Analysis Overview
SHA256
0f1d9b29cd29f8a7f2c6e1a9ce68de3480f680177f08a61b1934c965ea65a55c
Threat Level: Shows suspicious behavior
The file لایو.apk was found to be: Shows suspicious behavior.
Malicious Activity Summary
Brata payload
Brata family
Requests dangerous framework permissions
Acquires the wake lock.
Reads information about phone network operator.
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2022-08-23 01:21
Signatures
Brata family
Brata payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Requests dangerous framework permissions
| Description | Indicator | Process | Target |
| Allows an application to read SMS messages. | android.permission.READ_SMS | N/A | N/A |
| Allows an application to send SMS messages. | android.permission.SEND_SMS | N/A | N/A |
| Allows an application to receive SMS messages. | android.permission.RECEIVE_SMS | N/A | N/A |
| Allows an application to read the user's contacts data. | android.permission.READ_CONTACTS | N/A | N/A |
Analysis: behavioral2
Detonation Overview
Submitted
2022-08-23 01:21
Reported
2022-08-23 01:23
Platform
android-x64-20220621-en
Max time kernel
3360449s
Max time network
135s
Command Line
Signatures
Reads information about phone network operator.
Processes
ir.shz.shzkisi
ping -c 2 -W 10 -v google.com
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| NL | 142.251.36.42:443 | tcp | |
| NL | 142.251.36.42:443 | tcp | |
| US | 1.1.1.1:853 | tcp | |
| US | 1.1.1.1:853 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| NL | 142.251.39.106:443 | tcp | |
| NL | 142.250.179.130:443 | tcp | |
| NL | 172.217.168.238:443 | udp | |
| NL | 172.217.168.200:443 | tcp | |
| IE | 20.238.64.240:443 | usenlghusk.ml | tcp |
| IE | 20.238.64.240:443 | usenlghusk.ml | tcp |
| NL | 142.250.179.195:443 | tcp | |
| IE | 20.238.64.240:443 | tcp | |
| IE | 20.238.64.240:443 | tcp | |
| IE | 20.238.64.240:443 | tcp | |
| IE | 20.238.64.240:443 | tcp | |
| IE | 20.238.64.240:443 | tcp | |
| IE | 20.238.64.240:443 | tcp | |
| NL | 142.250.179.142:443 | tcp | |
| NL | 142.251.36.42:443 | tcp | |
| US | 1.1.1.1:853 | tcp |
Files
/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml
| MD5 | 773c725d7d974fa7c93ac40b4fafd38a |
| SHA1 | 23673e3581034645225cf8e4b88dd82e95b8eae6 |
| SHA256 | 7c24fa9a30078b724e08628dd132a83f9e4116341717d051fc97c14bbdd68079 |
| SHA512 | 2175643d9af9024ae03e89641c175cdc926b92fccf0046470c450d5548963be3f7724c7994895392adb1e99f9734ec8d928daee99dc9339e723d27c985b89219 |
/data/user/0/ir.shz.shzkisi/files/generatefid.lock
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/files/PersistedInstallation8395149910652513043tmp
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | 1fba5309f6f81337feed167db830f9b7 |
| SHA1 | a9eecf0f64ac72a72c2e8965b780c7dd93648e14 |
| SHA256 | baaa3b335ad806ccdd8925e48fedab7a2f0c8d38b404220b08c54a2e3bd76dc0 |
| SHA512 | 716266a6e0b3815ae7365902407078371ed8bc0fd7e2b68906ed5c5b4981503acd3cf013102a7289410dd47e7a6e0703d7f54f1dff0af4238db8b51ed874eb9d |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | 4461e28255ad1fc8785e62dad2c53690 |
| SHA1 | 3c157b2f1bb7bbfc0f7c8e5cee93b9fb464be281 |
| SHA256 | 74e338d972b6f872d01bd4eefc32d1b314e477a434a6b556d12f3d9f96418f4b |
| SHA512 | b531cd6dd6e8ca0380646fbbfa86c664709275408ee7985947ec64d8afdf2a0a53afa11ee4f0e219dfefc8fc2479b8ff888418d2381d7872132456249f3114a8 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 250b4caeba60ddf53228405750ba66ca |
| SHA1 | 422ab714feb34e9f3b4f1cbe669887bcd581ddb1 |
| SHA256 | 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e |
| SHA512 | 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb |
/data/user/0/ir.shz.shzkisi/files/PersistedInstallation3699319986800483195tmp
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | 6dadac6388998d33fedfe7c66dd99020 |
| SHA1 | 9eb2c89e38127c2907ad0739842c3d8dffc84143 |
| SHA256 | 89101ce6d0796ea20c47d05c92618874fb85b48ec2b18dcb3ec1ce3a4e6c19e7 |
| SHA512 | 185af61e61af27e6e0c6b7170f87839a286da3ec079d296b3006faaf24c283aade4b703ca65b2fe602c38cfd427f1c470ffd17bec18091246ae9648ffe0eb062 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 66a76ddca613251f2f6c58273d2971d9 |
