Analysis

  • max time kernel
    3516384s
  • max time network
    135s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • submitted
    24-08-2022 20:40

General

  • Target

    base.apk

  • Size

    2.1MB

  • MD5

    1fa3fc9ac5eb03d95bfa401a26111447

  • SHA1

    7b7ab9a67e3b61939308c099fbd26bee37426434

  • SHA256

    e7dca3774e8acb7fff77b734eaa8bfd827991c5d98547b00f7e06bcf3d92025a

  • SHA512

    c0a0358fb252d9129a8c045e97bb09e3c7b687bb4526097f32af89fc52c0bfb14eaefcc8d47a7cd775edd8a77fee60d6682290015006f1f2f85e86a5ddcefd73

  • SSDEEP

    49152:eopilj7byXKPjHUee8bMdkGN2BbC+bItuo:eoAlj7+4H4BN2BbC+UMo

Score
7/10

Malware Config

Signatures

  • Acquires the wake lock. 1 IoCs
  • Reads information about phone network operator.

Processes

  • www.iiooii.ww
    1⤵
    • Acquires the wake lock.
    PID:4708
    • ping -c 2 -W 10 -v google.com
      2⤵
        PID:4780

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/www.iiooii.ww/cache/~test.test

      Filesize

      4B

      MD5

      098f6bcd4621d373cade4e832627b4f6

      SHA1

      a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

      SHA256

      9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

      SHA512

      ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

    • /data/user/0/www.iiooii.ww/databases/google_app_measurement_local.db

      Filesize

      88KB

      MD5

      8dfcfdcef5a9793fb83bda404ec3f42b

      SHA1

      dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b

      SHA256

      a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2

      SHA512

      e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

    • /data/user/0/www.iiooii.ww/databases/google_app_measurement_local.db-journal

      Filesize

      1KB

      MD5

      1d15464e7f56ed07b5b6738db7708574

      SHA1

      c4a41b38438e812d37b3677f0f197e99945b1b93

      SHA256

      447dbd5b6450c7b13e1bf36648449bf6f2d666382e9269481849a02cb84322a9

      SHA512

      4e9010d470ace2e3e7edea2a4ce061c45a177b8401fe5e9c400afd9ff034b14e9e20157f0751539740d234eaf2f12c85b4d9ccd526e05c6e84ffbf33c384f5bb

    • /data/user/0/www.iiooii.ww/files/PersistedInstallation5328309659287079218tmp

      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    • /data/user/0/www.iiooii.ww/files/PersistedInstallation8625961570394964090tmp

      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    • /data/user/0/www.iiooii.ww/files/generatefid.lock

      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    • /data/user/0/www.iiooii.ww/no_backup/com.google.android.gms.appid-no-backup

      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    • /data/user/0/www.iiooii.ww/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      239B

      MD5

      86b74d7107f67b229630a7a2a1e2d833

      SHA1

      7ebc273a2849e44c9dd93e7077766997d1b218a9

      SHA256

      c28a595928381dc8085258d552949e8deba0be6aecc5183e488b999d496c86c2

      SHA512

      eb8204071d66e1f291973c2f5eb8f65e9ad703abe8e03c7cfeaafd9fba09d28bca78a8b0d8d53cf29bf4408924b049e13e7a917ce66f90a554d6a3e701a82e45

    • /data/user/0/www.iiooii.ww/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      134B

      MD5

      f27fbd2fb0a1e3ba121ae2713a1e9592

      SHA1

      5c8d493145039f5d90f49269a1aa02a65a7e7773

      SHA256

      9d487c3d884b6a178e87fda866253f8abd9c006c05287942e34d7405df58e89e

      SHA512

      7f5f5042c0dad50301171d60a982db1db2a5fd92d3c8b2771f91279d4da2859704a65e59eb88b1ce40cb72ec098690514712fa6e45f5d85c08636be53455e861

    • /data/user/0/www.iiooii.ww/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      188B

      MD5

      8536464727e51ab0ab7164eeee975bb8

      SHA1

      d27a015ee11a9a58620fd9448c8944646868761d

      SHA256

      c987c8f0e166192d110fa8dbc73c4b53d4e9dbdd2787997b7bd5bdcad74b5a8f

      SHA512

      d608c61d802b779fdc5638bb6b1979447e585f0c070090193066bee5599d95fdc29e3059018b03d9d4006257ea780ffaed8310c9f9915ce530adb28d2ffe2bda

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.appid.xml

      Filesize

      192B

      MD5

      bd8b642c64bb25f7f8440fdb23309804

      SHA1

      140f4c3c0fa49ed555d96ae6d12097a71f275d95

      SHA256

      252f3d0cdd643d053863826f7ac938a8db5168e9df70ed16c8a6b2337ceb0468

      SHA512

      94fc3d107da24569304bb5e2ae37240e3a7920de8755692400ae5c00f58cd834ea70b0adbcae13b8f3437df6dbaee217b687ed5edfc2dd288f4364a0f0ee66e6

