Malware Analysis Report

2024-10-19 13:13

Sample ID 220825-gqbavahdd8
Target gen_signed.apk
SHA256 6c943681c28f5f6adb65b48cf471ca09d9e02b7f67338827d423cda87aa35327
Tags
brata
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

6c943681c28f5f6adb65b48cf471ca09d9e02b7f67338827d423cda87aa35327

Threat Level: Shows suspicious behavior

The file gen_signed.apk was found to be: Shows suspicious behavior.

Malicious Activity Summary

brata

Brata family

Brata payload

Requests dangerous framework permissions

Acquires the wake lock.

Reads information about phone network operator.

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2022-08-25 06:00

Signatures

Brata family

brata

Brata payload

Description Indicator Process Target
N/A N/A N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to read SMS messages. android.permission.READ_SMS N/A N/A
Allows an application to send SMS messages. android.permission.SEND_SMS N/A N/A
Allows an application to receive SMS messages. android.permission.RECEIVE_SMS N/A N/A
Allows an application to read the user's contacts data. android.permission.READ_CONTACTS N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2022-08-25 06:00

Reported

2022-08-25 06:02

Platform

android-x86-arm-20220823-en

Max time kernel

3549928s

Max time network

130s

Command Line

ir.shz.shzkisi

Signatures

Acquires the wake lock.

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Processes

ir.shz.shzkisi

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
NL 142.251.36.10:443 infinitedata-pa.googleapis.com tcp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:853 tcp
US 1.1.1.1:853 tcp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 06b7e59c71e0934406f5b3179aea4b64
SHA1 571869a61096a764f9cc8d882eb3861db72aa23d
SHA256 4536bc25eccd8b1c4fe8bc6198e7cb0ef91f8e7aa60c3b5d06a1a3265c10f248
SHA512 71f85f4cae7d34242f10f71cf098988533186c05de534443caec7d97dc846db4a5a5fd4083530cd96c7bc37e2e83732b67ad72e46801423e6a1d48097ec55cd0

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation341461329219268369tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 80f4a00730554e17c51cfdde36533d4a
SHA1 70161bc2ae0ae25c8ce448f9d5a4a470725fe29e
SHA256 10743fc572e0f088f7f664368844d0a420b088fb7bebc78beb2400d702354b26
SHA512 2801e78da1181c59cc9e27cd72e5b63347fe6e871a289079b0f4f288346750bb3d6b8a70042923b59fa10a15821cace726787bdb5ed6d7ebda36ccc7d1568661

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 7b3aa499ab40054356bb7b0eeb9c0c92
SHA1 f138a68d5fee5435fdb252412673d23b3abe3be3
SHA256 5d3b4bb0e210d3d7ece053cf9e5d26a13feee741e433a0bf25bd783890545214
SHA512 2b8e980f7e7f76cd1ca779fb1b20fca6dcd1fa3c00cd5424914d7368f2f8573fe1c8f908f69a52ea3185bf8ebacb42f4a5dbb459b84ccf59467191307f62184a

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 89cd606d433241b0e400ec6e41988cef
SHA1 89b9c657f7f3fb4ccfb91cc80fc96e8856c48ed3
SHA256 fcba6384af560e501a3fae9ffa613d5f9d08484ae6c759bf54ae4178d4c2d253
SHA512 f79809217f10226f1a915adad15ff5d89aae50835c718a7ca3a9a25fa570f005c8b0ae0eaea767b68bb666d8128426be51b3fbad8e3b024a7f0f0302b14179a1

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 c69117de188fd669aea7d5ce18af930e
SHA1 2571819ee5728d00c5a7ade9a31426ed487407d7
SHA256 765c5dda3a4af54c70b975b115e9858edbbabdb8acc0ed41b383c39db23bd24b
SHA512 02e15a9bbf8e26d12026034ca58595e9498ad88351bd83d77c0cdc51375c875baf7b8064dcac39754b47d2eefcf2718b39a01efbabb3ebf8601ded4c6b3d99bb

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 1fb69b1d922a893ee34702000c0a9e57
SHA1 27a8bc0654c956bc0446d3ca780e765db36568ba
SHA256 aedd1db0579bea0e63b73d720895f78b3396decbae34add0e35c310f490eb3e7
SHA512 9a04d1079095e0b4deaa1b43102a35ac2a0c1c928a70daa95e33004b129c4887f04f4e97d705f815cd7397916907d047e484d8c1c628d2358b2b02f00c35ec8c

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 ba46ac32d6402b18744a40894abedbeb
SHA1 d66d6936943ee5dab36cc55e5c2ec6e2b9708e32
SHA256 ee57e929c5001c46cd714ff086ad2deb7ab0f5715a1ed35257f2fec996aba233
SHA512 2894a087ab59bb99e5901a6a4cb6ba0b8ff76930cca743bf1adc007870ac8d2e8104f5a626f7edc4af9dadd980eb499c5a1c211240e236f136a561d4438eefe5