| SHA1 | 2ea3780228859aed88e7466b537cf56962bc4118 |
| SHA256 | 1c88185717523ae04e6e650248116c5fcf14af251c647d77024bc5c7f464fe77 |
| SHA512 | aa99c1a53f6abee0b9e585c673af664a9025241e094081fe9a73d4a8592a9d8991428e1470e0098bce9d6c783a4536bb0fc4aeaac5bc4c7ab379e520ac376163 |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db
| MD5 | 7bd7e08b7c157fb7a04f9701b6965b65 |
| SHA1 | 19ed78cffffd879509071b091ba60776c18e8d97 |
| SHA256 | c3aa0e8a52b6dcae0f988502bb3887f94c13148a8f36c3fcf5036c7c99afbdbc |
| SHA512 | a668c141cd4d48396e9d67e79ec1036a8ad4498293e0f16d108e8c4d842f76714f561bbe440a3a5dbcfb6b7ade257ffed7fa07c56566c8ea938589c61943d4cb |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal
| MD5 | efeda56719629eaed524b45d9b5ad6b7 |
| SHA1 | 24221036bdf08da59dd37563967c4ef6eba1f694 |
| SHA256 | b4e965e30477e980738c3edd430a6a697a3438e730854246d9e3def21479e3c1 |
| SHA512 | d75c50079431b8ff67409ffd90857027d8ecfdf0d3dcb55d61ecb8a2959c2ee7f1209b0d6f2eb34d16497b3e90cd6146d5ff25653cb18725d98a82a032d6c691 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 74b28052dee419521fde61217b854301 |
| SHA1 | a2e0d38b5f54aeb916102caf0d72c95d7ed3a48b |
| SHA256 | 8b548db2b250f0965652ed6b9be5b839f4ccf99f397f547aa5c955c3e6634ef0 |
| SHA512 | 57cebb90647ba330e59bfc54ca8e767905e6510ad8a2ebfb56efd5db258b9be0286f3fc957d9959b0782c4dee3fc862bd04b24d697b8a96f60612c894a0f4700 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | dded602283958abdce1254099f76b1f7 |
| SHA1 | a9dbabec3009c0d98538da19185a3ae224a2e4dc |
| SHA256 | 1ffd404f159cebec889179e53b0eea700a4f4817c462d619e1e4f752718a1d12 |
| SHA512 | f297bb00c014edc84705d06cc13e7d95301b802b8b7c4c4f2aaaa1cf5a2ba1dbec1a5995aa46b7b37cfd12bdcdb8cf65b64f2f275e41b6789d191f77fa533ac2 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 12fdad6f5cf671cc0fb0aca07c99c3d7 |
| SHA1 | 75fc141d2bad135410546b899e2b8c9106bbcddc |
| SHA256 | 359d515940f774835e9d3c9fd6a3798d6d0d6e552c0c5cbc83c70706047e52c5 |
| SHA512 | 0f958b31bfac0db67ac266b0c235d68e0b737f5f28a89f8f9229011facd4f00773d68d5b5b3ee1b1c794996048cff10fb71be26682d5d506a06e7303e040d5d0 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml
| MD5 | 172e07e7a4eae8694e08b4837ad4a1ea |
| SHA1 | a540e48c2dca55d15aae35f3fa9854729159de03 |
| SHA256 | 5474d24301e64400d568a04201b65abfc65ff3919930d673154c4f8172f0eafd |
| SHA512 | ea5f9db1e54c27a2808f475672681bc88f5079039f678d5002dce109575d3de29c85add066a276b2958df968c9262be80d12f1850f42f451db808ae073ddb795 |
/data/user/0/ir.shz.shzkisi/cache/~test.test
| MD5 | 098f6bcd4621d373cade4e832627b4f6 |
| SHA1 | a94a8fe5ccb19ba61c4c0873d391e987982fbbd3 |
| SHA256 | 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08 |
| SHA512 | ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml
| MD5 | 8555811c0771a8499cdc39df3e176911 |
| SHA1 | 0acd8a14e289be4d0956720d4a4c729972133fa7 |
| SHA256 | 3925bb7a6b1732a32517b391d776fb72f68c46e8b5b79f1bcff15795c3f48135 |
| SHA512 | 9dbca3afe4ee786132a696f8f5edd25d8c230d298e980474ae9fe1f1fdbaed3cbc22badbf8f23a78bf061383b1767841fab0cf9c80f175e6713a291e20722753 |
/data/user/0/ir.shz.shzkisi/cache/1
| MD5 | 88dfc70fa78e830b55c21c502930ac95 |
| SHA1 | 48d055610141c51ca99faf0f12d0cd3c380e2b3d |
| SHA256 | d518683b960680ff321033c8e8ee5a41d287bd99c7edc79bbc63440716531784 |
| SHA512 | 8ed77374c1bc951abeb5a7a6b67b69507c1735b052d180d492a56f3564461272721966415cf506ae3d73c8e3fae23ed716e585b26aedb8b2f60d97486afdaf2c |
/data/user/0/ir.shz.shzkisi/app_webview/variations_seed_new
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/WebViewChromiumPrefs.xml
| MD5 | 6ef709b8536878951e87c29a1518fc2b |
| SHA1 | 24376c70b00152501b3d98df61fa7db435339172 |
| SHA256 | 10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6 |
| SHA512 | 96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9 |
/data/user/0/ir.shz.shzkisi/app_webview/variations_stamp
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/app_webview/webview_data.lock
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid
| MD5 | 1f310a29a21dfa33b3b4898cf3aa253d |
| SHA1 | 6c516d0acb16faa6e80cba191ef824adbd10a061 |
