Malware Analysis Report

2024-10-19 13:13

Sample ID 220825-vzamkahaf4
Target gen_signed4.apk
SHA256 3704a4bea4687f28c981c063f2561f6453ae7a1a85b4e866790275941151c612
Tags
brata evasion
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

3704a4bea4687f28c981c063f2561f6453ae7a1a85b4e866790275941151c612

Threat Level: Shows suspicious behavior

The file gen_signed4.apk was found to be: Shows suspicious behavior.

Malicious Activity Summary

brata evasion

Brata family

Brata payload

Requests dangerous framework permissions

Acquires the wake lock.

Reads information about phone network operator.

Removes a system notification.

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2022-08-25 17:25

Signatures

Brata family

brata

Brata payload

Description Indicator Process Target
N/A N/A N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to read SMS messages. android.permission.READ_SMS N/A N/A
Allows an application to send SMS messages. android.permission.SEND_SMS N/A N/A
Allows an application to receive SMS messages. android.permission.RECEIVE_SMS N/A N/A
Allows an application to read the user's contacts data. android.permission.READ_CONTACTS N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2022-08-25 17:25

Reported

2022-08-25 17:27

Platform

android-x86-arm-20220823-en

Max time kernel

3591088s

Max time network

131s

Command Line

ir.shz.shzkisi

Signatures

Acquires the wake lock.

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Removes a system notification.

evasion
Description Indicator Process Target
Framework service call android.app.INotificationManager.cancelNotificationWithTag N/A N/A

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 14.36.251.142.in-addr.arpa udp
US 1.1.1.1:53 pubumlive.gq udp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
US 1.1.1.1:853 tcp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 e865b92d6506ee1bc22186d8ffd8f5d3
SHA1 a4de259994bf5c802f18761aefa2889aaa3cde68
SHA256 339b513dd846109ecb72a57b1b1efa1fe54e64c1199bd6608494d5a102f21aa4
SHA512 445542d8d1bfb42ca79aeedc69435c6d1a49090705467b55870fa95d7d0918107fcb6d6d3d3380dc806320f470f035fd6c65bc711ba50de13a619428384a1ffb

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation300268192948134114tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 79f70228a9f92c5250e491e41b7d0cfd
SHA1 2e417bd37052af4e611376c4e5eda992fb312e6e
SHA256 20bc0bc29eec3703a6c9b4bbcb15524fbfccb39d0b33639b9a7daee8d923c6f8
SHA512 e8bc1300e670c041626bffc222f5f7748774fb8802e7f52a781a7247117ff55e4d862fac2af885a08a99532e7deb355578ea5419362ab347eebc9112bc58ba40

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 0d59012cd2ecdcd037d487a6d9d47311
SHA1 53c5979156a86c07baabaa5816652c8d886b9383
SHA256 97e3feeec4acd71c639fb8f56acdf783992d84536f2d6b7f9f0129d12671f7d0
SHA512 d5138b54dc74afedd54de9c3acd5f18d25bc94a424edbb1e8809e849a471d9f1209710b664f215cfa105d299531d158ad37dbb0ee523d190c117b57acfbe14a1

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 89cd606d433241b0e400ec6e41988cef
SHA1 89b9c657f7f3fb4ccfb91cc80fc96e8856c48ed3
SHA256 fcba6384af560e501a3fae9ffa613d5f9d08484ae6c759bf54ae4178d4c2d253
SHA512 f79809217f10226f1a915adad15ff5d89aae50835c718a7ca3a9a25fa570f005c8b0ae0eaea767b68bb666d8128426be51b3fbad8e3b024a7f0f0302b14179a1

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 a9db5e41be17a442fedfd418262b2c11
SHA1 4e9cc099ea27c86befc5e797b3d300ba7d33180c
SHA256 edab43460707556b2b16435a42d6584958872693ab7bc24dc76c161fb1b54b3c
SHA512 c76553bac70faf81d1da8a08f6ae6f5c001ed0deb32b941a112308f2302bea213b9ca131702b462092a46de891070ceea62b9c1a1efc28595104ad794d119d7f