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation7729579189598950933tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 df8afed1a87d8eeded110797323f3787
SHA1 36e4b8201a9a9321a03e2470520c0b21a44a015a
SHA256 ad32111068ad9ccf39e8d0959f8b23f0561598b95a5253c49c620a0bab5855cc
SHA512 ff28da69068ac540d4938a9952818b98f5cd6b41800538257230364341b4086a5d6569dea9987173cbf6b7132c7eba686845efb8f476c6e78b83db5ae9d0f1a9

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 1f35b212bb6a84b92d2c2a427ed9d9db
SHA1 006e892ec0f68c4144da305c31d7538b2a2331d0
SHA256 6a79cd1f33c4d8dfbd20519a5b100e525a7a14b4820fa639c72944c334b2c152
SHA512 10a05746bceaf739d911e3dff8842b3db15938a1507b6667a1984b2d0ea03da4928441bd631d282f28089df45b306e4c83ec43876b9086fe1f210798e761da73

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 335416c68ee0d78be13c7a083a2aeb2c
SHA1 1bee6e3758f4f2aee4880154f9c461b43d5008ea
SHA256 aa8d24d598fd4067eb083d56683bc2eb4967b08b21652e1694f6cb634e3bbed3
SHA512 a6faedb66162500d6000693278df590512bba0ee97341d430f59d598127b50a08baa659eafe5c6d1068a3b7bcc8813732930929ec4fa0324c0271c423bbdc802

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 13e06759b87316083b4c7d4c33312d27
SHA1 3dd1f2fa336f3ff819727ae79e9241db0cf1adab
SHA256 4aa4dbbca0b0828fc9e48be4c30fb1854d0f875c8a8af93f98fe273fc2b1dc2d
SHA512 77769f5428aa7a53988fcb2aecb500e0a15df008e75ef54a9ff7a397a37b9c149ae8f4299dad355c9dab7b9c252e82a13f4eaaca2ed8a5347277977be79bec10

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 a8b7281d7f0f21552cdcdd835dac5fdf
SHA1 17c68880767bf3264233a166c3240789bda6eb3e
SHA256 21e966f6d9b0329a2f580eb5bd9fe7dc86be63dc920716795709cbd07300ff3d
SHA512 d483403e47818730c3fd451e9151e1af5f2063f9e1b27664e7abe9911584f2483320f65b11435fcc390533bdd9f2808cf98e51bac5bad2a81ee273880512b488

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 cf193bac2402ecaa354713198e454f99
SHA1 25baf617a745e4303769b003ef376f440e637c22
SHA256 fb2b44afe9c99dd938cdb3b8fd297ec6be1af0c78d005f6c1a5954c6b83bf210
SHA512 6fb70908cdd24f3bc234861217cac4c4beab84082cf3bde5d7ecb21f48c173f6945e300e1608dd8b31ea172e32528660c82a09332939033b0d109a15a3732a0f

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 24014bb91812712a3b9196437af4ca91
SHA1 fd4d97a74092f29f4ba778cab63ebb56e4ec62e7
SHA256 4af2081e75449affdb82db6937a6b82ed03b6f96c99bdfd44eb324b4c5059ae4
SHA512 94be3541949830941c77d8cd326136b912bb3781c1740741d2bbfb8b60c3711ac6249e71eba3d4eebc02ab8719267d6b0f53a438179acf8396340af629a9f812

Analysis: behavioral2

Detonation Overview

Submitted

2022-08-25 06:00

Reported

2022-08-25 06:02

Platform

android-x64-20220823-en

Max time kernel

3549986s

Max time network

163s

Command Line

ir.shz.shzkisi

Signatures

Reads information about phone network operator.

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 238.168.217.172.in-addr.arpa udp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 pubumlive.tk udp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 pubumlive.tk udp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
IE 20.238.64.240:443 pubumlive.tk tcp
US 1.1.1.1:53 ssl.google-analytics.com udp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 e130ace81d34076ef2812d6225727676
SHA1 6b97453776fc9c90f50e32f3b0da6132b4fb597a
SHA256 1d1ea2f0a911e1a42e2c167a2d4b05e25c2aaecfbec549aa4befdfe06e1d25f9
SHA512 6849578c26879e20fc0db857cbc817c34f776df66ac198f82a404bbbc92eb641a517e042fd39f5b1830bd70c126091e0ee91cd49ddcef1a727c1a2aa1b06dc53

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation4488749234862282117tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 e085ba69d90bb3b4273176f83df0ba10
SHA1 e45e0c7708502132e0d6ce2081a34f65c625bf16
SHA256 d3483cc2e796989aeb550665e1f3a511a0cb0ccd401108cdc51127831130ae49
SHA512 86cc9cd1ccd783740a5244d5cd8676065cc55189f9d5c7b0f0da84078d1c48bff6e68f65242f96e7d847de60dfc52300b745f7943d79731455cc611d1412ae26