| SHA256 | 870c18bf89fb40a98f1696eadd00855ae8e2f9699c364b9bf46509cdfea2f8f4 |
| SHA512 | 8d757680af724f8a8f2c739850500068d22c663c65b97fc3a6c90c35fa48b46ec8b9ea4ada73e1e64b238940c443de24676bd2e9292571ced998eab8d3977a28 |
/data/user/0/ir.shz.shzkisi/app_webview/Web Data
| MD5 | b663831f8cc130493476d94f2d7a5330 |
| SHA1 | 043a1956ab8e40821d67043f8a9110a8eb36fb93 |
| SHA256 | c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7 |
| SHA512 | e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16 |
/data/user/0/ir.shz.shzkisi/app_webview/Web Data-journal
| MD5 | 99ac20aa79049104b1d7bc7d1b62a875 |
| SHA1 | c6909ef64aec786cedd6f860d5975eeeb6e15bde |
| SHA256 | 486daf1909ac8f75ff1e8705711102a5adcada083d019662680f60560bcec75e |
| SHA512 | 315f4c8b5f1d78ae43e8300abc0f179014e23cdd57631a14eaf707c23a2b3e95093c95128163875d1ba92ff523706061e39a64062c46093f75c22e7fb9ce86eb |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/Code Cache/js/index
| MD5 | 6d7d499960179766cd4261d12dacc411 |
| SHA1 | e6f8553b0015e12b23cc551afe98763f3b1c9bed |
| SHA256 | c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182 |
| SHA512 | 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
| MD5 | 83ea433195319e1d2addf46301c609df |
| SHA1 | 2de9f99043883a7827f455db14e3a7b793a664dc |
| SHA256 | 6e54160c9d495062f3136aec39a2f7fe2edcb0cc9ce651cc73e6c5d7886ce4da |
| SHA512 | 749c1d4e867efaca3b8591033a83ead596c0eccaa1b68bce3eaf96a9859fdc0fe349ba5670b601390ba37ad156feadfde81de8ea126a989baf37eb4571b4c5e3 |
/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index
| MD5 | 6d7d499960179766cd4261d12dacc411 |
| SHA1 | e6f8553b0015e12b23cc551afe98763f3b1c9bed |
| SHA256 | c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182 |
| SHA512 | 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547 |
/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index-dir/temp-index
| MD5 | 4c4ac8f444ab44472cbc7c8f66307b27 |
| SHA1 | 7511aa3e2d7fbf2480079a08f2ae97e8efacc057 |
| SHA256 | 6810aa7dfb84335cdf383c48350f50546cbff63c5e2027db7e67a5092d236790 |
| SHA512 | 99e13d57d1b18c23263f5e6f1b0a45923060f2c92a1e92938a770821ba9121b52925e100e56e2eb716b296a0a08786fefc8ad63f03e1cd49f451e8196b0d5e7b |
/data/user/0/ir.shz.shzkisi/app_webview/Cookies
| MD5 | 9b23e6a88d5a95f155f205cb04b93cd0 |
| SHA1 | b62dccbbef087a0731f226b96d15d35d8aa5e5fc |
| SHA256 | f2f3c3c0c7f085399a6f9a464c1ac30a59ceeb5a4b7026286fa5609e6e8ef857 |
| SHA512 | bce5f25d98e2e8296c4101b62082dcb6a43902f3431ff6f725e41be6b9aece76e887ef94c4818baf4da845708fd76fd51c37fb6915710c870647593868f27482 |
/data/user/0/ir.shz.shzkisi/app_webview/Cookies-journal
| MD5 | 951c826f96a248994406e612d8b25fe2 |
| SHA1 | dcfae76f460f19994afe41a291c57926d3699f5a |
| SHA256 | 3e3678033de10e9972127206761635256900d18b180234e16ada351aa3f1c340 |
| SHA512 | 1cf6e97e71c1ca7adb65a4f0a38f6f02ffb3b23c95ace7306966eb5a857557b63954a25d73e7d5e17f1598de736b9434180eaad69310652f0c08c2352128b11d |
/data/user/0/ir.shz.shzkisi/cache/2
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml
| MD5 | 46f5154eb004c277f78f5f7a3a6f9554 |
| SHA1 | df30566179f438b624ba687fe86b92b1f260b2a0 |
| SHA256 | 2282ab148ab2496c3ad221de1c590e17aa1a0bba42660b014c255cabc58a8d89 |
| SHA512 | bcc67814314494f08578ddde4e078a1f8df917b26791cff65dbe9de0fa159da3248b1d2b85338d02645acb0d0f8b7debdd688fb700f9f4cd3af117b14e221637 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index
| MD5 | 6d7d499960179766cd4261d12dacc411 |
| SHA1 | e6f8553b0015e12b23cc551afe98763f3b1c9bed |
| SHA256 | c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182 |
| SHA512 | 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/1cc541016155d048_0
| MD5 | e586950276f5e915749de334e53d4b07 |
| SHA1 | 833ea4ff35fbe1138d329761132a81d79fb183fe |
| SHA256 | 555b0bb3877350dceca7a7e88ae12b4606c8c70e0366261a52e86e9fdb4cd7c0 |
| SHA512 | 45ae1c01030d8a587aa8997eb48eedf53791f8545a67e247b31dbae12256f3faa2838d12c6906bf8099ad635a0953ce521f274b8751b47d8c316baafff82a5d0 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index
| MD5 | 5f7ab13d7b0a96c4cbffec0f4ebf8be2 |
| SHA1 | d6c945f94cd9a5e6ea147f8272209458ca9a809c |
