Analysis

  • max time kernel
    3517652s
  • max time network
    150s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • submitted
    24-08-2022 21:01

General

  • Target

    Livess.apk

  • Size

    3.3MB

  • MD5

    33b2e37b4ee06fa3b1e3fb0879c6f596

  • SHA1

    50254ed9e4e13a3fca6470c83dcd9b06171af8dd

  • SHA256

    8cfec8fa2f09d0d7d3b8f9a07d45e2b709c1cd5785964f7c745b81fb8a472c8e

  • SHA512

    d98196dac60a90680d75ee64bd2467c29284864e4f99aa9c2e5946955b7379be3ded0a49ca80062c47e8222b0305c36ce0a0290435e17cdd31371da3286f0511

  • SSDEEP

    98304:kEVF6aL7fDW3v0AMYfccAhR+QRodxH8l37GiK:k46x3vKcAhR+QRodxH4vK

Score
7/10

Malware Config

Signatures

  • Acquires the wake lock. 1 IoCs
  • Reads information about phone network operator.

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock.
    PID:4644
    • ping -c 2 -W 10 -v google.com
      2⤵
        PID:4733

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/ir.shz.shzkisi/cache/1

      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    • /data/user/0/ir.shz.shzkisi/cache/~test.test

      Filesize

      4B

      MD5

      098f6bcd4621d373cade4e832627b4f6

      SHA1

      a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

      SHA256

      9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

      SHA512

      ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

    • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

      Filesize

      88KB

      MD5

      8dfcfdcef5a9793fb83bda404ec3f42b

      SHA1

      dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b

      SHA256

      a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2

      SHA512

      e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

    • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

      Filesize

      1KB

      MD5

      a88462e6ed2971b39f6bebd683754fa7

      SHA1

      8773bc63e394167955c5ab034111f639f4654c32

      SHA256

      6a92cab24ba30a382dba7d6f8f034c809ad5e2139913e744223c6955b09553db

      SHA512

      e7ac73231e3f3fde3d09651b2bbd13ddea68f5cebc38534c284e44725a362d340c1b9f11d577c1d6c764bd6662a602b8dc9aa7d5eb2519933a6b8335680a5d83

    • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation4153644201887982015tmp

      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    • /data/user/0/ir.shz.shzkisi/files/generatefid.lock

      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    • /data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    • /data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      239B

      MD5

      3860a87024ace6adfc93978ca91cc5b4

      SHA1

      a595e96e9bc56711a3a1dcb4e0f248c4e67520e0

      SHA256

      1611182f745631284b8c4a54047c3f8907673144ce975b713a6ca3f301ddfae7

      SHA512

      5d9ada3e571299f01c6b7fd940bf26994cf4dda0d412c267a78464999197b3bdac594d3c3e9c96830d8526d9de6e91f9f4c18e2ba892e9ff6a517f2e69eb2b26

    • /data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      134B

      MD5

      1a352673c4f75125e5f57afbe28421bf

      SHA1

      71666b9d20ec5949b7577c9afe6970e355cf1d76

      SHA256

      30f961eabdae0e49dd07fa62883d9fd56c39b37ad77a6cbc4071d51dcc3579c3

      SHA512

      0871f06679d11aeb3e6713dd46d1e32fff63cd048791da73c66318c4662be4a9ad3e04c31236903b99434776a4696035c40cde911d220cd3f1ce8ca2404b3795

    • /data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      188B

      MD5

      adb6005dd50da6ea5ead92b84cbcef0e

      SHA1

      b802c593356e78d926305363598f6c221b068a2f

      SHA256

      32a50c9050fb37fe2dc09ec32220c09f0392ab8fb19271424dfab328d1931101

      SHA512

      9a0aa71f817154f1975bd74f12636806fd6ad2c058de9909590553272a2c98a382b636fe5cea0497c2b3f0896f1800675752b141aa6290c7a6100801eaff6e6a

    • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

      Filesize

      192B

      MD5

      562a2dc8f881d8dae0a0094aa217fe3d

      SHA1

      4e8f9b43be01de5fb707f4339014ca395030f155

      SHA256

      7656794c4a34b16c712a1a5747d5a5e677ad3591476770726c2bb841d7539ce4

      SHA512

      d02f7a9c56d6f9aa0234ce79210fc073dcb2704780ade823fccc9b88107e0bf2bdf6bc246e4432738735586948b4c2db3d334d38daeac83cf5b9f114a2e2c61b

    • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

      Filesize

      250B

      MD5

      846c76b8e579a57ea201a617bee42b69

      SHA1

      939b7d306b6ade0ccc45bc774310f7a061fc9ce8

      SHA256

      052503721270b50594e6fa200e4d0ac19d29de786c651662af333c68614cf554

      SHA512

      a17402580b9772b38e96fa303821b7fc511c771b0bd945c84d7b02f013c2aba7b4f2361b9f6164fa98658cfe320ff49785eab6cf5bbfe74af3e885a5f16bcd05

    • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      606B

      MD5

      6a37c26523a637ea2b6390fb805b293f

      SHA1

      9185a9820b0571ece34009ab673f23e6efa9ab92

      SHA256

      58aa1f8f2ea5187a10c346cb5de0913d04ff42d8ad951491b34c01ce9eeaf2e5

      SHA512

      fb680925963ac19d92096997684e144e010da25d41c25fae355500a39041c99c3a6c9bf4ce812729a7efb63019d09f5589e58785ef64755d7743e3fd9a92ad31

    • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      607B

      MD5

      5edbcec208e7ab7297da46e06e6e3ffc

      SHA1

      6f5350c1d822bd669147daf863e15755a977bc88

      SHA256

      7d0619396808cc1a2c6fade970a3ddcb002359c4d611044784ec66c43b69589c

      SHA512

      1950e1a0f31356c961c5da04a90aac04d78d42ed979b59dbfafbd4bb829a493ca04154b931771122f3fd599fc6dfdd093aa250768a5e4f62ef1e22245875632e

    • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      719B

      MD5

      b235352fdbb44d22d0503ee85f692bf4

      SHA1

      e14367c4050336591b5bd1ae98491baffda062c7

      SHA256

      80342d7e4c27b4b2cd56aa5584602b76f72ac8128cecd6cc2c1854a3a9506391

      SHA512

      cca16337ba77d376d83b86cd6e3e8bfed4f042158816a139787eef29dc9406cd437522839c9e31f1d00ac31754044dc36e49086ed75a2b54e7529550b41849e2

    • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      796B

      MD5

      8ae23a22fd9f7e439732388e1922673a

      SHA1

      af79aebc7d8ad0f1922a527f851d9497d0132cc1

      SHA256

      a887a387e76bf26e765bbfbf5c08f2bd777e7ede15cf79656d7eabd1028130c4

      SHA512

      69e5ed4b6020965c0fb2345926fe5e9d36ee0ce5345c8398160b29418a997e9553e14d4f71035af064d0b34ae6a8108e78fdb4ad0518c6797c9bbe38f680e276

    • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      122B

      MD5

      250b4caeba60ddf53228405750ba66ca

      SHA1

      422ab714feb34e9f3b4f1cbe669887bcd581ddb1

      SHA256

      2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

      SHA512

      373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

    • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      395B

      MD5

      3a4b969a8adeaa24317bc29f2de9f74a

      SHA1

      6bbdae26a814abc3c3906895eea59dd8faf94c1e

      SHA256

      e1ba63743de55f89d0d7eeb4dbc130918f73ea1b36072278a025767039aeacab

      SHA512

      0c527e48cf54bfd54d618973540611a8c54d2dcbabb17b341aa1ad141134aa83cf9bfbb526b382d98d80dfd909d4e04c136916167ef9981ef5a62a895f2b8786