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 24a615a69683edbd7dddb8711196b548
SHA1 477fe863b4910f5f94641f7c7c5b65dbf1f4a6cc
SHA256 abb824dc0eb7b6cf0083661d85f41c73de34529f4f1201e36d0ad7ad8820b189
SHA512 75d1d6722adb0127bdec7d6e1ec717dc473f6c81b6557974b6f5e1b5e0badde81e9d1adc74cd122ebd359dacc4f1eaa327dc05c0fe804f01ab917b73807bbec2

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation2937625387182207561tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 b6fb86b12ef791b5540b11b3f7d2c9ee
SHA1 cb11f8765045638990a1ed0f321d67fa32316573
SHA256 dbfc53e0e19fad3ac6d2877b9c303aed34391deb267528cd93cf4086163832d9
SHA512 b7b4226ae16ecb8aa6c53951d75171a1cbd5ec3811b297987d95af0e479af15c99b4b061f2ee309b1b7af264fa0941aa89ba1407d5a8877c7f822186091afcc7

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 d0bc415eb8834efacd149528346969fc
SHA1 ffc6c850e8655a52cfaaee68be07a344373accf4
SHA256 b333b37b6073916c351ab0bb43b89e55463434ec5ea997e45c74ac18c9da405a
SHA512 2242b6aaf02e603e0e80b5219c10c0fd8b56f52165cff777f36be3e2becb103ecf6ebbdba9c1252cd42ba767adf664bb0bef9e94505dc05ff2b87e73adf2eb94

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 7bd7e08b7c157fb7a04f9701b6965b65
SHA1 19ed78cffffd879509071b091ba60776c18e8d97
SHA256 c3aa0e8a52b6dcae0f988502bb3887f94c13148a8f36c3fcf5036c7c99afbdbc
SHA512 a668c141cd4d48396e9d67e79ec1036a8ad4498293e0f16d108e8c4d842f76714f561bbe440a3a5dbcfb6b7ade257ffed7fa07c56566c8ea938589c61943d4cb

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 48a28120323adab4c1fcae694407216c
SHA1 b6485d13cba633a393e86569f9213c2d1d823eec
SHA256 b750c315dba4f8f9950b5c1424a10df13c0c71035d237f0a6f0cde4314d82c15
SHA512 a440228d1a6e2de1e8722da845d5b685236515fc51c4c8aaf2f1de141a66f86bbd961e1e72ae9be12507769dbc04baa1ba1d506de034235b39a6145eb86716ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 439cf20f0320bb8f92035326088743f3
SHA1 de3dde88ebe3ae2ceaf8998a1815ef2ba3900fbc
SHA256 b01c54e461791260b7763483e5c875ccf1dce1adb45ffd7cf36b13f729e79e29
SHA512 c50d82de93bef0c8139d996b9b0d159113a692a72769477c91b9709b79a9dcbc798e9d3bc046a705986d43ad6bd0abf2555f11a3dc1a9ce88dff7ab0a9a18846

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 0101dfdd48d6cf1f2385477c45d7bdf4
SHA1 7f14ec576dcc698103a752160680143d38ad3aa7
SHA256 9170210047595f74587aab74d4d24835321f1e8a1fd2b919b89fb342027e47c0
SHA512 9925b2f92512e852ffd9a920b5f0c477ee59fbc6ee494d7aa5cdcd3270082434eca6d022a0754de198276276ecf314b909ea38d1cb1f3947bd58c8e943a19092

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 83ee2a9b2726458b425d5515504ba314
SHA1 60bb78ee51f2ae5666628f6d071bd0ec961963d1
SHA256 7a7939c9e8559f93cd296090c76c8eb47854a628df05aadc52edf6df354ca3a2
SHA512 756b96c995849a2d70ddbef24ab47a4ec502c48b1a58adc27c9bc444a368c7b7d1b1184e64a151d6d87530b7b9eed9a9a2e8a40a30d60f847aecf35153656660

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 e776a3b984477280b6d02cf1cca8b54a
SHA1 1cf1cf41decc9dd328d396dfe2c2e7690be6c129
SHA256 5cf1032e83e2b07bfc96ba5b563f10b0fd702ba41ebc9a174dd9c1c516a1b4f9
SHA512 782fa8e1dd36f60b7b5796d603fc9edb69a165da90e23d6b8ef77bf780df414b92a21a75e7bbbb1896f595721d85b2e34973538a1e32e23a6f6ca3476dd8277e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 15b178dea2e2f24fee3e6fc8d4233c46
SHA1 ca6de06bac6fae81bee287ba4516c504c6bcdbbe
SHA256 ddfe392ad2d875243f036de5c76a0a4e6be67c1ecda5c95256a6328e3432301b
SHA512 c6aad7b03e7e8721e0ac3050f81420222412596722d744b1470f6718e3f11bde777315976ae5b7490dbca8c9a8487a67047bb6481695f6eaa53595a64b699bfb