| SHA256 | ca73c7f305315deb0b72f86d5cf1b3b29b804e0d96199bcf82257ecbd8edf2fa |
| SHA512 | c5063d05822431ccf398ef836762eac40311e65ff1c4d54d1edc64fc8f3805dc9adf71f8a575beccb3d46cb0fed60393dad142a633a0c382ab589a8a8b9ce339 |
/data/user/0/ir.shz.shzkisi/cache/WebView/Crashpad/settings.dat
| MD5 | 8282294ae797b15cd28bb436ae272925 |
| SHA1 | 6ca3fc1fcae1015f847324a4f352da47701a70bc |
| SHA256 | 68a836c53ec27f841406af89922fd670ba9efcbe1e3692b1f446b9c609d413b0 |
| SHA512 | 0d94b2461530200f8060c0ffba5367ad80db9aeb602558a55196cdddf507c40eba3fe83c62dfd72a34fc831be5001731e0e297ecd0bae13b7c5a8d25a4912858 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | c24b725440257f432fbd27d3972a46a2 |
| SHA1 | 841253315802d3fc332093e5125bd8f7c54159fe |
| SHA256 | cb8858b6b2ab932807109519d62d3ca76263d38770c8f5faf2fc86d91cb6ec63 |
| SHA512 | cb10faabf4074cbd793cd4c6da3b6fb11d6536675e98081e62a2b74db74d6700649a6c576f30c24d31b573fc0f0b99594816244d1af3b356e6cfcd61ae235a64 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b78a3c3f9e300a6f_0
| MD5 | 2e8e030196ecde26e1e9079d3874712b |
| SHA1 | c333dfdf1c9b265fdc143c0b1c29b4d49a5a2c1f |
| SHA256 | 0ee4bd56ba5a3efe94dec028127cd94549466d96293bdc980c7dda98c6aa3c84 |
| SHA512 | b547f71611a3b435a08f14f9b835f3ad7e57ca79e3eedbacee08e7d504791f376aba8cfeb746e1b09236de56dd441b448f2044bff7d3e946b7f784f4c993aa92 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/6e9b05878ad1ee8c_0
| MD5 | 18d38d0cf42b9a1a4ab895864560da40 |
| SHA1 | b8a843b8f8201992691623217e77066a66c25ffc |
| SHA256 | 155d6bd0bca8544e240e047406818815ab0bb44de1108a5d774793a9ec518a72 |
| SHA512 | 1fbc54fce947bb20781640426c4066cd72af3ee67c6f85069139aed93ad7071fad18ff7b0a0ce0359f10b5b8fc5bde1e69f86bacf5a42f4a6a92202c06a4ec55 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/2bde5d1bba97df40_0
| MD5 | c208cad8fe3879f89f144fa9f40eca57 |
| SHA1 | 66e6b410a2ac0da84d62676b5a61bb6e5e181e2f |
| SHA256 | fbbcf66d1b24b46010826a725f9ad77da3019421397eaef0a8e0709079ccf6a5 |
| SHA512 | d00f2d1d47df5e892be33617ed63fa92aa9359aac73783636427c663dced2d83ec19535d95563d67d7b694fa46209ba34f9fbeebf48972c29c1cfc393f84a16b |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/693fd4402ef82b91_0
| MD5 | d6ff0a68a14811efa4df7e19b25da767 |
| SHA1 | 8788f7f9df47879cf272ea5a9052865713644dd3 |
| SHA256 | be15cc5ecd261eb0cbce0aaf1b72d80ea5a884b85e3b0cd99d4d009a6413a3db |
| SHA512 | 0fdcb6ad78c29f3547ea8f26a1bfc1e79821257c0ca3e731f9600f29e954e005658576e0b16aec256dd8f997f3f49dbbda0948e1bc7a83aabec0a46ac3204cb8 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/54d9649cde9c6c41_0
| MD5 | f56bd091a0a8187f941666e1ed963185 |
| SHA1 | d351d74d1239d42bd328861643e9f79ae9b33045 |
| SHA256 | 3c5817d66de1e228eb842fbf4ccc321d32f479000da40fbcc8fc0c17bac502ce |
| SHA512 | e2d7409da55ec6b5817b9934bfe9ae4d0332e7effa17313d123a767ed4b463549bb5ca8d3c4031fdcbba7735c77a04f6321131097d96f561b82a763b45691476 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/64bf86f8d3b718f5_0
| MD5 | b9904e1f79f375dd6108f081a9c03fb1 |
| SHA1 | d094784b73559ad50341bd5c91ff273e5e2bcfe5 |
| SHA256 | 26bad3e77b627779d572cbba2f4d9e69d1a7e126f9cf931ff5602172ccf8d52e |
| SHA512 | 9be0bf2985d47d11b2ea508c43c2e63210bf54d02dd45263803a093da3e164357acd68b08b2cc60cc62d69c95d048dab467992cad85f2bfc25052a48f1465f36 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/e1e67747ad1b484b_0
| MD5 | 439dcb2c39c78c6ceaabd0248bfdc8e0 |
| SHA1 | 1abea21c4203eff7cf8ce267336735ec6d7a587c |
| SHA256 | 62b07fca70f1c656ae9aa1378b3af35956406d5179472dc3845f4963cc7dcb25 |
| SHA512 | 35ef218ef7febc384f9e1555f9b1a2831b6717e35ad80dab225ad55674834929d64e48364c26c43ad58c5e53d5b0b99d719867deff00f636891f2a5b38783385 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/97aac642fdbe0ddc_0
| MD5 | 31712c90ab41115b9347172ef0302083 |
| SHA1 | c0d72a7680f7b63d919b08f416da309057d26ce0 |
| SHA256 | 881285d6554947e337ddcdedb823270ed3ecbdb579fec3750ec5dd2d47ff28e2 |
| SHA512 | 5fbe4ae5779f4f73492611d203a6dcae05d9a8c34c02e769e850cb79d5a32916c4ab87de6894d65b71fbe27ed69b59ef21daee0196d0421d2651989a875fe353 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/ce2903a69c150879_0
