Malware Analysis Report

2024-10-19 13:14

Sample ID 220824-ztvsrsbafl
Target Livess.apk
SHA256 8cfec8fa2f09d0d7d3b8f9a07d45e2b709c1cd5785964f7c745b81fb8a472c8e
Tags
brata evasion
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

8cfec8fa2f09d0d7d3b8f9a07d45e2b709c1cd5785964f7c745b81fb8a472c8e

Threat Level: Shows suspicious behavior

The file Livess.apk was found to be: Shows suspicious behavior.

Malicious Activity Summary

brata evasion

Brata payload

Brata family

Requests dangerous framework permissions

Acquires the wake lock.

Reads information about phone network operator.

Removes a system notification.

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2022-08-24 21:01

Signatures

Brata family

brata

Brata payload

Description Indicator Process Target
N/A N/A N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to read SMS messages. android.permission.READ_SMS N/A N/A
Allows an application to send SMS messages. android.permission.SEND_SMS N/A N/A
Allows an application to receive SMS messages. android.permission.RECEIVE_SMS N/A N/A
Allows an application to read the user's contacts data. android.permission.READ_CONTACTS N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2022-08-24 21:01

Reported

2022-08-24 21:03

Platform

android-x86-arm-20220823-en

Max time kernel

3517642s

Max time network

95s

Command Line

ir.shz.shzkisi

Signatures

Acquires the wake lock.

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Removes a system notification.

evasion
Description Indicator Process Target
Framework service call android.app.INotificationManager.cancelNotificationWithTag N/A N/A

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
US 1.1.1.1:853 tcp
US 1.1.1.1:853 tcp
NL 142.250.179.142:443 udp
NL 142.250.179.142:443 tcp
NL 142.250.179.142:443 tcp
NL 142.250.179.170:443 tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 tcp
IE 20.238.64.240:443 tcp
IE 20.238.64.240:443 tcp
IE 20.238.64.240:443 tcp
IE 20.238.64.240:443 tcp
IE 20.238.64.240:443 tcp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 7684eb71b82d5aafa6774781b9517f0e
SHA1 25492241fd3f939cb157716bdcf13a0f4f8e4cba
SHA256 05d1090de50edf940d7dec16b4bd47a72b137d3f3848624f5663d68fd7c7fb71
SHA512 b5b9ae1441439775bd166cb8f7bf468c57ee90af3f7431541d5691d442236e54a75c93ead4369d9834ae324cde4db1f0d83a4be2c760449b45597d581c11d7e8

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation3267912806903265449tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 327c9f65670bfaee921b7352dcde32f6
SHA1 e30aea7dcebdee0e4a71437128613c9250044ffc
SHA256 cb2455fb68bd0d3023c2bed12ced3525d9cdff1fef3f685b192228eaa98d62e3
SHA512 a38cda9e13c073d61d521443c1355badc1c98721ff2b9d10e1264dba9086da109dac913ce3bb1ba892a985b3acde3b23ffc9455d37f28060f743ef56d63b4a77

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 d686839ade973784106c0a1752bcdc6d
SHA1 7ecdb3ce47710d9210be80ab963085f7bbc7066e
SHA256 0cb882a565df2134d71b2774d66f916ad6ea08233d04e16d5594db3cbe873bb9
SHA512 0533b9f96244aa39e70334d72e0598a3da5673194bae04815018b0067d382dd828f2f01fb135cb458870b9825afc4c2ec93845932c061f9e2573e57617612aa8

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 a09c65bd6308361148a10f21d954d1c2
SHA1 36735691f634e43b090fa185544870203aee50ac
SHA256 e9702a2ae96a9cf45ac1b7ce9056e6fe2d1e4362f6c8bf97b84a3c8453bd5941
SHA512 70ad07fddcab4ecc7a5a71d13e993f03bc3c5fa6f39dd3aa9766c9924dcedcb5bf4fc83da5adc51aecc0adc889be987b5d1fcb8b70c4e747f6364d9a7b144910

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 89cd606d433241b0e400ec6e41988cef
SHA1 89b9c657f7f3fb4ccfb91cc80fc96e8856c48ed3
SHA256 fcba6384af560e501a3fae9ffa613d5f9d08484ae6c759bf54ae4178d4c2d253
SHA512 f79809217f10226f1a915adad15ff5d89aae50835c718a7ca3a9a25fa570f005c8b0ae0eaea767b68bb666d8128426be51b3fbad8e3b024a7f0f0302b14179a1

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation2876029486880988409tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 976576968c3f4d564799f69a178fda6f
SHA1 87aa7f909390d8baef6b72cb368aa1db4408c072
SHA256 f3180bc585fdfaa0214a6d8827faaa5d3d74052143bfc5933f87013a9768e718
SHA512 0918d6afaac924785b7f7ad3ef93082e6b1ea0a901802467028531faf25f1723e26a88c41bcb02238652ff697fb950a46fdf443f117ba63ff0b038f362324af9

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 6667e20d7b3ee45ba1a4a7396a76297b
SHA1 5ca45b23c7d7906ef4bc6f213b4ab572d238a62b
SHA256 3e48228b7654a656fd0ea99bb172bc8860cbaf67ff1a53199266c281612deae5
SHA512 3e902f4fcbf791e4dc933257eba219d3b3b643d684977ea78fdfd9b1a2ac541314e509e5ad3cab30450a2d2f69c7f222338fe32c304c41a517e0b2e718b6d721

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 c5da439a84d04a8bb3d3974abf68691c
SHA1 b0be3a17b9e932d86dd95570fb31375dd39d136a
SHA256 c69cd3f292ebf24ea33055b8d428dfd97f005c09a695aeffa7ba27f2092259f8
SHA512 ae42e4c91c480e0bdce52d376087225b81f63cb9fab62582bb675dcc9e1d552d462d9face6419b9d892cc35573859cffeb2b794388e6087bb11868dd50fe6aa1

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 b2c221559ff7a9c6d5f8202b1eaccb09
SHA1 9b0f001bd22affc96e9a011e608cd6aaa3f922ff
SHA256 56140e330becfcfc6bb630a7729fb03e250e2ace2e59bb433828cb98f1fa8f39
SHA512 188a3dbe8e109c180d70d406a67a2ff08ac7906db99593a6cb64a78f4b7b15919c6f83c6253c645df9bc3f926ce23e44881f0cc90cf6147907f404830a8c5db0

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 4674d02492dca2d815ba88bf3b745e31
SHA1 1b1a7dd8878588ec8c854368296d58dadef7f726
SHA256 53975c2d85ca3d5d564dafd524377a2b1b551730660364d3a0184f85a6216dd6
SHA512 b00d92e6f39cdf8fe735c99fc6bce2e19b9bf52a9ef52fb025f38be0bb6acc4ffcc64a4da4da9626d2ef3f8f7c8fa9196677d84b190744f9a21a7f60a5afef45

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 9f0436da43808a35e8524a9a2df3d33c
SHA1 e89f91228bbe096ebde6f5b5d5263abfffceb85e
SHA256 4b17ff5bff145963e224b5ee0575329a4142609ce9625f4fe7997f954fdeee9a
SHA512 5577e2ebe826250d4d38cfa21a4cefb09b759219bc2ddfd799e0bb06f3c54d01153c373d62d3ec50044030eb9810b8e55dc1f534feca5543bc47dcc67f45f8b9

