tcp
GB 142.250.200.46:443 tcp
US 1.1.1.1:853 tcp
NL 142.250.179.164:443 udp
NL 142.250.179.170:443 tcp
NL 142.251.39.106:443 tcp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 af500c85202822e1207b4db69654475a
SHA1 29bfb9395b3a2a753f3646b801ae969d94bba770
SHA256 fa64a21c4aedade87d6d73f3302d3d91e9e79670de7a67b900d1b41a2cdbd76d
SHA512 9bfadf0b6f5c7ff30c4dd99b576cdc96bdb47103831fdee3bf0bb2cbda7b36c0f04f64409d9d33f18c805a6b97e09511867ac7ef4818ba5bda177396e76975b4

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation3417692772552462512tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 1c8d732f810f69ca544ca8ea24d42789
SHA1 c9adce6fdea91e715c8d6c4ba9e19592e70afb29
SHA256 5b73c62996dcbb73087fe77ccf9f1503834bf27b0937d971303c999392bd865d
SHA512 682f9640ab15938a072d1bcc56a23d424c1d94101999a58ab7e058fb7bbb488a412fe2e1f19df06b4e1a895073e414ad10d364c1a5d8b235bf8c280bec586b6e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 a497ede31ce19eb1dee5defb8b9e8f6f
SHA1 8cc956c0635d320e71fe0f7c449e4a9156fbb1d8
SHA256 42a68faa936006655b237ecc7eb74eeea11dacc0005e9ee6577eb8e6c57ed29a
SHA512 80f514a3425999f73b4184150cacc0b0c605f5736c99052d06768c414905d9fe0fd00175ca31d63df227fbcebdf0befd7941a2fb39050dec22c50ded4ed72e7d

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation1806712159210028896tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 0fb40b1e29c6a6be7005515683d2fefb
SHA1 68da94e3c6e52625da8b1c223748b4213a95678a
SHA256 bb3c1a143910568295e54ec96af0989eae8cf6d656314a82eea197113ddf0686
SHA512 96101a73f0a8b3306546b14d3392ec84a71fc9dcd0ea82f62d327e232b9fec0177463e8646682f208a0fa50d5bf5a6ec997eaf0f0abec4ceaf754b4ca437d3de

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 9955a8667680e4431407a12aafe2dfa8
SHA1 e88ed30afffcf9fad857343c648e288f5c046d76
SHA256 f3467df431aaf16b003d98c7d44d04734ac6cdbe547dd5b20b0b04f71567d986
SHA512 6cbbfa552003e766bb5eae6102a2273fd033a99f173c164334571c7d571d57fad6b2b80ff880f7183a393ea3890961a22511be76f3eb3136bfb5547edc06189f

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 4f682bd995974505fac57b72a13f8734
SHA1 68650623ad63c2432aa4cbb532c60a9b6d325aba
SHA256 b967be6084f700111060e96ae8be4763e516772c08758d985cf5cb2ea76113aa
SHA512 8062b42969aae026c306d5f19a5d172895e97bb9aa22247305ddc25a71c70406b70a0177a62de64a5591ff06dfe677d25868212d1844cdfa456e8951b2aea0b0

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 3972c06ccbe9bf5194504220faefd856
SHA1 2516955f03486e68f01696a3ebbcd865f7a9d474
SHA256 b10e05fcd7ea2ee1c6f081486703207c9627f3aa53c099a58c70cdf87cc9610a
SHA512 9e46ab63634c6858799b88d56bc9baa4065f34dfdcbd43465852f613d7411dbec9ee677af30da77126d4aeffc39df9aaad1e0ac8a1dd67e91e9597096fbdca68

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 8dfcfdcef5a9793fb83bda404ec3f42b
SHA1 dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b
SHA256 a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2
SHA512 e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 5e0c0c5fa470a1a1e414817c676c99a2
SHA1 10f84b4096cfeb4cb1ce5c3b1410aef67395da83
SHA256 0c043660bbd840f963ce49bd94ee560928e3a9f1466813f36a66322a70477d57
SHA512 f89817dbd59389668c6c29cb9d578a8aa02819e621d8bb4dc70e31830afe30e06e25a87bab863a99b26fd249205fdcdf108bb8b312e759fd48db4fde4459380a

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 9892f83ad7ad052cdaa7c9539bf4f336
SHA1 326f381e6d5edfc00a3a724fb1acbe3ca003422e
SHA256 a69b58c1236e6d5efc83cd51f3ce0f929798d5c78d67a7974c1b2f0113690868
SHA512 60cfb80cd5b79fabde2c7ee4e982655a38ea980707d31ac78746017eaa90848d9f71d3efc40f38757286d6bb6aab8f568bfd2b3ff005bc25af236ebef27bf210

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 771d3f5c39ebbb9147ba5edaae7103a3
SHA1 f059806987fce0200dfd1668d72cc32e440bcc42
SHA256 1c4b9031ac17c32410c6ff3e4997963c278fdb1dd4cb8d2a70afa65785ec41cf
SHA512 444a0b27b5ae8f22c594e18c66ba7c2c51cb14f70ea2bdd8c6484325cba464c22f0fb102902a55ba8366d0f919119310ea2dc1f4830acb5ebe0f84a5c0887fda

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 9867a6063649f77b19bc9065bb4712a2
SHA1 57236d07c736d2972464adacb53bd993af1183fd
SHA256 061c323d765acd1ec88e8f834799a7ad06c1e4d44f46676614f911d82e82b5d8
SHA512 ca9082594c82372ca51931a51c422830bc38dbd308783b97538878b74efd04b5cd18ee9885302909ebc876c431b15c65d33402b270bf6abd2561fd1604efb54a

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 c0cdcf9ee2474601d60745b841988982
SHA1 ec0261abce9fadedc1b77478ca74ef7a2c023815
SHA256 200e52d6bc48a9fa6d8237e99cce6444410f6dd7b8cd926f2edd6925e232b314
SHA512 23d3880560ce018ac78b95d301006fc93d13ae7fad2d82fdb5cf2f86c4e524b8e1941ca25882cadb61546d0baa17092d3720d1b704d82666aa7a8f610f316858