| MD5 | 1f4f17c35ef85f8da5009e9b2990645f |
| SHA1 | bdb2c3bbe85e8bdb6ace28546848391fcba27429 |
| SHA256 | 68d05abb0bd27b9d96fb8f1979b0f05b14875ab1febb8ab926355065baefb12d |
| SHA512 | 419eb7c25e1cb2e46de448aad881306814fcb21e2ab5417086ad3cb09c850aae44d2b71edecf2df375d8db8cd518b760354b91faeec488105399be87703bf80c |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/00bc7feb1f59cfae_0
| MD5 | 94e720403a1713a126111eb2527cf489 |
| SHA1 | 2bfadf47073a489971663e923492cdb97be94894 |
| SHA256 | b18a283083f85a5cc64e07ac788c44f0457c6cf2013145fad429adcaf1eac353 |
| SHA512 | b05c62a12d88fd07599ccc6e80ad9c7c7a7f7b087c19b65cef16747e5d0f3b881521019fbc27e269ca360f649ecfb9535a05ea720e11ac729159667822d2918e |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/0758b9bd2b7630e2_0
| MD5 | c003b7c524924c01e8eef9f9657f6e58 |
| SHA1 | 884d8542c81a2fe7526c65a476e999fb6f5ba1ca |
| SHA256 | b8cf75532b0b52a3436d34ec63706014d63a25810600d5428b5c864ac5aeb70e |
| SHA512 | 3fd3e78a680811d0e3319924815bc64567947fefb2eb83170097d073d0c0cafcde9887cf37414404e69b07516f6f8237f355ea36685b11641d043c90a59bd183 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/f61bf2213f78fcd4_0
| MD5 | 67966279e215cad74f5a0227de1c8338 |
| SHA1 | 0f486693f286da321026ff111d0cd9706a7e0ddc |
| SHA256 | 2763402751c65440fa3a6e9b6353af5cc699bc0a9a7fc8ba611b3d23cc7539aa |
| SHA512 | 5556499e5b322c3349f789b17ba7393988346a1fb45c5c39c282a286a49c69bba6abfbbe242a7db8cdbf1bcb32cb94c34038c3089849eb9b1b587f9ae74d6b81 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/6a8e2df964dd0f0d_0
| MD5 | 75c278de716edfe27fa4c2dbcb5eb03b |
| SHA1 | 4a7c6a155640383bd1ca35f9463d2708ca2eb477 |
| SHA256 | cf2ad4ae48d3e07bf11af278dcef1ccd6166c1d70ad8d2c4e49dd74fbef08021 |
| SHA512 | 9c89763f25e8f419c4848dfd8255c53bf1d2ebadae5a1670fa2592600499386dd8d2144e5e4628687484a7c6925791aa9648b55e5f904f2515b64e3340a1a536 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/512236d3a77eb7c9_0
| MD5 | 3bc338c907b1907dad5f0b7c6ebb7fe4 |
| SHA1 | ba1f8029c3a3f2588e34c91d6629efb51f067785 |
| SHA256 | 8239146231704ae4dab11c5e6596171ccbc5aba8ebadaf5490a35f505ce4aabd |
| SHA512 | c42c6a14d8a6a5fc867559ed8e4555a94c03f0548dfd9d251d778fb9a368b8628266285525ff989bd7da825b397e8d59eec60d5b26830858fc3892a01e0e7e7c |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/2737c09f1b5db3b8_0
| MD5 | 9cd67a79e0ee515053a62aa877bf8b4f |
| SHA1 | 956b3b0a01328423905da51151f5c2da67ad28bb |
| SHA256 | daf78f6f395ca91eeac2b289e0debdadf8aa2420dbf6b649501ad24cb68cfb82 |
| SHA512 | 04f73b9a7ca91f4f03899ceeeb40801545a03562573042b085cb4512121f28e2f05f50ab36a5c53efd572dbf14311a2e3e1319fc989cf9cadb2fb32feb154a24 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/db416f9bb1199e60_0
| MD5 | b33368e84d3d953c906d604752fc9bff |
| SHA1 | e1a9697cf1107938a327862d2f2ad6e932a4c829 |
| SHA256 | 1c29c047d881a14af236b41ca764c55b012e758115eb83de2bd53adeda4bdecc |
| SHA512 | 82c4b7ace717f4c1e8a87088a978070df9f0f8bcdc71e061fd5092e05c2beeec69fbd42e9469db46f4bc06f85dd1e13409652806ffe465c56871d585c659bef7 |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/125497fbea223bb2_0
| MD5 | ad2625e4d1b2409bb8dbf12a93819571 |
| SHA1 | 8b7d0ec4f78b478894ace7a617bb9879dcfec2b9 |
| SHA256 | 8357f788fec21b9e468055d4139eb95fe876b368b93fc0932f2140f1c139fbf8 |
| SHA512 | 1d2d7a17e944d8eb069999d064b80c26c907a9a2df0d177c68af034d153619f34a0370418e01ff1bbd62d7f0267cd6b6e8e4717501be003b30b36324e791815c |
/data/user/0/ir.shz.shzkisi/app_webview/.com.google.Chrome.vImBhI
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index
| MD5 | f4f988f3d0b013b91d4dbf07cc5a9da2 |
| SHA1 | 95e3894dca95f782dae76ab60e1bc88e0ce6ac00 |
| SHA256 | ab96bece983d2c77fd38f540dc3f644ab14da47a88dc4ff1ec9b14131ff9a5ce |
| SHA512 | ed72c404f791597f168412baf283cd1ed00ee6e7cdd0eff51c1392a3ffe424289d778b7f62e1daf3b87b5461c079cc3483ef5541feaee88e16b732262af98329 |
Analysis: behavioral3
Detonation Overview
Submitted
2022-08-23 01:21
Reported
2022-08-23 01:23
Platform
android-x64-arm64-20220621-en
Max time kernel
3360428s
Max time network
141s
Command Line
Signatures
Acquires the wake lock.