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 e24137def348f3579bd9d371a85c3e0d
SHA1 80790a81a5ab3e980a93326715db741f9d730d92
SHA256 da5555fface156a78953ee24b8dd77efd41448bc51817c07290f4b2e3a0d1f46
SHA512 c81e10bf7c9a0961a26a3b98bf0fba21354662f7bb707b73ca7b7a59fa37e9cf4881dc0964eb97bb15dc33be043b832fbe8cfdb396f806f1599e53eb8198c006

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 9996af2da142ae3f5f4a0e88431e4561
SHA1 6eecd568ef65ddf3d1ce1c4a373ec23072f03604
SHA256 90be4804424cffe4522f55b25f4f396d50a68f2f3359d21e7b483a759c08b0d8
SHA512 ec806927da2fca7d2816c50d2b71c530fa0f5567564f13a2889872cecc811de8f9987bab025573c98b71fd9c05c42d141b43263828089af2f072289a76e0cb82

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 7af725aa3e1e63506c5fa5b1bbaba0b0
SHA1 cc7a5ae72dd7f037b162e64e7e314811fc0995a0
SHA256 be2649f632a0ca4e2affc14194c2cbb87f241bc61eb2f9b1cbc0c58098020f79
SHA512 b4a6d941b5e9590b4c19b49b71c1c0d3a6b48316dd7c7f3f4282d668a31d62e275d0238c7de6109e188780cfe93c81a531c4e91b714512971ea9988dc5fc16db

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 19c88d7d71129b1c101c9722f8493f55
SHA1 751d2c0baa6c44b3a27ab15592c036b51396da11
SHA256 13a786149c137a20eceb05626472a7f83cb423131c1febd989f9133c81644bfe
SHA512 bbc2a5792f744d62bc85964b242b223451f250e665de8cd8798881467326e6a4c01d4d069dacbaabaaa9e45fc94ca680291c84fab599c229a077dd076198c129

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 c671ff6c6bb9f59f43a5a32d250abc02
SHA1 04c8d8d283986ffb8310304340943fa62306f2b2
SHA256 b4ffb6d2d4aad476da8327f0a393d90d70296ad21099fa82865510fcf4aa8213
SHA512 a7e477761579e322bf917d6c0b16af2c6f1a918944ce80fb8e9171b1f79cf06b7b239a79488edd15b092442d4cc3e0b8038672ab89b513937c312c4f643f5105

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 581242e3073e195f4810c6ab85b176a0
SHA1 d67f1e7bb8d543afd1ad5d71012b077e1bd533db
SHA256 0f61eef7f6452a58d3fb7773593ff3dc5ccc4c3f2ceca2312466b07b74b8c5dd
SHA512 c5ca87a74a2ad06abf5b5f556f1295874829d334419ead3f9350f8ef052b0e4aaf7b35f8f0f899df1832d36328675496062b3c0edf2e26dab5cdc778e454b531

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 b1c7a4e2091e04418bc5315bd84776ab
SHA1 7cd5c20db19ee8bc83da35218153be79cf4e5a12
SHA256 b1b0938af09e463a5fba7bd488f235a13d19478e69e99c04f5a4140d0308a996
SHA512 bf6162e7e302abfaad0680fc99151ca3443fb1edb9c069b43b0042da6dea14f3d9af50bedb90229f26f9b8668fab66f0e4a1ca2271c1a4e68f989bea9d6e7e3f

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 75b0a6e31e9cf02a29202853d6c87df7
SHA1 e8135bf662383db2e52f9af266ec71b4c1da8a74
SHA256 096635db38ca9a1235ecbc3494a8ea9783f777a13a3e2d2bdd379acef5fc4b15
SHA512 6b85eb7119a03dcdf5829a25a8260f52050af2579dc651e34cdd869837fb76c6f68e25b97f4f1bbe2d7b06dd00ad910f20e5876b0c7d81147f1ab5cee795fdbc

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 c481ea2e65d1309b3b41fe82cf667b70
SHA1 0049bced4e02706d066c7b17b74b8c63a3425cce
SHA256 8d07b4585ca5d891ec49a267c74b899593feb0b2653a7ad3576bb39f0cf3d215
SHA512 9fbde0da1e945b9e1beea30182f58c6d5ee05e82077214533d4ba431405c93594916772bc86a009c67a225edbf9cfb1d807e57d42f418bff9f0b058dc004e587

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 9d6ca2687a65ba22237312a2c28283ad
SHA1 e4ff31f3f76c333529370f863e3ef74a45cc8e37
SHA256 7d82ba3693eb8c9f3db19170cdee3a563442c6c93beace93922fbfaa84883f5f
SHA512 360bbb7e8b453dac11d1b16e4ac4616fe63a53bcf41a91115d1b9c23718d1c464f505eb596ce6c92028e1763c175e919dc686d30be77e99de802d8faad52141f

/data/user/0/ir.shz.shzkisi/cache/1

MD5 d2befea24c29f87b2d70b01ace94d5fd
SHA1 f5494aed84ee4f7cebae3395fc9b331a6a030b21
SHA256 5b3934b9c8897fca5349a1fe841b101789211b1095d882c35f81f3d41c732f0c
SHA512 16260b989880b518a41ba0acd383470ae8d9a6d63e362774ac7a3c2d4e7a38d012ddc600ca6460c9c3fbce7019aaa5a804549f0c915d703877e5f7c66a7314e0

/data/user/0/ir.shz.shzkisi/app_webview/variations_seed_new

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/variations_stamp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/webview_data.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/WebViewChromiumPrefs.xml

MD5 21223e9184445fe043476484cd8cb1f9
SHA1 2b4813f849121d60ba35eb0889080668bb62c778
SHA256 bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af
SHA512 be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

/data/user/0/ir.shz.shzkisi/app_webview/Web Data

MD5 dc79f9ce5f3ab5270b33e61119dfc959
SHA1 1844bf222a5144b513dcf2fb50a18c011701c647
SHA256 47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65
SHA512 18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 c1eda3ceed4e2c73aa58cb887ada29cd
SHA1 f897f9fd97eca4c8b19bbfd77f336cea3f3d43fe
SHA256 8d1a2f2494204455e42804d98c11ce4146ae786efce37adbedda6e617960493c
SHA512 39e5af5e12d1a2cd9d8a93a16a13f0ffd194c1f69dd273d8e74fd52e5c90b86c0e00ee91ce93f3372b601b3229a32cce3e3c622ab40037366c1c20f2bb7e62ad

/data/user/0/ir.shz.shzkisi/app_webview/Web Data-journal

MD5 7fabfbcfc0a03f6e2219ebf4f7ec1d8d
SHA1 892d54801a88966f212d44864649e989b6290f98
SHA256 cc1e9e4a18688ccb6484fc821553f8a86e5cbc9b87677b54d77445ebe8e6e3a1
SHA512 f3c60d0309583c841eeb4059f7e93e493cedb2dc7ec69869d769b7c1e217e4050e241d385d4cd3cff8805a1cf7cf38ce166a6cb717f888ce2363d141eaf2c1f3