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 4c98d1f40507e99cfd52c706e253df5f
SHA1 0f086fb3b7692eff8a6c388e125479e3049881ab
SHA256 be301d7f37b5c9eea5c03d4fe14406dd92864aff6a86f3d2c5b924bf3fa01e93
SHA512 f7f230e95df3764e1afb581c5be3a5ffe3cc7d19ee3f3bf2dd639bd370e636bc0d1046545176a30fb0d97240e0fa8a8cc09263c3527f8727f4a1a3394cb1820c

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 010b47dd40abead78875209e5b12fb38
SHA1 7c4195e3453912bb9fb6b835a1bcb2020a5a9822
SHA256 7e8d5b02976903172f856a071553541e4becef7f21fea70fcbfcc52200e9343a
SHA512 c3b6e76ab1c9f2e23cc3d2cde681f22757bd7a18bc8f8206b0bd7cc710852eb70e80a804b2e9284dfaa6de0e837fcb8efac4b1617cb524e6107b24c96d1db778

/data/user/0/ir.shz.shzkisi/cache/1

MD5 d2befea24c29f87b2d70b01ace94d5fd
SHA1 f5494aed84ee4f7cebae3395fc9b331a6a030b21
SHA256 5b3934b9c8897fca5349a1fe841b101789211b1095d882c35f81f3d41c732f0c
SHA512 16260b989880b518a41ba0acd383470ae8d9a6d63e362774ac7a3c2d4e7a38d012ddc600ca6460c9c3fbce7019aaa5a804549f0c915d703877e5f7c66a7314e0

/data/user/0/ir.shz.shzkisi/app_webview/variations_seed_new

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/variations_stamp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/webview_data.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/WebViewChromiumPrefs.xml

MD5 6ef709b8536878951e87c29a1518fc2b
SHA1 24376c70b00152501b3d98df61fa7db435339172
SHA256 10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6
SHA512 96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 97d38dc60479a9368e219dc883ac182a
SHA1 51d9f065fc6d465098fc5d78a739001baf7084b3
SHA256 c7eea653ea2d385a07a1542ac9748458c3dfe6ccfe5fb97e650e4aa832076e9c
SHA512 88f8c2c4954ed2dcda7fdbe856d08ff69d2d1447da8086e04bbe33cdb11ba9395ea7f88f7e617ef3d7df7bb1ed32b3a6332a3fad61a4505a3a42387e1f1b6260

/data/user/0/ir.shz.shzkisi/app_webview/Web Data

MD5 b663831f8cc130493476d94f2d7a5330
SHA1 043a1956ab8e40821d67043f8a9110a8eb36fb93
SHA256 c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7
SHA512 e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/Code Cache/js/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/app_webview/Web Data-journal

MD5 80b05c614d7ab2e5f8df84906f60b416
SHA1 42b4888913af5448faaf787cda09eb30cb282d5c
SHA256 c954ae77d379db3943eb6f0f1c10c5e29f8e4e316c7f5317d9edd03b6592f377
SHA512 e1b355c23eb1ce4a63db8e080d3be08c0d98d61875cf42ba46a8c1b83406cf15ecd1c615b62740c20356225ef96447dbd12dd32dadd67396d36e0bdf86563809

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index

MD5 5a64b1db099d45b0df4c944fb0779218
SHA1 119118a34a47f3ff6eb5f432ad03002669145ca6
SHA256 1a454920c791722a660ad0c6a6aa5385467385bb73ed2786df02374705b86618
SHA512 de7a7025785748bcee3824580f58f94677fc967e9a3d9202516723a17088eb240caebbec171eaaa9434e4e1e31f83a260a5c1369c4830b41dcf44c8d52f186aa

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/app_webview/Cookies

MD5 9b23e6a88d5a95f155f205cb04b93cd0
SHA1 b62dccbbef087a0731f226b96d15d35d8aa5e5fc
SHA256 f2f3c3c0c7f085399a6f9a464c1ac30a59ceeb5a4b7026286fa5609e6e8ef857
SHA512 bce5f25d98e2e8296c4101b62082dcb6a43902f3431ff6f725e41be6b9aece76e887ef94c4818baf4da845708fd76fd51c37fb6915710c870647593868f27482

/data/user/0/ir.shz.shzkisi/app_webview/Cookies-journal

MD5 972788fbdccb22714c9253befbc78ea2
SHA1 46053364c9622fc3ffbb5f4d00ae59ef30a85f65
SHA256 a9f03d818d410efca74ac916a208f7f9dd1fdebb9c7c5f357b0b2e26e3d021c5
SHA512 3d7c892e86945441b437333c3212539a635f83e30d7f309c1a06bd1cb564ef8f00f026755b17dbde31eb17efb243f04dafd5f7eac7c36a8dd8da7c631adb9e2b