| Description | Indicator | Process | Target |
| Framework service call | android.os.IPowerManager.acquireWakeLock | N/A | N/A |
Processes
ir.shz.shzkisi
Network
| Country | Destination | Domain | Proto |
| NL | 142.250.179.142:443 | tcp | |
| NL | 142.251.39.98:443 | tcp | |
| NL | 216.58.214.14:443 | udp | |
| NL | 142.250.179.195:443 | tcp | |
| N/A | 224.0.0.251:5353 | udp | |
| NL | 142.251.36.3:443 | tcp | |
| NL | 172.217.168.202:443 | tcp | |
| US | 1.1.1.1:853 | tcp | |
| US | 1.1.1.1:853 | tcp | |
| NL | 172.217.168.202:443 | tcp | |
| NL | 216.58.214.10:443 | tcp | |
| NL | 216.58.208.98:443 | tcp | |
| NL | 142.250.179.138:443 | tcp | |
| NL | 142.251.36.38:443 | tcp | |
| NL | 142.251.36.8:443 | tcp | |
| NL | 142.250.179.138:443 | tcp | |
| NL | 142.251.36.10:80 | play.googleapis.com | tcp |
| NL | 216.58.208.99:443 | tcp | |
| NL | 142.250.179.138:443 | tcp | |
| NL | 172.217.168.200:443 | tcp | |
| NL | 142.250.179.142:443 | tcp | |
| NL | 142.250.179.200:443 | tcp | |
| NL | 216.58.214.10:443 | tcp | |
| US | 1.1.1.1:853 | tcp | |
| NL | 142.250.179.164:443 | udp | |
| NL | 172.217.168.200:443 | tcp |
Files
/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml
| MD5 | 4b930114d7f6d02f96e2ac9e6d06b4e9 |
| SHA1 | d79d76fa0bc97396d1a3070ed2b8c6a53a1a1aef |
| SHA256 | 2bbe1aa10f489fba3cced5d10adec0396e10d5e264764d3162889e05b867689c |
| SHA512 | 6e511a89b2b6722aa32c34691242bafe136a2c394fdf4b7e9a7df6a2d7d5e14c60bfe255eea818c375df6c8dcf5ce353ce1d13bd5b3c7fc8f9840c38e3a40219 |
/data/user/0/ir.shz.shzkisi/files/generatefid.lock
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/files/PersistedInstallation6571462979711907543tmp
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | 7fd2a11b93bf47a6d5c758600108640d |
| SHA1 | 50a21b029e378a599db3b548ebb35be12bf781c2 |
| SHA256 | 8d4468ad4a4d6d11542b0a8af978a68dd5c1ff2a34d273ddfe0596b3525bcc66 |
| SHA512 | ef606d262714354fcc0bcc478c196798e9da5942daf6d2e13526c62185f1d5da169b71f1b0ea0cbadeb421b633ff4f715c2c8ddd7bb4e7011f3891b0e5caee61 |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | 096316182f23638963ac1c636b6ed36d |
| SHA1 | de896d17f8934466fa8710ee29e2425a88a1e571 |
| SHA256 | 8c96e2861c290f12445f42e737a0d76124009551ecc2e2ed2f945097c18b51cd |
| SHA512 | 8d6a8c66032c34c050e5e77b579d579514aca4a6e40cf05cdb8a7858d0d9eec52337fe23e2dc4aa3ae763107c0ec65fce9ef22e6a2e9c419cec26b527245b98c |
/data/user/0/ir.shz.shzkisi/files/PersistedInstallation4815321446176553077tmp
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 250b4caeba60ddf53228405750ba66ca |
| SHA1 | 422ab714feb34e9f3b4f1cbe669887bcd581ddb1 |
| SHA256 | 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e |
| SHA512 | 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | e1c4f8e85288e8272d77d8447df15fb6 |
| SHA1 | 1c0d375ec1ad674077093af10f0419d22947d452 |
| SHA256 | 0ba9b462409ecaa4e4813f734605e96eaacf3c4492154fd0efca680e8cea1d2b |
| SHA512 | 0863ed864888b9b7d4bd36832917c39eb90081958827103e3054444e1940c5cd0920d65f2987365aff1279dedccca4d6e15dc5f68542b66feeb3fb6d0e32a11b |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 168e5f16245ddd6e38cb414b108125e3 |
| SHA1 | ef03e417c1ccb833135e44ed7536bf4d7b6b4a21 |
| SHA256 | ad88b8be7d112d5ad5f8dd64e3750f119ee5f8eaf83037c6905fea7d7fe369e3 |
| SHA512 | a3eb1a7c9a70365c31b229ae7d614cf7c1c7cbaca8ac508d68d2534af9734b27fa0f17c0c859a706db2c590849b0b3391e90b915f5a4182c47a962cf5c9861c1 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | dd5917fcd9f7c45fce4cd8cb57035889 |
| SHA1 | 90c386a3156c2c2daf4ff189b02a7c8adb4a714d |
| SHA256 | 59f1778fc0bcf8833a763afd47257f21ac158051626a243bac7e8d2b8242825b |
| SHA512 | a9a09104742bae2b719b935da0ed5f14f802e37c3a41abe48608a5bd4aa6ce3d8ba8cd13e979c2e4dde9a224d9b8ee8a4c963bf7bb0b235a249a35bb525c1cb0 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 119f20bb8dccbd60f524c4e54c767c07 |
| SHA1 | 71dd9eba5025c044f8b4e979e9023718a0998d7b |
| SHA256 | 887f83e606f62efac4ff599781e64b6644f2a47853fca8c2d342557a587b283d |
| SHA512 | 3d7c3d5ce0302d9f3392aa640ae156e71d95af41c30c501a9b6bcf3a5beb81100df44dc57bc477b08eb4aa03e32b8c897a85022de88d797e54bbda8496ee2719 |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db
| MD5 | 8dfcfdcef5a9793fb83bda404ec3f42b |
| SHA1 | dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b |
| SHA256 | a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2 |