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index

MD5 93027d42b314432c4216e6cfca48b384
SHA1 43448dd8102979c3926828182579691945eedd4e
SHA256 3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c
SHA512 a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index-dir/temp-index

MD5 4b5dd393bd1f2b8809075557fe97bb16
SHA1 4fd8c486c8c38060d6feb3c94fcc38a95669dd6c
SHA256 901cf5b9a8cb683b8d9440ebd56c63f3a6c9a6abe083222c481cad497a89909f
SHA512 09ff24bec8e3e73425e8b40137e273ccfa53d11d0e4c27d0978bde3e82732dc3222bc4ef1e0ac68438eb8e04a522102d0ad1bb5f9c227410485655b54760392c

/data/user/0/ir.shz.shzkisi/app_webview/Cookies

MD5 cb7543c4df600f2af58097cce0e334ba
SHA1 83cc92f38c27fdb4fa519b1ce2f37912f24af1f0
SHA256 64c022ae708f94ffde986e105d88f708884de325720bfb9925c4160a6d417233
SHA512 ad51cad0472327bd68aa2d791341cfafed58971752352537bb603ed18b15a3f9185e9150983a28ecd09606e8dcaef6d1c9d93213dd246ef7720f39842eb3d980

/data/user/0/ir.shz.shzkisi/app_webview/Cookies-journal

MD5 5d8afbad9041eb591b0796bf816b6a06
SHA1 9741cc1ddbed0f5884697295aead11d114d2a928
SHA256 46a38db6c942446092fdf382bf3590538f98917538546c4650c3903fd04d2380
SHA512 292bfb9fff8bf73949f07d39649355fde711c6a8fa6b3f8885997b108c64d41cfe644aca5f103038edc3b7f4180ec63ea09d98af954d511868fea85ff3ddf50e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index

MD5 93027d42b314432c4216e6cfca48b384
SHA1 43448dd8102979c3926828182579691945eedd4e
SHA256 3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c
SHA512 a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

/data/user/0/ir.shz.shzkisi/cache/2

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/7c4fee84ed4a49f5_0

MD5 869ea761f3deaa0c096f33a33d317d52
SHA1 0bba6b42d40020a889470388ef76d140e48cf179
SHA256 6bd0900cbbcd663ca811ee5bc9cd6fd8f7bea65419efd7412da686c10ba43aa1
SHA512 4261f3683495b180634d33c9b2790fce65014fedc5305a230f01867fe315189b3974096375d95d53c798598ae7724295bc97dfb81e0fe3e094d7529fe0fa423d

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 e4a9bff4b09bfd72e8a1895e8b287a63
SHA1 74ec4578eb6bd013a13b50d03b60dfbb949b5907
SHA256 8fb4729f5f6e0a390312f09977bb05627e67b6208a7df528f12e0a6bf4059c60
SHA512 6a4780b94936a2d81c22f4832545eeca700d5dc334e5cc2b02b6982498666b45223c8437070ff4eb029cf546a1ff5cf9d33d99acb9146021f1f94b2d1ca9048a

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 08a136a53e414d69c7653934bbaa03d9
SHA1 def09549e4510ccda9766119c033336bda17017b
SHA256 6ea646769c6b395d460f8a4ea8e294e03cb10539311ca17fe71364074b33ad5b
SHA512 8873b60111e015dff1155b432c0f172ec449c5040a1dbd77f45a6b7752a906412aa44bb5a5aee8bffed784c8ef671a5d71999679be642af2b2b6013ad0ea44ac

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/d5d0512a7873cf2b_0

MD5 c4a64c5183e992f00d2face5fcf6e6d3
SHA1 705f85784a3ece2636c628b91742d7eae586f034
SHA256 61e30ee2feca384f7bcabb4db7ed7e691ebbef953027cf73c5b9fe6745f10254
SHA512 cafb1cc2e2752a56e18ec3b0ec4bd89cfb51267b99f0ef5893b1e25feb1fe241986a33e26bb96c77854455e9cf0e5ba4c7090b50ca178d05a79c15e079df6bc7

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/ff35bb4f6930cfd8_0

MD5 4d1704e895e1fb6fbaa1a9df9f1182a8
SHA1 1b367f9af796bcd6674a77a4b1c9d596a1641a3a
SHA256 7379e11799e31c8500ad2925fd0ff1c4375be96b3f7a78c2e87c3380d777625c
SHA512 6e8f9fff3f136619cc71f6c4b8e8759107e16656d24bf27b5abfce62d11652bcee7dfcd52ff5215c58b18f34d8924da335297caef9df7f348c29ff0dead47369

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/65bddaf8e45837eb_0

MD5 73993459e58f7c0b71ea78a61d5bb598
SHA1 fcabc3ec5624639fe7c9fed98893511b2a9ab355
SHA256 862416917241084dee7d244ec02bf6c3720244f7e3669b46c1fc20af96b542e5
SHA512 aaaadc49cc0275b968d39b5f2cdee7e47fdfc9613f8a5542fdae75f2e212082f0bc890e09774cf4191b72d067fcd648222c838e478bd421b3959fe3b8afc03d5

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/814af41d25a11bca_0

MD5 0d8061f1e30cc6562fbf5712c64591f9
SHA1 a49643cb934ec736263d7c6f27f3fcad728f433f
SHA256 407e0011aa4d80053a7a26983464c1babc0739b20b26a58ebe5a8e3af1cdd065
SHA512 673f3230a8ab9b77f16deacda91fc11914d1bd1f74ea36de9667b961640d0716d47d3ac62d074e9c6f2ed5d67091f5325098d57fdd652948fa9bb2c51aa8db50

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/c409a3c17a4f6773_0

MD5 79034c6ef4230fb583ed4131dd8d769d
SHA1 9c1ffe60fe7623296cb197bec32b86b14791b934
SHA256 1156b2a4102b157ae2065b8f12e765a9db347d070883534802d9833929edf5b9
SHA512 b9511d26896bd91fab51ee3b562ad94e4cf48a5ff0f10d95be9a693be3b064bdff4802c8be8e7e881278951cb20514d203086bd882953460527ffc44656e8c64

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/3eb632b6d89d57c4_0

MD5 bd9ae1af48e8754978a470b49133860d
SHA1 1919c1cdb218c4befbdd42bad227f9bdad2818a5
SHA256 1359d206e070499560f47e7b686c1396b609e16e991aeb2f238aa22b937d5620
SHA512 4285f077de155c45274f26f74b414b555e3ef434d1f94670216185942ccd8690685f1850a1e5310d75c0133edc8943cadeb0cbbfd5589c1389349af77bd38e0b

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/f51f17998e616a75_0

MD5 6316fc47702a38c107a65e6708f62b6c
SHA1 92ee487345ffa6deab663eb19593b7b919158bb5
SHA256 8faea11cee1f11e60fb255b6fa2f8e15b2d38b369ea7b741caa4ccfe8297e2b7
SHA512 a782f5477e052e65141938026483efe2046cb5ddbc4c1d5e991fec9316acd72697c50e1dc24a2da354903daaf8a4a7298f762d36edb9c0687e5d9d20cdc80fc4