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index-dir/temp-index

MD5 739405f9316ff41a5650a2ada6abcc42
SHA1 7dff101deeff8121405b4273335d6e6f7cf3680c
SHA256 920acd505febf5234f7b81b7a7dd28f0d7bc3c853087a4b850bb074c2af4a339
SHA512 583a6e287ed099428e1e6985fb9b1abc182bec339312ae9b6c75508c2c0938c263db5698c2927970db032dde7651e840d632b3fca1844bb5ecfd738815778be3

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/cache/2

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 0d58213559a3ab3e0307a9b0c08efdaf
SHA1 94cfbcd612f2a6aab74d02f2cdbff191fd2a8fbe
SHA256 50ada5b9bcfb730253dcfee375f7627fbec2630edffe4a035e9c7fb0de24397a
SHA512 f320e2c56161687139d709ad0daec7e9434931d8059be8bd803c0a351250f0ba8c472f2b55777d316a9ce1a4b2baa0ea20bde0c93b7d564bfcf6e60d60e62d70

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/7c4fee84ed4a49f5_0

MD5 67742e6025d4e2bfefb6b9b57e2ae6d1
SHA1 0d5491f4a9cd27d27d725531465694f6264ebc19
SHA256 b13d89d05e257d025e9f3485e76814ff8990e9d4c2c9aa0ea3f11fc4fd4dda6a
SHA512 8f3e169f20e361dc7c6b871b13400a680aa75d515a9932cca3098004783c6afe6dc95f3fe6147ac5e9a6ea2f643dcd2255543b2dde2e15f6e386c0ff3414be72

/data/user/0/ir.shz.shzkisi/cache/WebView/Crashpad/settings.dat

MD5 1f062adebeb26d86f29de44c350bc1f1
SHA1 5e1578805c677ffe122d33f060307611a31efe43
SHA256 cd2f33b3de067408564347c1f86546d8c631b2fecc5be1406c4b49ba177a6820
SHA512 1e78fc25df171a24903d4dfc934bc529cd5a4fc42b8ea6ebbb5ba3948d1282494c95eaf612fb14a49fcf35687d233fc209ea7470003e3b14ed05a69899ffbdda

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/65bddaf8e45837eb_0

MD5 b7b0410096fe126ed4643d2e91a82a77
SHA1 e2de2db4fad1a5ffafcab7de43b7fdf75ded5232
SHA256 f1619d09eebf40bfcdef9f3a46579d8a8910e3b1e41e02063e7edbdf6842fa59
SHA512 81064485cb0a47bfa5c9b6f85639b7220d7ef94c91f955e8ff472bf49d9edda2881d7b104cd9343c343eacd8e231f8ceb6fb13947b061f59c3565714c52e92b2

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/ff35bb4f6930cfd8_0

MD5 551f1f4d603c2cb6639032097e5eab95
SHA1 930f9d61df9b7de1b7d6a39381369cd6de6c0c5f
SHA256 b671c267b737b393c9796a7f08837cc672e7cd607d0ce96375a1f77ab34bfc6c
SHA512 fb22ca6ddef975b5091d70b7b8cd7ced52490ba1bb854122edc4595bad3a48b67197826435ff8376c6672098e5a655c54a03ce9ea37ffde0cff86a2598e4f194

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/d5d0512a7873cf2b_0

MD5 b4d07aa2929ff286a3fe3b3009799040
SHA1 4d6419647aeb812780a56291d42bb89a135158fb
SHA256 1f0d8bc391011425ad8875b7d3563d47adf557e09d15c80470c2d895f82bfdbd
SHA512 ef799018ee627a1a44ed504e3d3995d7122a7de25834822197c6301dbedcfc3df70c4649904c50f590d8e40b72f72b97b2bb3787b1c5d8c56c6b26ff6c64430d

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/814af41d25a11bca_0

MD5 3945e04b5098bfcfc303941267f0a952
SHA1 0b6a0c64d8c021c0e8d2df393ff00de9ccdb8356
SHA256 8417d1478235f095bc3f21747e6cbcc82fce18b755ddc42a266ecb04c79a7605
SHA512 f0fd0340e0852080c1f39ae78724841c627c9309d5e84fb37bba2fc7c3c4b4ed2ce3697b74bb3dd50ceedf165fe817b67f4c97e90dfc3e73108b7faf1da4bfa2