| SHA512 | e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807 |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal
| MD5 | 7922d69da31952b0cae38375a12f1448 |
| SHA1 | 998ef356a38af31ea4e9a38447d282cbc393233a |
| SHA256 | 1a2ef5e800c9fddac39244a44d6905401615cf1f24171d566196364699f46527 |
| SHA512 | 5bae7f1b77961025f56974ae7de3d6f30282f208f5a80119e60b30277dbb4db5e935a25353b18dade02ab95320f71955c7bf4885f63dac95bb88fe4573594c72 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | d3ac86863e59b4b3bf8e8c588b69ada4 |
| SHA1 | 67f10e51a494e2a93e13f84f3daaf4b0ea4c0429 |
| SHA256 | c029a74724b9de39ec6308195d9c55e94cf90b718410f0a6ecc1a6056138482a |
| SHA512 | e3df57ceaa087e9a14cb008fe62caae9f5d74cfe6ef44344e7045236c1903204d0473ae5c786ff4e9a927a3f446b161c791a1dc5e67e8552f2470f38f9bc4cc6 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 39bc23195eefe410edff376c2c1e071e |
| SHA1 | 96f6c92b8c2419d342f4c262e34ea2bd40f38bbd |
| SHA256 | 23de11c375167b6cb564bc7af6d8185ba5d11292ae61fb747eb31fc7e8a3a22a |
| SHA512 | 3f55668ca530075629dfee2ca112f12cd2ec2a7eb572d2c9b3025f35030e0f08b02de49d83d620708c20e9d9fb01ddb1ee2db079b77897920a2ba0500cad18f2 |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | b5829a9449f609e4557a92a3d5e075e6 |
| SHA1 | 33c89f47737060a625db84c6a78965c38a967fa5 |
| SHA256 | 2b0bf56283dd38e9c17e210b1b3dff3e7ffa44507589cb79ce3afb07b659881b |
| SHA512 | b74c679bfcb799da914b8de90eb5bea683d469f7570b849ef61cf8d250a0a5662e476a138b66b31d9c56428254ef1de73129679968df47467739013f258642bf |
Analysis: behavioral1
Detonation Overview
Submitted
2022-08-23 01:21
Reported
2022-08-23 01:23
Platform
android-x86-arm-20220621-en
Max time kernel
3360425s
Max time network
120s
Command Line
Signatures
Acquires the wake lock.
| Description | Indicator | Process | Target |
| Framework service call | android.os.IPowerManager.acquireWakeLock | N/A | N/A |
Processes
ir.shz.shzkisi
Network
| Country | Destination | Domain | Proto |
| NL | 142.250.179.195:443 | tcp | |
| NL | 142.250.179.142:443 | tcp | |
| US | 1.1.1.1:53 | semanticlocation-pa.googleapis.com | udp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| US | 1.1.1.1:853 | tcp | |
| US | 1.1.1.1:853 | tcp |
Files
/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml
| MD5 | 051a44984cdd7899001bc4ea3645e2d1 |
| SHA1 | 634fe134b08cbc3870144768d5a3cf2236e6bdce |
| SHA256 | 21b46595ea308567e9d97aabfe1dac49417fdf440add4412da11ab2a6c579512 |
| SHA512 | 6644843b0e2ba2deabc1f19fe4e3bcccb87ec749bf01c5c0d2004390fb6537891a43719b0849e97f6bf3670a114c01cd85a0e48a2d0929efe8ffbb7bf9c2feb7 |
/data/user/0/ir.shz.shzkisi/files/generatefid.lock
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/files/PersistedInstallation7333258077610739658tmp
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | 03248e1a5d09e225f13f82d827d769a8 |
| SHA1 | 9a42585d4451335dc38f01b6b5eb89fedcc948cf |
| SHA256 | 65c2454993e08e72fa5213b5df5fdf7c70b50601644510d5c2f4a1972449ba5a |
| SHA512 | f345c630273706e035225821670c2d9e529be9046d009aa019a16e183f50cc6f8b70b5574cff96007f50d7496d729cfa395543e021ba43b2d0b1cf4c71b8570d |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | 19dec884f633da0acb5770f19a24c291 |
| SHA1 | f363fff04937ae20d01ac261f52c3a985f7728db |
| SHA256 | 2362f7d7989cf8a56a5b70d5caccdd0392c023b2e250943deef918c5d8634cc2 |
| SHA512 | 6d425fa67aab01e39bf322e5903d5d36f7d54e8efe05b5fe2bd90a4e21c9db882843fd5e6ee285899dc82a2b757a3656353adf795192e43edde4f40307598a7f |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 250b4caeba60ddf53228405750ba66ca |
| SHA1 | 422ab714feb34e9f3b4f1cbe669887bcd581ddb1 |
| SHA256 | 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e |
| SHA512 | 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 110ea28d9a76a1d621a31980190e6ba6 |
| SHA1 | 3e9b172d6c04324a59418e2f32d27e18b565d935 |
| SHA256 | f5e92bd7963fa7ee3892f8f4b5b7d7f85fb2caaa33195b2ca03caefd02b5822f |
| SHA512 | 68711fcfc44a569f442cc18a1467bcea89756051b22bf74730fedba4270666aa68bff953a4b1c5dc61035f7457f9f5496dcc1a54a64f051c4ad499d584cfa91a |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db
| MD5 | 89cd606d433241b0e400ec6e41988cef |
| SHA1 | 89b9c657f7f3fb4ccfb91cc80fc96e8856c48ed3 |
| SHA256 | fcba6384af560e501a3fae9ffa613d5f9d08484ae6c759bf54ae4178d4c2d253 |
| SHA512 | f79809217f10226f1a915adad15ff5d89aae50835c718a7ca3a9a25fa570f005c8b0ae0eaea767b68bb666d8128426be51b3fbad8e3b024a7f0f0302b14179a1 |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal