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/05bc10ca4a97574a_0

MD5 7edf5091e3a62b3229fc4425642d16eb
SHA1 f16ed66009a2e13a2917c9965d075e482b6a4578
SHA256 280fa9baf455074afefaaa41c67f59fd6e642f4a3de96f547c4d69afe37dcf66
SHA512 ff41d2d06d0f56ac0c921b27255f5235068cf1dd4c4b206976fd199f33a082e162f59853b0b4232bd85455897307a13fe250878728e164e4c3cd6677d2e42537

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b7b40a6245f653c3_0

MD5 30e9409d796b64d892df51344f8048c1
SHA1 0a3febea5c974e9e95ad93e01a0bca8cfee2ad46
SHA256 b367bfc993caf5c7d3ec8095ca439ef611b01fbb3aaaf9884ee8a670fa6b9bd0
SHA512 f86170511d2b8012982ab6923864c6dac7abe16e7d88fd8f31e0381da2ead0257c3a2ba9e20908f0acb96e5f4bacee008257b7f287c4d555157530daef264f3f

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/c3488126be89a96d_0

MD5 fa572cbbe1a276eb1200b7aba1beba65
SHA1 f032af9ababcea47f5111913918228653f72ca20
SHA256 1c03886efa1589c263759c5740fca422e3e535a5c63b54008c0fa0506d9de4d2
SHA512 b1fa0732d2663902a05a32381b530ae3427ae871989dca6cf1e33355e660b228bb45d3d32d60a335b2e3b5bb585f6adbd0495ef5e693c458ca39575b504c7065

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/96f52af4b2b589db_0

MD5 4278186909649cc2c5a275405343a999
SHA1 7a56e6f04e699f90bfac1c5930d91134e3adf97c
SHA256 dffdf0b69d59fbdc8e92c09a02a04e330b46e2a29c30f2b48d2e7a2caa773555
SHA512 069e975175cd0e94f1cacf36e583a3f12ec80abde5a719ffc05c2a03a2bfbf198c317549351e4ef5d0cd012261dd251835f35b7dac47017bc38d1b869cc5de37

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/d8e3c7d5f50641a1_0

MD5 10704bf3921e05dcbfb550e3011dac6b
SHA1 dcbc0def589f705e5e7ee4890ca936cc636350e5
SHA256 b764c507e9abaa9b8d83b9a681bf49f3b365bd08c491fe5638a9f6203be65dad
SHA512 cd60e5a015b80f7f2b72caaff8cb1e85ff944d39ae947184683ccddd777eeaf617c4a123272e390d69f0a6d7e0d35ddbc2a308e2f4282639829e0cef790327c3

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/212da6b11e401ff3_0

MD5 7bb9c24c4ca924cbeac467ceeb83a174
SHA1 47fe3ebf8cb39537ae4da37a9f85dcf56ea3fd1a
SHA256 a02d0064f436c49587ebcbea170a82375f543d4b81885e72d818639daaf7d235
SHA512 7376cda9659ef6fd522e1672971a9bf2c88a2d0808a058cc6ad77f398140c3eace11905a78bd93bc7ce2b4f9e01fc38492cddfa0f057a0f6ea1ba84d4c4ff901

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/771ca07dfd0015dc_0

MD5 b3b224324843e211964478ff7b2b10fb
SHA1 75d275b86bbc9c82a6f4c50677ae4cdd95ce968d
SHA256 e13f69025462209fd06b6aef3806727ccc0fa824ce6ca5d701dd640b3e294a6b
SHA512 9068850d0a40095b794f7c2119656526b939ccfa6627a575a2cb77798a391f8cadd309a23fcf6a3387ebbb9be2a059c55fc6053fe8fdaf5a857f94f18ff2f85d

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/8fdddb79d7b9ed54_0

MD5 70771953f145af877fa1753658cdccbd
SHA1 b3a13accac92aa3470d462e60350b1eadeb5b465
SHA256 38cf8c525fb6f32233bcae2fcf1246b5d8634f040e0d7181b579845de533bb21
SHA512 4f2f542e03791844d86d5c146d2ca7124483d98a947f4e589e9052305c12310138da385a011d8bfa2cb491155515d731f184f5a4a8a4e37970f0e1feea5d22a8

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/6e9054df4455dd48_0

MD5 648f59c12fe5519ebe0a8153b8e3ed6d
SHA1 a7f5beaf37751a852120b65103f3ad2c09efa6fe
SHA256 c3b272ff2c8165ef509fdce59e7fc7f18ffd80a792ad330777f3258966ec5556
SHA512 98289d732fdcb67820609992573599772650c20a46fe2bafe6367f306aa9749905da53b47e1b7a143b2fcc0581c81131c4c0a000229208e2634dfd48fe336203

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/5d8d696fde17d6b1_0

MD5 5ae764418222bb800c29ad423b5425a3
SHA1 aba26f67270eb0b01ea6a3c30caea72aa6cbd0ce
SHA256 bf68e080dce611de145a2969f6c78d278b0a39c626331bf51572395c257de459
SHA512 44f85c4dc41f37ecf39b6563c82d85c34d470bbab9ef2637f33e1ccd8c8a1d0f1a5c16b0a557b26d24fb19dcc1cc206dd6f20f7420734c71a97c3ea2cf0b9dc0

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 d5e34b8500351f645bd0f5f076f2576e
SHA1 14d3aecfcb0a057f38339830a298d5e9b93c547f
SHA256 e018aa50202a16e6040886815205d3709a0db4d624ae9ba60ec2aba3d8ba14e9
SHA512 93aabe0b84577c1bec1b4d8aa00a801f191a2ebb37b1f4ece99d9d71015f9753d308cdd9626e9c8490309d794566311d33019ab97a565336ba5f9a204674a1ab

Analysis: behavioral2

Detonation Overview

Submitted

2022-08-24 21:01

Reported

2022-08-24 21:03

Platform

android-x64-20220823-en

Max time kernel

3517653s

Max time network

164s

Command Line

ir.shz.shzkisi

Signatures

Reads information about phone network operator.

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 206.168.217.172.in-addr.arpa udp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 206.168.217.172.in-addr.arpa udp
US 1.1.1.1:53 pubumlive.tk udp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 ssl.google-analytics.com udp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 21be64e1c52511609eb6b1b0b5d37de4
SHA1 6be63f380a32b451a64e600371230b5a3bb8be70
SHA256 7849183df5f87c02ce6cd754bdc20106d59b1b90e68257b301e8e7d794f14420
SHA512 96292965ce1df59e76ed773ee55657539be09abb5b3f3e6d1eb90df1a1fbd033186a154b22d55b105537eef0a7dba817af8aaf90d84490a3a701e305c504b7ad

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation1661446797423972976tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 cbcb1337bdffbc16ae68cc92255f0f6d
SHA1 0f841752c1987ac67b2bf1210bee6a88a2087a64
SHA256 58f1b3d4a67c92f9e276b10bc441ab4703fc18b81ac84c1a3746b2be937c1b13
SHA512 a1a987e2b00676e52a3a71bb0f54fdec34c91e318048fd702d1cacaa3ec82ec64e38c1d26f49f2a20a0946b44d3892baf52191dd6726ffbe6f3439539c16b5d6

