Analysis

  • max time kernel
    3549928s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • submitted
    25-08-2022 06:00

General

  • Target

    gen_signed.apk

  • Size

    3.3MB

  • MD5

    f3109e3234a83452de39ad40a285a5fd

  • SHA1

    e209fc019ab1b45cdcfb2231e47c93ca3f497709

  • SHA256

    6c943681c28f5f6adb65b48cf471ca09d9e02b7f67338827d423cda87aa35327

  • SHA512

    3865567e090b127a65dceb7e95699248c91f8c8db2b1a3500281c4dc454741263712c81ef351efcb0d94cc73a2e41e8c2c3f3c10de3515eef2aa8d5c550913b6

  • SSDEEP

    98304:VEVF6aL7fDW3v0AMYfccA5cMipxlgA2+XAHG6wj2T75i+:V46x3vKcAZCaAT+Qj2M+

Score
7/10

Malware Config

Signatures

  • Acquires the wake lock. 1 IoCs

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock.
    PID:4074

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    20KB

    MD5

    89cd606d433241b0e400ec6e41988cef

    SHA1

    89b9c657f7f3fb4ccfb91cc80fc96e8856c48ed3

    SHA256

    fcba6384af560e501a3fae9ffa613d5f9d08484ae6c759bf54ae4178d4c2d253

    SHA512

    f79809217f10226f1a915adad15ff5d89aae50835c718a7ca3a9a25fa570f005c8b0ae0eaea767b68bb666d8128426be51b3fbad8e3b024a7f0f0302b14179a1

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    524B

    MD5

    c69117de188fd669aea7d5ce18af930e

    SHA1

    2571819ee5728d00c5a7ade9a31426ed487407d7

    SHA256

    765c5dda3a4af54c70b975b115e9858edbbabdb8acc0ed41b383c39db23bd24b

    SHA512

    02e15a9bbf8e26d12026034ca58595e9498ad88351bd83d77c0cdc51375c875baf7b8064dcac39754b47d2eefcf2718b39a01efbabb3ebf8601ded4c6b3d99bb

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

    Filesize

    8B

    MD5

    7dea362b3fac8e00956a4952a3d4f474

    SHA1

    05fe405753166f125559e7c9ac558654f107c7e9

    SHA256

    af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

    SHA512

    1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

    Filesize

    8B

    MD5

    7dea362b3fac8e00956a4952a3d4f474

    SHA1

    05fe405753166f125559e7c9ac558654f107c7e9

    SHA256

    af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

    SHA512

    1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

    Filesize

    8B

    MD5

    7dea362b3fac8e00956a4952a3d4f474

    SHA1

    05fe405753166f125559e7c9ac558654f107c7e9

    SHA256

    af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

    SHA512

    1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

    Filesize

    8B

    MD5

    7dea362b3fac8e00956a4952a3d4f474

    SHA1

    05fe405753166f125559e7c9ac558654f107c7e9

    SHA256

    af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

    SHA512

    1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    ba46ac32d6402b18744a40894abedbeb

    SHA1

    d66d6936943ee5dab36cc55e5c2ec6e2b9708e32

    SHA256

    ee57e929c5001c46cd714ff086ad2deb7ab0f5715a1ed35257f2fec996aba233

    SHA512

    2894a087ab59bb99e5901a6a4cb6ba0b8ff76930cca743bf1adc007870ac8d2e8104f5a626f7edc4af9dadd980eb499c5a1c211240e236f136a561d4438eefe5

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    1f35b212bb6a84b92d2c2a427ed9d9db

    SHA1

    006e892ec0f68c4144da305c31d7538b2a2331d0

    SHA256

    6a79cd1f33c4d8dfbd20519a5b100e525a7a14b4820fa639c72944c334b2c152

    SHA512

    10a05746bceaf739d911e3dff8842b3db15938a1507b6667a1984b2d0ea03da4928441bd631d282f28089df45b306e4c83ec43876b9086fe1f210798e761da73

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    13e06759b87316083b4c7d4c33312d27

    SHA1

    3dd1f2fa336f3ff819727ae79e9241db0cf1adab

    SHA256

    4aa4dbbca0b0828fc9e48be4c30fb1854d0f875c8a8af93f98fe273fc2b1dc2d

    SHA512

    77769f5428aa7a53988fcb2aecb500e0a15df008e75ef54a9ff7a397a37b9c149ae8f4299dad355c9dab7b9c252e82a13f4eaaca2ed8a5347277977be79bec10

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    cf193bac2402ecaa354713198e454f99

    SHA1

    25baf617a745e4303769b003ef376f440e637c22

    SHA256

    fb2b44afe9c99dd938cdb3b8fd297ec6be1af0c78d005f6c1a5954c6b83bf210

    SHA512

    6fb70908cdd24f3bc234861217cac4c4beab84082cf3bde5d7ecb21f48c173f6945e300e1608dd8b31ea172e32528660c82a09332939033b0d109a15a3732a0f