| MD5 | 67f3373f77e165f8da2e9ff03829a2c3 |
| SHA1 | ebefbba1b82625294cd151f8b5dc4bef251cd6fe |
| SHA256 | 7ec657f48dbd52838dc4365119196ff3d92ed0c4d09fc602c49c207fd133e213 |
| SHA512 | d25d0e575bbcbbb2764c1716c08d3e668960b2938d3c659466172689cd0abdea9771b7bb250057f7e553cddc086250f59cf8bba68ac521e7a137395d7064ed7c |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal
| MD5 | 5f2a605b73bd5aed1f866d7ae3ab391d |
| SHA1 | 1f2b02f3a62bed3dadda3b97876ac6aed2c64959 |
| SHA256 | 5cb789029f64f71e6089d326bc7a93832a32dc55c2fdf60a8c99f5e6b064642f |
| SHA512 | 9b232d6e31eab7ffe5ca2d3ba377394218b0ccc020f9fcb481e95734ee4e3937a95fcec068d19ae29136094cc3013e691682466e6b7af940edbe6fe5a084a88c |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm
| MD5 | 7dea362b3fac8e00956a4952a3d4f474 |
| SHA1 | 05fe405753166f125559e7c9ac558654f107c7e9 |
| SHA256 | af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc |
| SHA512 | 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal
| MD5 | 59d541740e0f68b9ae5b08caced39674 |
| SHA1 | 8d1900e80c7a5acdfa8c9a2860ce6e810e98c3c0 |
| SHA256 | 8b04fc27c7ef4462dfb8877f7a5502cb40c61c491da1b424c81d44a4dc1cd395 |
| SHA512 | 1c803ea6b35bb41b7f2e76b57800e3ac1d0247eab4658bc97cebf2ac3617c7d659fd8f0712fa38ba2b4347e64f8d90835ca84aeb7214155cfc2d41f34bf364f5 |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm
| MD5 | 7dea362b3fac8e00956a4952a3d4f474 |
| SHA1 | 05fe405753166f125559e7c9ac558654f107c7e9 |
| SHA256 | af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc |
| SHA512 | 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | f365a9858928d3e3f594d8d7792e5bab |
| SHA1 | 76621a08c80ae74952ab31d778ebc7b120c6bd19 |
| SHA256 | a809f2ba2d6dddaca38481a27c9c793fab2c14a77f320450df4cd81526e8fa76 |
| SHA512 | 8a912f485416f2984f465aeadfcd2e0ae73a67b7fa5f9aafc295656f3dad2dd89f3f6af5d34323249a03ddabe000c554f983ff1796cbfc80737fa2dac829f6ca |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal
| MD5 | fe2eb8eb2c1da8c4bec82253af61aae4 |
| SHA1 | 5e83b3dc3e68e261f79ebc0a32de492196dc7a8c |
| SHA256 | c7ff5500907f4d5ca6d680d47db83b3f130c50291d9398a8ea10f00121bd4354 |
| SHA512 | 46cf1cbe1bd77b4c030c7d7a607c438e9e11340f0e46885819cf958d7b429d66475c0c6dbc5f3f1d4d7be36482c2befdd3b2f07b3dac68bd6b03fd00cab11c5a |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm
| MD5 | 7dea362b3fac8e00956a4952a3d4f474 |
| SHA1 | 05fe405753166f125559e7c9ac558654f107c7e9 |
| SHA256 | af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc |
| SHA512 | 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | e34ec1b87a40a3752bbe3e2d643c37a1 |
| SHA1 | b7e438867c9533280157dcf72a774589b2b32cf7 |
| SHA256 | ebb218e69a3cde0b023edea1c67e88a89232e0041fb957c331ff8a9fa72e2f6a |
| SHA512 | 30b9a6d84d43d79dad4dd08e71af63c814fa683ad758dcdd420ee3b4d22e6e74f53d1cab22148e97796fbcd1c0c83626861e7c030d8caf0220a4bb454d7379d5 |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal
| MD5 | c69872fcaa8635cd5cfbb13d2cb4f8fa |
| SHA1 | 206b8b850adc92fe2a975fcf19d3c8b01f2fd10a |
| SHA256 | 02290587ca9afaabca35b35d76cab379fcd1a21152305375a32a50b0b1126c9f |
| SHA512 | b5637baa417559d2eee3b2402e6f5d50924d149568d3134e1edf7306965c7b7a89b8ad2e9828ca4d1c5a7d433459c1080a850773e76e318c9838f2f15c51f507 |
/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm
| MD5 | 7dea362b3fac8e00956a4952a3d4f474 |
| SHA1 | 05fe405753166f125559e7c9ac558654f107c7e9 |
| SHA256 | af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc |
| SHA512 | 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b |
/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml
| MD5 | 5687d3324e9547de1e575aeee651f1fc |
| SHA1 | b72733d14a212f8df433d661db64e119b6cff69e |
| SHA256 | 81c2d21f935bcbb097fbf6a6bfa25904ace55a3ae65ea303e6a49d7d956cfa49 |
| SHA512 | 3c81679a90a4ccd30b09d14f4b371c4ba56f4e29ba5d42a715e26e46b2f21ac960f55833972bb2b22630334ce297189c8017ca8ab22ad521343e7ec6b26d1d6b |
/data/user/0/ir.shz.shzkisi/files/PersistedInstallation1864456970081276764tmp
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml
| MD5 | 0aab94b4d302c3af8590fc466587c3e1 |
| SHA1 | 1503872ed464b15a38e5be4a01ae3c7bb51c888a |
| SHA256 | 71d6501164fc3cefb588bc70b5b2c90ee82707e0ae95fcd894caced789b08ab6 |
| SHA512 | c35ce87f707f86c26e62f1b6d0bf1dbf177027e2cf5ec31a1bd90a0aa866da698aeeef0479a55f17fbcda3bfc826d7b1dc266c59f96d3e28da65c94bc2c65c66 |