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 d4e72ce48361f75eb173b3c53ed3464a
SHA1 63941a05de869b4568b1e123fe3ea7337e47dc95
SHA256 65d3170a06c945d3c400339f32264d89be409346eb0f2b3cfaead2b838a6b8dd
SHA512 7d39f5319cee911f35eb2a082a7d70e0b96d26206766d00cc9a5f62a3f5887e6874999cfefb92f1f2722a886f108cb04971b6b24dc45b9a3b9fad28b994c2993

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 06b081a4a09beda0cf0bda873cb09ef8
SHA1 c372b7034cc3dc15337ef9be9f2d0c552f0b8859
SHA256 870a4dc2e42f13fc5461136dd5ff6fb7d149f3e0453bb748dca4840ba31b2660
SHA512 79b88151a20eee99bf976cdaed33531465dad658fa184f57663c73083329e5c7490215679e31b5126e4be60d192c3915a5e86c6908ceb056bf53e065f2ad7d0b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 7bd7e08b7c157fb7a04f9701b6965b65
SHA1 19ed78cffffd879509071b091ba60776c18e8d97
SHA256 c3aa0e8a52b6dcae0f988502bb3887f94c13148a8f36c3fcf5036c7c99afbdbc
SHA512 a668c141cd4d48396e9d67e79ec1036a8ad4498293e0f16d108e8c4d842f76714f561bbe440a3a5dbcfb6b7ade257ffed7fa07c56566c8ea938589c61943d4cb

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 25d5aa10c01c92087633b4cd762941d2
SHA1 b62fb2b8c0c00eac29785b0f989270caa467c40f
SHA256 ccd120b83ddc6d9061c82bc64911dd10ed8afc2610df3971ac3f71677e1b4dbf
SHA512 616612fabc07d86c8932d5895a0973e33223afee10da293b58bf7f92aa75693101a1626be705abfb6bbe88fbd5d947ae1e04301fcd54d602d165db7fd708c8e0

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 862e7ca68c80bd053ec16b0a238fb01e
SHA1 78a040c715bff4010c1ab1028ada5fe6aa6a17d1
SHA256 a47e3cc15ca43e1558fb1db454d73f50b590472656a18e0c9ed077934d970077
SHA512 81a57ea10e5bc5880e4c854c3eeeaa37b53efea40881c6d11846b498409f7fd2ae3aee5c5551524dd24021bd6cbf843ac2e384ac694863f41f121241f55e0036

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 ba8bd6b158485c4e2e67cd681fd6a2a7
SHA1 e1b45ada0d1033fa761ff0bcf15b3b5240aa6584
SHA256 0cf6f77dfd327a666e69627a8edd49ec9b0282cdee9fc38224b1ea277ef2e823
SHA512 a36b0e738deaab358fee1275b7700017ca5795c8f8824c7a587c3f09fbc9501c22d9fdc7c5a611b39393af12984935823c9dbf818dddc14fd789e229396d7f68

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 735e3bd5e97945bcb372290ba55238e7
SHA1 68c9402bb99a7031bf5eb1b51b8a7efe84154524
SHA256 9ee204935f71bf0d0eafae63214573e3d64b7759854be18e76c84e01dc3ca8ce
SHA512 8d98f077b349af99f04ab941a78eb50bc3ee88aa51a266c77e7e8ec98ea7e3a64cb572d464a1ac9fb6e837662f98efe11b0d67b4e9435d93612c659bffc6aad9

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 9ee8c59d5cf9e1707eef898fa0eb4ed7
SHA1 3c22fc9a7eedd324df91ae9d98bcb0eddb3206a0
SHA256 daaf62709ffbce0cc2df07ff84c3300f3c8a94f3d538312dfeb68fabecf5affb
SHA512 2cc9dbfc883d2bfa622166f57734ddebfa53c4d0ee08cbdbefc622230c66f4c63c61e2f4271c5966d7de8517c5ecd4a63aeed4cc997371627987ef43a01d142b

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation1718425506445166863tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 739b0ee27fbedcdb55963e0eedf6c9b8
SHA1 2816e4f6166aefd9924e632b035cf9455cbb3919
SHA256 14bef6898cc14669a71584c29d9cd5d003a6c71d98010f088b2e29654482b797
SHA512 a22dc078d536760f4c0ecc8e707ec57642bf317534e59776d36c79d39963989410e84350e05d50e8bdb877ff260eb4de887843952a0accdc9e2eec140851d9f4

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 fd4baadf8b4bb032e61fc20295a09b87
SHA1 9d5d323a1057cd0fc05866b73cfe06c4f8a0b405
SHA256 cafec7bf8e7d89559890776958ef71e2be56bd41a0be9caa1453bea63b4111c5
SHA512 ce47b22cf8216fca2c31021c78c4da5e90b38e8195b6325ada0c0b6adbbeab6d02dc4d2ad3fd66e1c46ea084f26cd1dc0b0ff38f906eebbf1325f2bc03a3124a

/data/user/0/ir.shz.shzkisi/cache/1

MD5 d2befea24c29f87b2d70b01ace94d5fd
SHA1 f5494aed84ee4f7cebae3395fc9b331a6a030b21
SHA256 5b3934b9c8897fca5349a1fe841b101789211b1095d882c35f81f3d41c732f0c
SHA512 16260b989880b518a41ba0acd383470ae8d9a6d63e362774ac7a3c2d4e7a38d012ddc600ca6460c9c3fbce7019aaa5a804549f0c915d703877e5f7c66a7314e0

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 2a26c4d8929dfca1615735ada806993c
SHA1 2a77bd77cedb44faa64af2ed8b0264f561443822
SHA256 e265c609b58d81b1aa70e196ff72cba9815070fa9236aab4836c3d23224d0cdb
SHA512 f04d029f0ca8e08798fe149b8caf4a845cf4abf8ecff3fc12ac70a59b049a5b363f8a40f4eb0d8ee31590d5ee64aa7e734a24c6a94f4466cdd9635bc5d326e06

/data/user/0/ir.shz.shzkisi/app_webview/variations_seed_new

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/variations_stamp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/webview_data.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/WebViewChromiumPrefs.xml

MD5 6ef709b8536878951e87c29a1518fc2b
SHA1 24376c70b00152501b3d98df61fa7db435339172
SHA256 10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6
SHA512 96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 685fd8f3f9fef492e54a50f96cff207a
SHA1 d3916c3feaae5beca6b9911688729e9a527c04b9
SHA256 8ec125f8575844fb5fac06b604009e3d5f13940493ad82fa0c41be530fbd8170
SHA512 41f683f0c1e95e7182cfb499c0837f565ba5d5b467fcb11c346e9fae2df8a7b5e9371aea9162d9ed7d9c70d8a0a00813ef19ec52ece4717a7e1e087a6056b7ff

/data/user/0/ir.shz.shzkisi/app_webview/Web Data

MD5 b663831f8cc130493476d94f2d7a5330
SHA1 043a1956ab8e40821d67043f8a9110a8eb36fb93
SHA256 c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7
SHA512 e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/Code Cache/js/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/app_webview/Web Data-journal

MD5 9d16e39e5af5924d73c368a801cbfa86
SHA1 9e86a0c0247c60187730b0a77c8236badefa80ca
SHA256 140a26c085fbea3d722e818da55df30c1812032b97884c21bd1c8b9e75560019
SHA512 d56552d96f9eed4366cd33a7f4214fcaa12a0bfc3e9bc17da780299eb859b10862eaf13f558a7eba48b270725114ddbe9911b4b2c716fc5fe49a940cae1a2f47