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.appid.xml

      Filesize

      507B

      MD5

      4d3455bd131546288615ab466987ca0d

      SHA1

      a5f296716111b67d9fc3d80b73b0cdc8fc8dc716

      SHA256

      85a23dc7fe9de7ee828eaa6a3cd216c49e03029b9e4f6777721bcfb7f66e1b13

      SHA512

      2bc5798d84ac290307a3f117bd7bd2594e0315bb7c72c9dff59501930fd7871385411264540fd20df18a656dce83717ef6a3abf65a0f7c78473a79e0247613e6

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.appid.xml

      Filesize

      567B

      MD5

      569f0a6799a92fb5a0f30d44d8bbdc74

      SHA1

      dd7b1b8de291e753e9e38f78929dae38dfca8aca

      SHA256

      207f25f8b06c8f56603092f26cbf40661d6387f3689c05f7874e3797ec5066e2

      SHA512

      a2e48defb9acb42eb1300fa8829a43b8f2cd24ce97af5a3b918cc7ad95c9b65b8181d4443e7f6e6d765d40e2b211ac97cfa38521ce83c8cc1eb3229230bf7ef8

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.appid.xml

      Filesize

      558B

      MD5

      b3fa87626ef7a1cd2bc4d3dbd1600ef4

      SHA1

      973eb247ba5992b9b1b8bc6886a86b5f3f3ab63c

      SHA256

      35f747fba87c5753d1893b459c7efcd49cf1c949c97564c85ecbe479f0e5647e

      SHA512

      0f7f53517b0e1000e4fb275d8e087cc9dc462482cb323a5dc6a6ce237627812d0ed98e16599ab0acaa99d7db3848e95226d41f6df8ccdfb501c98232588d78bf

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      606B

      MD5

      a1a3843712c846868197d2175bc823ad

      SHA1

      4cba72f0f62a1c9727fee1d68ae393724c4e63df

      SHA256

      a8e77b09e0a4266bcb93104e59c229623d59f86a62b56c1cc03b9744f2f393c0

      SHA512

      cd8cd3114ee5ad8c37bbccab3830bb31c71be8a78d9052bf1addc379f7b1d42e9b2e09559ed1e5f66140b19f62d1a98da0ac86985feef2406ff1f3ff0ddbd323

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      607B

      MD5

      34e3cc045dc3f706aebfd57e05c3170d

      SHA1

      6189898f01e36fadb02ada70dee1279ba875e039

      SHA256

      e831b28d0171ded021502ebd84c432d9b378e480ebd663b987cb521f459adf65

      SHA512

      7a619768b77a1026dfb13e52190c2303f5e767a93466bc538711cd0e71a5282bdfdd6932a53cbfd473f3fd797eb8630b9783f912d617a8c0602ff90e59edfd56

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      665B

      MD5

      69bfaa9137a6a13d0ab202bf0086d468

      SHA1

      1b2e16b05c7a49cc30f9c6041a9f30226266f044

      SHA256

      c6a857f49fba96ce3191558aab02c39c304cb2b80916721c42df58f77e6efb11

      SHA512

      313be6798fe46795bcfd0f46f7112b2165c9976c21a152bcc3e20ff575b5a4b7565a9f09c233ed4f2cbe6afb46fce72f0741c164c2ee4e57cafc2bda892b8500

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      719B

      MD5

      85c743583ed91ec969c9c23e855f5c7e

      SHA1

      b7a41b74d1112950996c559443b9bd2fd6a99e56

      SHA256

      3220625a7feccf0ae176e19f4023d503fd6775433ceb8ddf2101be1639206c32

      SHA512

      b3695acbb111442f326adfd97f66431ca3afc325b85ec0826de59d90c00b011a6bf9c39419e38f7efdeb42499daf24430597227c0413d6d26658710322a5bea4

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      796B

      MD5

      93a4c0dea1fa974b76b228deb92bd0d6

      SHA1

      5017803344246a441bc96b0e14776846496b853d

      SHA256

      fffc8abb0988ee31c029150b43fbea646590e4ca55f99e9744376f41a41d0cab

      SHA512

      116da1476abefae5bb0cfa5ebc73f31bf51195ebdb55f833dec40625135272afb18688a75ad16473fb0ce06cb37accab9f7c3c55d816ce1bc1168873c72cef1e

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      122B

      MD5

      250b4caeba60ddf53228405750ba66ca

      SHA1

      422ab714feb34e9f3b4f1cbe669887bcd581ddb1

      SHA256

      2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

      SHA512

      373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

    • /data/user/0/www.iiooii.ww/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      395B

      MD5

      3d8afc7d70435459fe81da58901ed905

      SHA1

      0d260d9656afa552271d5fa0fa8b13e63b26d310

      SHA256

      5818c583d5aa033c48842c28172f9f05bc5056507cd5d98368e6f9891cc367a8

      SHA512

      f1dddddf754eb825002f01c3bf33e0a58cae3d9a608a16a75d103e48d1a58a316816bb7c4d12452e6b1c4a16b39a02bfe32fe93fcd935411974cad0af1a7a003