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 66af856a5be17f078edbd1af40dbcbe0
SHA1 5f969fe973d546e6b710d2ca2d6d02d9ceb7128d
SHA256 5b76481cf82cdf627914791506a65d55a4bae95fcaeaa40d663042ae11ea196f
SHA512 c648e39c9ca1ed6b417087cf0ad736afdfee6c8b7dc19aa8c9da0d5f40f069db59581c94ccf11c3f67c2b94c1c448d58c509905c9f862eeb3788bf5397dfc28c

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 7165c13a211b439a8cc92b56b6e277a8
SHA1 921735f019d80ae87becba5c63e6955f27bcd27b
SHA256 8e8f44b889a63c562a5d8dd2b42b964ecfaa51385763898b5ef9e009649afa7b
SHA512 20cce0a6f6f9b497e3e47875a798cd665d635c27a4b0f2597b52de9ce5aeff3f7b9deeabe9697ef4bdf0b1fae65cb35ddcc380752d34ca030f06581b8641e9c2

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 7a11a83a360d7623c49119461a6cb0c8
SHA1 efa70507405d2b6d3e9d1d6179189b3143826c88
SHA256 fd919f33a1260a821aee21ab06163c36fc50ed51d263917d9ea31e1c2f877a72
SHA512 540dc8f1f5549d1059d529a43911b5d23faa72ed75eb7e8b283c9cf278ad032790bc262bed420a8af3cdc6a086a6d65d61604bfab83a5610beb06015c3e3a5ba

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation2550034637837680220tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 98e152e26ceb6f4482693f5ae2c0a2cc
SHA1 3f2534645ed81d958df018d6a3b885024712cae5
SHA256 e1f82ddf1b3b1d342cc652a46e2c1e62b2487b6877ecaadd933c0822e2147c06
SHA512 91ffa8f33cb6435cf55490a2866c995ae453561f31ae531f996d991c6e6965d22b08b4f8b5736f9c16494a4cb95ec553abc63d5d7efdb2ee78c3e85af9fed746

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 e7493769a64e06a6ff78ee61edf4341e
SHA1 c49300cde28e7ac63f9601d429b786ab945241f9
SHA256 3e42e5df36b6a54534b5dfb2cb4559726ae0c262488be12344a07b5632ea04c9
SHA512 49aa121d6e085f7eec51cdecdebb826672587306775396376199ce376a1f32815df00f3f7c83d93739dd833bc77a1cac19428475d8638117b2f0ff4485693284

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 8337baee11aeaf84b251311e82df1217
SHA1 708c2e1cfa0a59784cdc704f26cf17ba2b7f3cd0
SHA256 d7e08316a44ff3396cc46415ec04b8074c8340768b8b93b23f69e4c0b6c4ea06
SHA512 5717e108db432862c9d5f0de3631e9472df24fa68d7806d10ba181f3e97e4c2c1001e36d01be4242fa2e1c7bff21d568a869d8df883d752850e90ef8239430f4

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 5388cdc8643829e7cdb426202e523d3a
SHA1 13870a94c23c61310b58c08f1318bd9d4e2ef98f
SHA256 74f7667e98ce835b6b6f76918f6873cb2fd253a68ddaad5e7c9410af0050859e
SHA512 f55f03ba9fb023c5fdae1bc446faee964b61e4ddb4ce6ba9d325012aca2001ca316aff86b610dc1c279ea89e95d4f8d661f4deb84fa4434a9a235e98928c5c62

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 5787432ee2c6cdeba9a5b900475bbc22
SHA1 9d4fefa705c8e67888f675e326e37ede8db00bd1
SHA256 59ebd3fc8ab2b06115318b1f5c0d188da4cfa4a3d2b0e89e4c2c3fb5d0df6bb6
SHA512 845127e35e67a75e422196645928783c42fe52d6fd46feb4a9588399392fb2f76a4e0440dad7bc8a58de1385b141bfe438327c334fcb696a5899708a4b00c6f4