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/05bc10ca4a97574a_0

MD5 18d41fea52866023ce21908108c183b4
SHA1 602c20313bad5649c0c2aefb5ddce9b46e6a0652
SHA256 4d7aeab7c25cf8f9035a91294802f8ca492f12f12f8d0c175796b92692c18bf9
SHA512 c4a9cf9315cdf1e93c7e7a73623b66819793200562fb9700dfd2c59189b242d3d4af68f3d3d1db6abcff0e59ea6b096421237602c1827179ef9aa24296ba5dc8

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/f51f17998e616a75_0

MD5 2a548b9bf6470feb97acee21a491a40b
SHA1 71ac554dab3792712fd00aa69c9162145be82dd8
SHA256 147bb7a964475c28320f0710c5cb4bb687570431da354aa99d05f9745c12f3f2
SHA512 4169a9c38a1ce2cb4a77a0fb0624c3dbce7db042fc85a9fe0fc14c8cec35daa7892c9bea21c7b981b5e277a7c0193c1b0448c7d9b15d97f383e5f6da2e4530ca

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b7b40a6245f653c3_0

MD5 235dc0b8a1b886dba85071b8790bef88
SHA1 0844a3d216c51229aed9823de0a42cd0b45f5436
SHA256 c462f6ec91df3bc93745c5f3009e87517f6a474f507dcf342d7c32036319ac3a
SHA512 1d8e36f5f3f99452302b64e0c9a2aa518cf767d9d189413aa633a972e513822b76d14185d13338b518749af5789f32a2db157ab9c7862c0434b265a462776009

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/c409a3c17a4f6773_0

MD5 669f96121435ae5097d130e265b62e43
SHA1 7368f2357c18b3a74dd39f3f11a6ca36bce14d00
SHA256 2e01bbd8eca5fa1c4dc2dc1b593dd0b212232ab7408e375d4d82c6dec6c1960c
SHA512 ff9a320a8490764d038aae1ee22582cb50f144b821e51c96013f048b607f85ee5bfdd9dd09d9d4014bfa5dc9d0f392fb7b7133c0a8f3a23de814ccb03920ebf0

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/3eb632b6d89d57c4_0

MD5 4b1d784236864bbfd4f14fce239ef4e3
SHA1 b472b9459e0c67ce40474dc9684054a93cc6bb66
SHA256 39de0428b79655d49d38ac2cf3a3ef15e97b55c3978dcbab5f15dfe38233868a
SHA512 7efbb10032bee96c320f51f120db405002b77ce33ac142eea221b3fde7a60e24fa4f6c0d4a9531ea90ada8abc05266e66a35358a6ab6e0f62f29f3f865683652

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/d8e3c7d5f50641a1_0

MD5 eb4d8fed7e7ad0b89e442f61aa51d28a
SHA1 66ca3b5d1db1e668a74923eb825c02a6b431147a
SHA256 39d818dabe85a7eba34301a96db3ba882de0923ec11ca7a9e5d5fda5f06bc3de
SHA512 630d68f34b00b601c6009f9bec663bbbdddb0d4bcc640fa48b0eb908a1cb30764bd0b065b1f9c83391747f8cd3ced51fc0e29007e604824f9ce6ca02d5bb1c42

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/771ca07dfd0015dc_0

MD5 01514fd52ee7c4df1b1ddf86918d61d0
SHA1 c4c6b5b880a6c68b33b28080edd1f514b530afb5
SHA256 79c4c8ea4864dd92205694dfd1652b78318452071ca2cf22bf374712aa681ac1
SHA512 36031ffc42fd3a938e5c79c462e0e63573cd9937c496f67c09bfa6d9d288c76ddd0a2cec9dcd2f7a3975bb5a592902534c9cf5f8754cc1d0f0d903cd21f2a3eb

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/05bc10ca4a97574a_0

MD5 dad57a819483e999f4bfa5fa0ed2eefc
SHA1 7a3f01a9248d9964eafcd7ab88bcfe74ad6f085e
SHA256 2b043e1b7477ecb899f038411e6167567b3f768a63a12a99b5bd0ed774b9687c
SHA512 4e9b95dae5c500568ea6333d32d9647c734712cee7c86bf988cf5051c88500799866832ae7e63f4ae276539479cd8fd826a08467828932b696b24d9e091986d6

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/8fdddb79d7b9ed54_0

MD5 48695311df01825f44fc29c7cf479722
SHA1 53d0a713356b03bfda9ad089079233200b23de8c
SHA256 b24a51c3e90de944268276fea2b08e1497c7198bf20f8abef3ebe45c54366ad9
SHA512 a9b6aed17cb88f8579a9d5bba1b75719a72c9e16abf62491bf2816e3da77dc15b9b033e6b67191a83a6821fc9674ba30c236c429d543beb65e2e94f364e88210

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/96f52af4b2b589db_0

MD5 38c366e8552c601f6335b492a5cd45b9
SHA1 50d944f89906a1bf5f8fd0be01819a7761e6f8f3
SHA256 720a7050c874596865f0f08b22438f731d12dd84a2e5b7a9348d3d3c7d7a7a9a
SHA512 d92c517465607c1c0f0de34a3a4587d5cadafbe98fa010258dcd2cdf77594d6be847a55e645cd99c9d64e1cfb201c81c91a2b361991aee20a15d339324bf8665