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index

MD5 1b57f69315c9a23faa1e882017423803
SHA1 312f78c043cde714821eec01eda9e9dbca9960cc
SHA256 3d970020ce54fb67f08f81bd82cbda656857e20a948201d57f75ff3d7c41f5a6
SHA512 1fa6c1143676e3ce1671aa839d6262f71f8c9ee4fe3a8ce37ccc539c4bee56ff2e0ca7db1e39c72e7dd910059d3b21aa7f92a4e8708959fcd4f477e435cfd4b4

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index-dir/temp-index

MD5 113ec141f6b08ac8d3afaaa538102ecf
SHA1 999c98e70069fad9077eab63e16fc3b6890182e0
SHA256 1d1eccdfdea008ed90828a2c08f11a82b53401b501eb7c51da91c06df9f6e483
SHA512 a1d6b41a29ff89d3f38971eb65788944fa4e7524d828bb3b2c6c121f0badb311a7f62e3943dfc2c4ad4fd33aca8a35085f72b6e4622401a752aa26638b158278

/data/user/0/ir.shz.shzkisi/app_webview/Cookies

MD5 9b23e6a88d5a95f155f205cb04b93cd0
SHA1 b62dccbbef087a0731f226b96d15d35d8aa5e5fc
SHA256 f2f3c3c0c7f085399a6f9a464c1ac30a59ceeb5a4b7026286fa5609e6e8ef857
SHA512 bce5f25d98e2e8296c4101b62082dcb6a43902f3431ff6f725e41be6b9aece76e887ef94c4818baf4da845708fd76fd51c37fb6915710c870647593868f27482

/data/user/0/ir.shz.shzkisi/app_webview/Cookies-journal

MD5 269bc1043c638fca3899763b52d4d288
SHA1 27e633e1cc3aee9e225adba86acc15f75ad2b56c
SHA256 179333e41c882426f3f918b8a23ca6e5a87ced3c102d2c48d6071338b200e489
SHA512 aecc26d1a93f0b74057d165f29f80baab93b7e8e5714689168e5de8ecf079e38ec007cb85cde550811faa6d859bd181a2921fa99a4d0471e8308229f025ea11c

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/cache/2

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 f87460424110c617453848b5cb5ac82d
SHA1 2817054fd846bf0386b14788e7861738c056096f
SHA256 bb1776265e96314b5b01c6780d89428eefc10455e55ee00f0989b911d5131db5
SHA512 14287b9b7c82edb51c490b5baff5f3a7e1306988c5c673303a2c26e21ca46f78eb004067980309dc119e3c45119bfaf1e4d3e8391385df2ce4589eb5dda4fba2

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/7c4fee84ed4a49f5_0

MD5 5acd48f5ab787dfaee0441b9c1bf988a
SHA1 1724fbeafa03b2af52344796e2a6dac03cc6a547
SHA256 f396446f68947c9e20e05a46fd0a41551e39e8effa61f00ae9fc6b6c1c9d4838
SHA512 3fb8ffef3ee8f89217dda18171f98c9fabb955b0c93d28d198bec4825e3241ef1932a92569a85f7c11411e88a845ff56b4fc11aaadde44435fe0fdbd1355430b

/data/user/0/ir.shz.shzkisi/cache/WebView/Crashpad/settings.dat

MD5 0fa26d399bc97e8e31b519b1fe38272c
SHA1 2d396e4e73d9fc6f351ffcb041aba8cd7c7119af
SHA256 f6a45a128ff76fe1031bd45a4fc32223c3edaf533aa25a182f0f3578b4d09619
SHA512 8a8b5a667a2191469287c6def53e0e28f8cd11f54c45bbb8095c80eab7b5f92ac500d3acae55bf6d9d96acc377b8010a43a90fec9d57e18f2860e6cd189b4491

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 d600d22af3734100066bca351bcf01ef
SHA1 e33d1519a21c214108e0544e6d653d7fb2c0d0b0
SHA256 c9808954a1458ab125dfdd1a5477f721eb4f998dfc1965d6ef0eaa0c463dd1d2
SHA512 589928ea16ae090f8f4760c13801c277d28151397f26cefa8005747ebdbc2f53b47fa96ea423c6fe184239ce8b02c1be3322e11e7dadaa8f30fb6d9b80beb307

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/d5d0512a7873cf2b_0

MD5 689d30a91b8774d987f0f570f6b38a3a
SHA1 0776ccd436dfbd74f6a08c66c3a2022da4c038f8
SHA256 77fff76c92e57f893c4d62589e31a82912c2ee852d56f1752b1aa081c80ed6ab
SHA512 c67ad64f511b41296475693848c3805040b25159504466260f8cacb51eba221a661438374013ec28ff80e030b8228b6aeb0cf4bcc26fad4ac59080b6c33ec20c

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/ff35bb4f6930cfd8_0

MD5 4b9dcfd14906a848a744eff172f02bf9
SHA1 d52b3ca0373ae731a49f9311b073eb5c36301ba4
SHA256 7c5742421255b30a53ab73fce7f3370e00971a13acb6034ac96b77b1ed4944ed
SHA512 6bd91f07118b031d82f652fe0017a3cfeec4c1a929ddf00b23525efed7f5cce2871e5d38521400a358250f6f31db98b111a78ddb212db93aada2ef72efb9c1c4

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/65bddaf8e45837eb_0

MD5 a46c3b269c41fbd3b3c84903c1ae3d0a
SHA1 a10526feb45823af9814495535146116ac6d4cd8
SHA256 bb89ca43ba38106a618167cb5c41c231f46671d2ebb6b6e718a9393ebd818ec2
SHA512 ed6dc55490c2781366fed69b2251428a2ff24f6bc824857eed7549b6225f0d58ddd5016a84fb57bc7489b17d81507d52c82f3c6d36f26d732f1f6bc49248aeb5

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/814af41d25a11bca_0

MD5 40c4c6cb2349d131d1b0cde17e1fe205
SHA1 993a51fd490b5811f68a060554be7170097fe17b
SHA256 de273a38a224b91eaa8f0fa07ef80125fbcfae47a066d4c3fd67d8f1f8377aad
SHA512 d289407e2c5d4df84da9bc0c6e3b2a7ec9c2f9ac16f9445d177d72f7611c4da4b5ca6d159ec996b85b8451f0b9031bca611cd31ab5b2a5543254f4213d87e425

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/f51f17998e616a75_0

MD5 b8b72671a813c68899a31d28d1a12220
SHA1 a652d18ef65d7a61bf9db5b7ee6c0152c35cb653
SHA256 7a81b45c266044b9893152239e2415a75155fc1baa046ef1dd7dd384279526d6
SHA512 10495537326c472f8f08f4d235bc99578ebcc4c59fe4ac94c5317a4e46cfa0bd1874d76d237dcea9ab48ac09c9be1f67ab60514164d7d4fcd8259a7e5c8538ed