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 48a4b36b3122b7657e35d32666265639
SHA1 2c58ad0f05fdbf302215eb39973247ce279ec3f9
SHA256 f27382c83f40cf408ac8f1bfa4b8b32192b7fb035a5f372e37e3d6b2645de99e
SHA512 840dd9da484a5a141714c15a2d40732c11af0ee4d45e282feb8ca8a8caa0a1bf432517f68dba89aa357804d1a510ed9e3679718a589fe05a656d680ae4d4006b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 7bb317025ecd595fc3d2df59351e2385
SHA1 f0049dcaadc6550d6dfc693efc5913504cac038c
SHA256 d80a684e7cfc68e46f23af0b3e100f5dc2defec77a52721f59c44859dcc06a88
SHA512 50d840bcebfce9d247d9c1e3893c56c5c2c32e2f8399b33f382d9bb6331fabd821d36728e1051bc494242185a5b3b0b1386287a0caaafebc6937bfe4bbd142e5

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 31b76bdd65f87963f994f93567c9bbce
SHA1 c8e6db67f79cf375a462b6092b684e82cd31dbd4
SHA256 bbddf5242803245f3751f8088ee838a2872d8eb72822d284ef833308422040b8
SHA512 5d0ceeecca5bee7baeb1a0d8be85eca6d00e4b3f117318c53ca8c1213e56e44c1fda57d9d556c8a79daa0cc59f512e99e980301443f034f8717a9c72ef1753e2

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 ef0c3e73ec041cf6f06c71581f80b161
SHA1 deb8e4a3b6913aece2c79daf6f05609524bbe175
SHA256 647df73d64cbaeaa62697ef3fc61b90e86e25ecc304cd2f7792650bcc0e8e181
SHA512 215424404d55aa0bb6599884662d8f06a83a44772ca9f13610dc65529dc30fdc6b5aee3322d789e0499e5605ed1d5f95cb787ac98a86b6d22408ae21f2c7b8eb

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 64cf4762aa283ee3719990c263ea92d9
SHA1 4c60a31e18b447c5283228848dc9ad411d60d3f8
SHA256 c8ce2025b4e9e925d483406551a5c8020f8d0ee077d434c0d2bf109967f7df62
SHA512 78216cf126373831068bf36449212edeb9768ca914d4347975a30b56fd3114d3ed1eefea627b7be56c50a5b380268df4b5a6ac1cd3066f8c450c46f864fed98c

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

MD5 7dea362b3fac8e00956a4952a3d4f474
SHA1 05fe405753166f125559e7c9ac558654f107c7e9
SHA256 af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc
SHA512 1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 2a89f938c8a617f156e9499e94b8eb46
SHA1 aa408c821c31321dbe18fececb9b295c90e9d829
SHA256 7bb16a780ef7733592f082ae7ea109ce341c2aac6e07b7c029b27bcba959a7a3
SHA512 395184550c92cceb2a9baa3b4524d53c3b176696d6dc0e9fb523e1c159ed43c335089af0c1e49afb87046e508f16cd0ae6afb7b831fc028ca253025caa71d385

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 4c2ae7edbe3c9c460552df1631a35f62
SHA1 7a7143a7461ee620de0e4fd338627d71ea5868dc
SHA256 43104d2453c3ee524d4703c6963b88a3e9d1882f1355af1d0f7ef69ef8856205
SHA512 15fcea220a523516a9cb7cfc1bbda117a7657fa889bfae9a3367db2dea86500c314528fc148d89975e63463b68f61a399a857b4394ee70d60e113b067f97aa02

/data/user/0/ir.shz.shzkisi/cache/1

MD5 b059910cc65e7029f9adf684b6cbeece
SHA1 d6856b8e9a7b6a1ed4ea0e8b88469f81c5864f7e
SHA256 ab304ba7efeefd95d54f8aefdae1a8f4bf687abc331841f327980693f4226d29
SHA512 00f09f710f1d1d023d2cbaa397633f1e0dd894b567cf61fb52df72f7209661d8b8c041b01935bcc8622ee1f50641ea97bc5ea3e8c21bd2d54cd77eb5b4709a9e

/data/user/0/ir.shz.shzkisi/app_webview/variations_seed_new

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/variations_stamp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/webview_data.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/WebViewChromiumPrefs.xml

MD5 21223e9184445fe043476484cd8cb1f9
SHA1 2b4813f849121d60ba35eb0889080668bb62c778
SHA256 bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af
SHA512 be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