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/c3488126be89a96d_0

MD5 76df8c7fad06eac970dfb8ad6dbd6a56
SHA1 661e4156f56dd741a6789bce158a671fe9ca0f74
SHA256 a241987a254819928ab506885aa6181a4048761ff0843490e9cd8f8cdd7cc38a
SHA512 fffbba18181de5e22ac4335ba8a6ad28a8be08b6f1b406f74c150c8bf9fd6c8e27565fa6f66886941d76eccd67134f68cd5188483b1e857380a46fa67d335bb8

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b7b40a6245f653c3_0

MD5 7ffabc31a72f01459632b890ea59341e
SHA1 4e8ac8c6644a4160566bd369595fb5eeb3a51358
SHA256 cd4713ed0c4993d29c0a26f7234926576d97a0f0029dd0ae9f8b4bdd300df2b1
SHA512 ad2e32408d28e18f57535028968d4064e456f04b8c8b6ab1c3595fecba5b5ee053b1901e402c4d574d11e48893a2ae5a2eedba74176dd02ebe8512b578c2b51b

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/212da6b11e401ff3_0

MD5 d9ecd652696808990c75fbb97d9d1017
SHA1 5843ffb1772d1bdce9c19a72ec74963bb7689eb8
SHA256 08e7f138e26387c6798c0f3767eaae87ae8eb7ce633980d090def317c3251ba2
SHA512 09140ae4c1f9c0649b06615364b63c45df4d5ca5f6f3e283e8bff51acdaeddf5e933849ad4f8e0cc1416b16240e2d6934c257339f2d9b30117166698ec856438

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/6e9054df4455dd48_0

MD5 013c2b308224de5501232bdbcbbd3445
SHA1 1a0b00a3eddb0067804cd6d96be4965e85675de5
SHA256 fc0aa7ef8586df7d56f0c6135ade6f34a3e6b98f9d18cd3e2e8200406f145fb0
SHA512 14311a230579e89e85f0b1d53fa754a82c536a506051d50dce18ff3e3d46c528d93006b0dbdb3aac2257069620b22b3e8351fda35ee065e03f69653fa3dd47dc

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/5d8d696fde17d6b1_0

MD5 3df2df48122e071b42773645216d6eef
SHA1 2c02ddb65869bb18db015aaa8f69237a9dd63263
SHA256 3383ce072714b82e3cdeba50fcc45e06ce0cd862d4ea9027f2a47205b1f0ef79
SHA512 5d49206c241bd80b4efaa0ee75bc05e20359d1321fba6799bc2fa6820dba3cb23c0683bea2ab50e87fe5d9d9c941f02791678dd55633377d8c338f350642db67

/data/user/0/ir.shz.shzkisi/app_webview/.com.google.Chrome.98nFai

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 eb2d3f6659afa71de7daa1694b192592
SHA1 8907812ba3fdae1577d0cb10047eca8b74135a7e
SHA256 09da74258a0654054d0172145cc593dacb87397cbc1398bfd8ccaef857c7ff28
SHA512 409b831995ccb8d6bb50ae69b46f087a672f259706f1b34403bda812fcefe0a5e0b7a29721def4cad80c5cc91ec3b284280594b35ab417e54397c3b14d7a9aa0

Analysis: behavioral3

Detonation Overview

Submitted

2022-08-25 06:00

Reported

2022-08-25 06:02

Platform

android-x64-arm64-20220823-en

Max time kernel

3549989s

Max time network

163s

Command Line

ir.shz.shzkisi

Signatures

Acquires the wake lock.

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
US 1.1.1.1:53 growth-pa.googleapis.com udp
N/A 224.0.0.251:5353 udp
NL 216.58.208.110:443 tcp
NL 216.58.208.110:443 tcp
NL 216.58.208.110:443 tcp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 pubumlive.tk udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
NL 142.251.36.10:443 infinitedata-pa.googleapis.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
NL 142.251.39.104:443 ssl.google-analytics.com tcp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 e2b21f9788213b403fae3c23a69970d1
SHA1 e21dea01401b6081e04fedd4eb177195efad3faa
SHA256 81b111798b9cf95ad73ce756ad1aee0042289ff0909cff75366a36d31448afc5
SHA512 1e3925ebc657c2b6e2fdd8d94205612397e155b9d1124f7e3cc53be3ec7532b9bd0ff95c29e7bf709a651c9b0e55e9ba6492cb8ad5e78f921e827504d65e9e19