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/05bc10ca4a97574a_0

MD5 8cd8cc457cce352a9199ea28a4c26522
SHA1 495545fd811f7e3a0968910737c529f53897e97b
SHA256 2a00b701c6440661ee7b940293c461519db926cf176ce58f552adc248738ea5a
SHA512 6c8ef613a4f157df143c727fa44eac8f189d37e8797e4c33c83e3301b83c37ca6e716a477d452281e3fd3a9fbd01d7c9cae2cd6ce7734c1aeb204cc074d9b69c

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b7b40a6245f653c3_0

MD5 962d1105176818b1d82ea7a4862416ee
SHA1 d7e8480f1751b49bde195a04f2c88cb09a1e2a4f
SHA256 505f125922400add482dac7daf99ead1957cc8bfb09dfee754fe5165a885061f
SHA512 3cd3ace40a93720df2e33a7f9f1ef2bfc194d859c0011cc9408d14a359b401d8f38c0d9e3a0a75a2431e4259cb3da9d07cfbc12728bde6b7fefdadb67de4e710

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/3eb632b6d89d57c4_0

MD5 ce46d83cf2f7248d9dc9379e00906c52
SHA1 26b05492f5af49ec47e084e77586981e31d97874
SHA256 b1653b9d5f99b3eca89071b40c054194ed102b53692ff05f94e717e19c0172fe
SHA512 abe63bcf4497008f09cd863cf19448fe480fef8da6b16a427c14a12a59c01a5714c3b3232530799fff9018ddb26b051f47123f5e46a135fab45a706ddff2e5dd

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/c409a3c17a4f6773_0

MD5 bbdf2f0a40869b6b0a4bebb90bb033db
SHA1 ef0e8a8d542052bad214228bcb565f5e1521d0ed
SHA256 9dcf08fcf9509205e209656796703e08d62318a7c4e1b8e4521e641de863c312
SHA512 74087bc8b51303cc319d27307ac7b7b31e58c35417b87e0cbb4f53f9ee994ae20cb81b42237f5ed79a60c6361201c0ce8af556bd239bfd152a0b125c0402f64a

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/d8e3c7d5f50641a1_0

MD5 78ed6dd9b37aa7f461196040e4cadeda
SHA1 f3c860066dcf6286cee9dd3ced6fca934c8a207a
SHA256 efb36320a0b831bd6ab90882d1fbcb3b263701c93eaee6edd092737c74d395c3
SHA512 6c480582ff55e2fb22468291b06221e1ec0874a8c9758a973f00fe734c800b1bc9d031b8bfa946db0917ab958a7a9f0f9f347f78ee46012a49a65a4423549864

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/771ca07dfd0015dc_0

MD5 fb5a9b1a0288623ff2da96cecaaaa331
SHA1 4770fc47b56f9008c47fcf9cbaf878a045d4c5b3
SHA256 ccc7e483a419f089b0ea0c5df301fc06d2c19b15716fbf4a4f7e8c7755bb864e
SHA512 90972951a95b2de8baf0f3eb81bf33f87eba02833343e0071e507855376b69ab296f7452b40957f818fd911ebd5a5d37117134938213af595a04d0ab1ec7abd3

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/05bc10ca4a97574a_0

MD5 726ad695670881d16dad07f7157920d4
SHA1 cc5fcd8607b3f94817657be496b46df43743efdc
SHA256 2ec89ff7f6c23d3e213f70a31f8edd5bfb6d834f40a25c91434cf97ae60d1527
SHA512 03c11d65308672f520d1d89b5715ec92e0f53ec99ca6fdabf783443c9bcd6daed9ff28a29afc4ae132a051ad998fd26b72cd82923cfb7999ae96df3bb8827e58

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/96f52af4b2b589db_0

MD5 a2162d6a30b7e733814d74372f963254
SHA1 c7bced500e224a5f324f7caa650a2c75ce397ee6
SHA256 a964af27482a3549f9a273489488f1dab6d95eb9e8901a52506e747421d1cdf5
SHA512 ece58e2187c0a32a830bf9cbeee3611116d9a44a938ad729cdc4ebe2978cd6ca6fb0784cb6e40250594c392dfd846031ee17b79f9186a117d9d573c75ff7c068

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/8fdddb79d7b9ed54_0

MD5 0080a7409571f2a134922be0c8c5dac5
SHA1 c55cdd80f07ea99c9bc6afe8cfc23c955381d047
SHA256 10f396b1ee50bc7b0791154dd479755fb158488e15adf88f030e751692c2b75d
SHA512 22ec5af478785992932dc3b9a1eb74ec70aec9623c0dc0b7395a3e69aa9b3bd705a3ff6b02712b459ff5de8ced5e26cd82cffbfe5c21c40c5bc4dde85c6c1c49

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/c3488126be89a96d_0

MD5 4a16dbbb79430b350e559d34c413a34b
SHA1 6901d831c68d708a965a79d1dbe8cf58e1cc355b
SHA256 408339c4f45b3f1d8b53ef900767d5b6ea197d754329b49af96419cb30d09575
SHA512 661ca42440392957b0e018ca3ddf5782359c7694a3e9cf01a09605becbee3a57bc332bdf77c9c2f4aeea2a5e1cb815fafd5c8175daf0ed1435dbf9ea42807b53

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b7b40a6245f653c3_0

MD5 6698a3b9e61fbb3b821bc15a466b8790
SHA1 2ca3362fb328460f2c7686fcee44a39714b9d78b
SHA256 e66517cf845e28f25179d9d5d925bd764a7a42aebfcad2861494aee49a571525
SHA512 0775481de0466d5080a7ebc45269511c6f0e47addcff5cc1b11f10b7b3725c344de624b4f5c85c8c480808d5bbec5edec3f864666cf04af86dc72ab222306a7d

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/212da6b11e401ff3_0

MD5 e8e000e286738bf9551a5fcec98329fe
SHA1 ec181ac6973032278cea6dc73b28bc12c967c61a
SHA256 e59d30d40dcfbe0229df6337651c0863c981bc749d23f9a7be83ebe7807eb5c0
SHA512 e4b0ca80e141ecdb2aeb36f40833e0ae92de12f1a1c03b9ba98e9f0d58855ff15ca9ddb310e48adf152ef1ba0188c80d37be6c0909e983ccd35b1c1a11921d59

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/6e9054df4455dd48_0

MD5 71e4cd127c5aa00f677251c01907f165
SHA1 7e2251ce3a6e65891f913f4f79ab9e9735a384fb
SHA256 2309c995a487f6a536928a1eabdabd2801c52592af0864854678c538e52834d6
SHA512 aaa254b2f3ad5280d5d7dc7c5b2bc01abd5e81753aa42084478491e6eb64e6b8934a1c71e6b0ecc650554e9f9ffe743078a4736d0bddf5c4b2b64513b3e4d46f

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/5d8d696fde17d6b1_0

MD5 fb95ff6da05c41f23c4559d284861c0b
SHA1 f7ce8999d8bcae76efbcaf8a9fdbc7bc1893e024
SHA256 4e8691339cd27bf358a2f47b9e223240e1af61a68688b9852fd02e5d35091151
SHA512 9eff4ea8cc2b35355d632a733eae171900a73d92d4705036048cd238bc8edbcb51ef831ca23e1e55fc8c791b4b8eaaec397b780063295498867138ca838a75f3