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation341461329219268369tmp

    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation7729579189598950933tmp

    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

  • /data/user/0/ir.shz.shzkisi/files/generatefid.lock

    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

  • /data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

  • /data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

    Filesize

    239B

    MD5

    df8afed1a87d8eeded110797323f3787

    SHA1

    36e4b8201a9a9321a03e2470520c0b21a44a015a

    SHA256

    ad32111068ad9ccf39e8d0959f8b23f0561598b95a5253c49c620a0bab5855cc

    SHA512

    ff28da69068ac540d4938a9952818b98f5cd6b41800538257230364341b4086a5d6569dea9987173cbf6b7132c7eba686845efb8f476c6e78b83db5ae9d0f1a9

  • /data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

    Filesize

    134B

    MD5

    80f4a00730554e17c51cfdde36533d4a

    SHA1

    70161bc2ae0ae25c8ce448f9d5a4a470725fe29e

    SHA256

    10743fc572e0f088f7f664368844d0a420b088fb7bebc78beb2400d702354b26

    SHA512

    2801e78da1181c59cc9e27cd72e5b63347fe6e871a289079b0f4f288346750bb3d6b8a70042923b59fa10a15821cace726787bdb5ed6d7ebda36ccc7d1568661

  • /data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

    Filesize

    188B

    MD5

    7b3aa499ab40054356bb7b0eeb9c0c92

    SHA1

    f138a68d5fee5435fdb252412673d23b3abe3be3

    SHA256

    5d3b4bb0e210d3d7ece053cf9e5d26a13feee741e433a0bf25bd783890545214

    SHA512

    2b8e980f7e7f76cd1ca779fb1b20fca6dcd1fa3c00cd5424914d7368f2f8573fe1c8f908f69a52ea3185bf8ebacb42f4a5dbb459b84ccf59467191307f62184a

  • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

    Filesize

    192B

    MD5

    06b7e59c71e0934406f5b3179aea4b64

    SHA1

    571869a61096a764f9cc8d882eb3861db72aa23d

    SHA256

    4536bc25eccd8b1c4fe8bc6198e7cb0ef91f8e7aa60c3b5d06a1a3265c10f248

    SHA512

    71f85f4cae7d34242f10f71cf098988533186c05de534443caec7d97dc846db4a5a5fd4083530cd96c7bc37e2e83732b67ad72e46801423e6a1d48097ec55cd0

  • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

    Filesize

    605B

    MD5

    335416c68ee0d78be13c7a083a2aeb2c

    SHA1

    1bee6e3758f4f2aee4880154f9c461b43d5008ea

    SHA256

    aa8d24d598fd4067eb083d56683bc2eb4967b08b21652e1694f6cb634e3bbed3

    SHA512

    a6faedb66162500d6000693278df590512bba0ee97341d430f59d598127b50a08baa659eafe5c6d1068a3b7bcc8813732930929ec4fa0324c0271c423bbdc802

  • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

    Filesize

    606B

    MD5

    a8b7281d7f0f21552cdcdd835dac5fdf

    SHA1

    17c68880767bf3264233a166c3240789bda6eb3e

    SHA256

    21e966f6d9b0329a2f580eb5bd9fe7dc86be63dc920716795709cbd07300ff3d

    SHA512

    d483403e47818730c3fd451e9151e1af5f2063f9e1b27664e7abe9911584f2483320f65b11435fcc390533bdd9f2808cf98e51bac5bad2a81ee273880512b488

  • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

    Filesize

    718B

    MD5

    24014bb91812712a3b9196437af4ca91

    SHA1

    fd4d97a74092f29f4ba778cab63ebb56e4ec62e7

    SHA256

    4af2081e75449affdb82db6937a6b82ed03b6f96c99bdfd44eb324b4c5059ae4

    SHA512

    94be3541949830941c77d8cd326136b912bb3781c1740741d2bbfb8b60c3711ac6249e71eba3d4eebc02ab8719267d6b0f53a438179acf8396340af629a9f812

  • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

    Filesize

    122B

    MD5

    250b4caeba60ddf53228405750ba66ca

    SHA1

    422ab714feb34e9f3b4f1cbe669887bcd581ddb1

    SHA256

    2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

    SHA512

    373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

  • /data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

    Filesize

    395B

    MD5

    1fb69b1d922a893ee34702000c0a9e57

    SHA1

    27a8bc0654c956bc0446d3ca780e765db36568ba

    SHA256

    aedd1db0579bea0e63b73d720895f78b3396decbae34add0e35c310f490eb3e7

    SHA512

    9a04d1079095e0b4deaa1b43102a35ac2a0c1c928a70daa95e33004b129c4887f04f4e97d705f815cd7397916907d047e484d8c1c628d2358b2b02f00c35ec8c