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation71659655340390073tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 670b3223484118b539e74a496e0a3e5b
SHA1 fc772dbd02792574146272b156a06470c829c03b
SHA256 c37f72555509319f9b270084e179a16aabcafe6444d06fe67ee18bf3348bf8bf
SHA512 57e61f348a16aa764630e5af957af00efd2ce6211edc2dbf95b6155e8ef53b9875c5cc44155aae72449d8f9a8828ab2e7b8cebd3f1c2d3a0ef55e77f4ca79a90

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 6005d7fd55e6ec9a9a1cd4cb820deeaa
SHA1 39675702b112cbc8f698f0432a4489c1f09be9a4
SHA256 137f7fdc4c72fed690ac5e9c22c9e2063d25f5ff0a5cafc388173de91e7851b8
SHA512 02fc0c90e52fd73f3ca7b4ac923a8ec11e9f74c1c660aee1c9695db6a091af905bfcafb47c1ca32881bd94009aafde041b3ab67c837c6361e2595013767f3a05

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 653dcbf8370feb36fe5beecd6be068a2
SHA1 36d52ff5cba385f806720782536ea2f6ce54cbd4
SHA256 8a606e5c291d719fef7e382925417e5a408f4fe8a72d085543011475dda86b11
SHA512 bbc2bae50e36a67077c003dd5fda1bf738aac41b1e69985ed0e71060da6d96b9741caa435498bb99c72d8c3e1a0b4e199e26e6fecc86c4a9e57226a4eac3a61c

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 8dfcfdcef5a9793fb83bda404ec3f42b
SHA1 dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b
SHA256 a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2
SHA512 e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 36931d9957c79ba6318d5c755ccfed7f
SHA1 538d527489d09f936eddbac499af1a5de3170b7d
SHA256 66ce27260f7987fcf0667ab207384893f0de7f238983b76332295b064a3c98ef
SHA512 f17ce9941599740a918d7178479308d5fbc1ca8184a2e3c169377a3467e97ab0044d5e18992ec366deb952f13d72d7ae58205933bce9ee50277b86ee3cf85723

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 c5bf66e2f935168bbe74bf41f200d54b
SHA1 f224870c184ba2a14b8c09eccb0c5e194742b5ed
SHA256 045573d96052d9084b8ce82e284226017ed4957d345a6d1bf64aa72b59473eed
SHA512 490a0aa288201d9625a21c755b9d2e9859d2514750fd827ea0ed355491247af6120a403b161218af93b03eb21d133a6cbf5f1d735d6e3aed63f3fd1cd81ffbfb

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 2443bb413f4c4e9bf9c015b7b269667f
SHA1 a399d8e671b283c6693027a58ef2633f924fe05d
SHA256 3b7907eaf89c35cd129906d0ed96fb2382a8589542c34c297bec2ce54a51a354
SHA512 11afaf455c2b00e1d70890e02c441234d5e66af82df0951570c42adcaa0b957020cdc23ab3d0a9f00999dc1239a9b243670a541b84287fe181738c336442980f

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 d8732e0c63e368b579a88ddb41d9930e
SHA1 b313ddb72c6171291243c4182de4207dcb5ef6fa
SHA256 4bfd589f5a2eafc88fbd39bca5dfc4fb4bd3aef803412de47ede1ccf95b4156f
SHA512 443d68634ba98e200db765bdab24db001d8e3beaf3ecc867363b32964cb2851afebcdf589d4d8ef70aeb7e17ea46c6ae54cdce45fdfa27d523da6b33fd7ce456

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 e89a15a4299d8b2918fae14f28f1d20a
SHA1 075c09ee7f66304828b39b789c291f4019f0f4ce
SHA256 e9582be037664dd17a3953fdbd84f8434603a5e2c0c6bbcfc7ed4c130f129713
SHA512 a72a26722021961442ed8443b6d6dbc996685ccd90136c62d273ee5fd98a17a7392bf99ffe5430f3cd4e098cd4cbbc80c5b614b8cc45f694e7315790f50f1317

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 0aabae57a169bcc4f7ee73c2a2b435a3
SHA1 456ce35db1cf1d55e216e13191b661cec7c0ba17
SHA256 ec9257172a82ecb23140f4edf56e7d0a95d1361626be48c514b01ea93720272b
SHA512 5544389feddc88deea70f38c4d2cbb19a1f0c8969d26f6cc058d875cef736d15f03899eff275df2ec09c395dc9dfd156a89deb648d270ef656bb7c58918c83e0

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 846a9f5e24456604542b74760e6c99dc
SHA1 466f8b984e1995d888cf2221752f9a4627572afe
SHA256 39e4b8663b7195dd5e63c22b9c8b04141b36e1cc542afae85a18065606e44ba6
SHA512 032ba67810cf132ac6bf4dc45dba7a786472474a9888c64faee67226fccd680c9e9be6bce249d89fa818c6d48ee732f3e1f6cf210455b752c9c2b9e9327668c8