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 9ec7db95175937a47e309964d52d5ae5
SHA1 e5d146ba44dee2f0a7a7625f479a52070374ce0b
SHA256 e895e01c33b58ffcbb3229e1e3e014940898c13ab333c8c0c420b550739074ff
SHA512 1a1f6587dcad3d96f5c02c9d3faeeda7f45286af36953e98a46ecd35cebee0c6a11d12c4ab0acbb6b18a47f235890344d1f28255949e6e2c4e122d61b7e8cb5a

/data/user/0/ir.shz.shzkisi/app_webview/.com.google.Chrome.BrEYiB

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 971b2cf49b8e121332afb10d124ae6a6
SHA1 7f569e1d4df8934e9b4b2d9a1544813a12c3bf6e
SHA256 03db845a2aed1d29d03efe3f2710f9efacb8a1fc49586195e8c4cdcc5e0d83af
SHA512 a2e793673d813bf62f2c1a89efd3fb65a2414952a5707c13d6ff46d71e0764c7e184fc13435100b17c95414722420703608009869e5948ce0721362ba8e09265

Analysis: behavioral3

Detonation Overview

Submitted

2022-08-24 21:01

Reported

2022-08-24 21:03

Platform

android-x64-arm64-20220823-en

Max time kernel

3517652s

Max time network

150s

Command Line

ir.shz.shzkisi

Signatures

Acquires the wake lock.

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 android.apis.google.com udp
NL 142.250.179.142:443 android.apis.google.com tcp
NL 142.250.179.130:443 tcp
NL 142.251.36.46:443 udp
NL 142.250.179.142:443 android.apis.google.com tcp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 pubumlive.tk udp
IE 20.238.64.240:443 pubumlive.tk tcp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
NL 142.250.179.170:443 infinitedata-pa.googleapis.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 562a2dc8f881d8dae0a0094aa217fe3d
SHA1 4e8f9b43be01de5fb707f4339014ca395030f155
SHA256 7656794c4a34b16c712a1a5747d5a5e677ad3591476770726c2bb841d7539ce4
SHA512 d02f7a9c56d6f9aa0234ce79210fc073dcb2704780ade823fccc9b88107e0bf2bdf6bc246e4432738735586948b4c2db3d334d38daeac83cf5b9f114a2e2c61b

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation4153644201887982015tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 1a352673c4f75125e5f57afbe28421bf
SHA1 71666b9d20ec5949b7577c9afe6970e355cf1d76
SHA256 30f961eabdae0e49dd07fa62883d9fd56c39b37ad77a6cbc4071d51dcc3579c3
SHA512 0871f06679d11aeb3e6713dd46d1e32fff63cd048791da73c66318c4662be4a9ad3e04c31236903b99434776a4696035c40cde911d220cd3f1ce8ca2404b3795

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 adb6005dd50da6ea5ead92b84cbcef0e
SHA1 b802c593356e78d926305363598f6c221b068a2f
SHA256 32a50c9050fb37fe2dc09ec32220c09f0392ab8fb19271424dfab328d1931101
SHA512 9a0aa71f817154f1975bd74f12636806fd6ad2c058de9909590553272a2c98a382b636fe5cea0497c2b3f0896f1800675752b141aa6290c7a6100801eaff6e6a

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 8dfcfdcef5a9793fb83bda404ec3f42b
SHA1 dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b
SHA256 a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2
SHA512 e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 a88462e6ed2971b39f6bebd683754fa7
SHA1 8773bc63e394167955c5ab034111f639f4654c32
SHA256 6a92cab24ba30a382dba7d6f8f034c809ad5e2139913e744223c6955b09553db
SHA512 e7ac73231e3f3fde3d09651b2bbd13ddea68f5cebc38534c284e44725a362d340c1b9f11d577c1d6c764bd6662a602b8dc9aa7d5eb2519933a6b8335680a5d83

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 3a4b969a8adeaa24317bc29f2de9f74a
SHA1 6bbdae26a814abc3c3906895eea59dd8faf94c1e
SHA256 e1ba63743de55f89d0d7eeb4dbc130918f73ea1b36072278a025767039aeacab
SHA512 0c527e48cf54bfd54d618973540611a8c54d2dcbabb17b341aa1ad141134aa83cf9bfbb526b382d98d80dfd909d4e04c136916167ef9981ef5a62a895f2b8786

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 6a37c26523a637ea2b6390fb805b293f
SHA1 9185a9820b0571ece34009ab673f23e6efa9ab92
SHA256 58aa1f8f2ea5187a10c346cb5de0913d04ff42d8ad951491b34c01ce9eeaf2e5
SHA512 fb680925963ac19d92096997684e144e010da25d41c25fae355500a39041c99c3a6c9bf4ce812729a7efb63019d09f5589e58785ef64755d7743e3fd9a92ad31

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 5edbcec208e7ab7297da46e06e6e3ffc
SHA1 6f5350c1d822bd669147daf863e15755a977bc88
SHA256 7d0619396808cc1a2c6fade970a3ddcb002359c4d611044784ec66c43b69589c
SHA512 1950e1a0f31356c961c5da04a90aac04d78d42ed979b59dbfafbd4bb829a493ca04154b931771122f3fd599fc6dfdd093aa250768a5e4f62ef1e22245875632e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 b235352fdbb44d22d0503ee85f692bf4
SHA1 e14367c4050336591b5bd1ae98491baffda062c7
SHA256 80342d7e4c27b4b2cd56aa5584602b76f72ac8128cecd6cc2c1854a3a9506391
SHA512 cca16337ba77d376d83b86cd6e3e8bfed4f042158816a139787eef29dc9406cd437522839c9e31f1d00ac31754044dc36e49086ed75a2b54e7529550b41849e2

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 3860a87024ace6adfc93978ca91cc5b4
SHA1 a595e96e9bc56711a3a1dcb4e0f248c4e67520e0
SHA256 1611182f745631284b8c4a54047c3f8907673144ce975b713a6ca3f301ddfae7
SHA512 5d9ada3e571299f01c6b7fd940bf26994cf4dda0d412c267a78464999197b3bdac594d3c3e9c96830d8526d9de6e91f9f4c18e2ba892e9ff6a517f2e69eb2b26

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 8ae23a22fd9f7e439732388e1922673a
SHA1 af79aebc7d8ad0f1922a527f851d9497d0132cc1
SHA256 a887a387e76bf26e765bbfbf5c08f2bd777e7ede15cf79656d7eabd1028130c4
SHA512 69e5ed4b6020965c0fb2345926fe5e9d36ee0ce5345c8398160b29418a997e9553e14d4f71035af064d0b34ae6a8108e78fdb4ad0518c6797c9bbe38f680e276

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 846c76b8e579a57ea201a617bee42b69
SHA1 939b7d306b6ade0ccc45bc774310f7a061fc9ce8
SHA256 052503721270b50594e6fa200e4d0ac19d29de786c651662af333c68614cf554
SHA512 a17402580b9772b38e96fa303821b7fc511c771b0bd945c84d7b02f013c2aba7b4f2361b9f6164fa98658cfe320ff49785eab6cf5bbfe74af3e885a5f16bcd05

/data/user/0/ir.shz.shzkisi/cache/1

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e