/data/user/0/ir.shz.shzkisi/app_webview/Web Data

MD5 dc79f9ce5f3ab5270b33e61119dfc959
SHA1 1844bf222a5144b513dcf2fb50a18c011701c647
SHA256 47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65
SHA512 18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 3e06ec34cefff6b840e58e31724a8159
SHA1 842320fc3c15d998e6cfded5d7299e4761e6ca2c
SHA256 d312e473be0d66127e474b321661629c96decc1dffc2fb4c1cf92f61815bcdbe
SHA512 caca8b5e86f9b78fd409a88980c1c0dbde0e1a023f893e65cfb5cc798c25cea13d10c8e050ccafbb4c6dabc8d74a4cf995a9ef628b6a8d2b92b20b52c4de63b6

/data/user/0/ir.shz.shzkisi/app_webview/Web Data-journal

MD5 018562a490a07f8acf7f3eea3bca5fd3
SHA1 d85678190d1d62c5b5e7c17d61af28d6254f718f
SHA256 c25dd06b3649aec46cb555d81500061ce80c874f44cd9ce1aea61104e2f88560
SHA512 7a798e9702ce49fd2386c3839f4d771a1964575da7c23cc2c8064452a40b4ab0ee4e49e6cb2defe0ce148d64568f9e4120d72e634c2966d1d165750cc92f1a46

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index

MD5 93027d42b314432c4216e6cfca48b384
SHA1 43448dd8102979c3926828182579691945eedd4e
SHA256 3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c
SHA512 a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index-dir/temp-index

MD5 16143ca37f33cdd75e9d37cfc0e17399
SHA1 23c38c093b1a480b6aec338f61585655c674db5e
SHA256 c1c2c7b94e417e839152010af95d89163bf788781744090cad3933875d1f6f2e
SHA512 7f3a84026e8f6dfc8330e92d271f19a170c741662d5c5f0446508d76ff37300aad67962c0da38d82e9630b6aeb21e2dd6217df1bb72b7c3249a96b87fba93bda

/data/user/0/ir.shz.shzkisi/app_webview/Cookies

MD5 cb7543c4df600f2af58097cce0e334ba
SHA1 83cc92f38c27fdb4fa519b1ce2f37912f24af1f0
SHA256 64c022ae708f94ffde986e105d88f708884de325720bfb9925c4160a6d417233
SHA512 ad51cad0472327bd68aa2d791341cfafed58971752352537bb603ed18b15a3f9185e9150983a28ecd09606e8dcaef6d1c9d93213dd246ef7720f39842eb3d980

/data/user/0/ir.shz.shzkisi/app_webview/Cookies-journal

MD5 c3dc288228ff8cb018ac15c42884f853
SHA1 b066ef3fb2c7157f6b8dc103fe216e50949aa235
SHA256 f365e8e8c700a78ce9aa93381f2286b7aa50ef46fb5f59e81cbb0301c0063c45
SHA512 01c52398e6ee1780387bcb659017f34985bafbfcc28c09dd0815ac879211d3ed8274638b0bef382a7304955cb83dae47a5df3e828f7cd0ac2acfd65c2f479a80

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index

MD5 93027d42b314432c4216e6cfca48b384
SHA1 43448dd8102979c3926828182579691945eedd4e
SHA256 3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c
SHA512 a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/1e6a7b9a8e6b85d6_0

MD5 951f01829c5c7d6dc8ef55e5d90940d1
SHA1 d709bac57e240e2cb7b6fabfbbbf1eb84df07a5a
SHA256 1e3f1edbdb933399dae08d9f83db549fbef9ae825d0c23b7734bba39f34e11f9
SHA512 98ca598b2588ab7c7209e57fdc66c10911f7b3a7c7b6a56b154cc501bde411eecbd3386e38ed799fe2192e8fe1ff8dc791d79cc224644a06236318c537544cb3

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 0d95e33c1ba5c8b14f14b4850ed75167
SHA1 ca931e1cf2718ad3c516b112b05f034c1ad6a6b6
SHA256 faa358024e3503a9db04d1bae416688476c70174d2005ca69692c0c02142e7cb
SHA512 88a8727637730a65bcd42b1475611daf4fb44b8a8db7ba9961cf7ca513c6fcb5b1c3afb4a276c694598ef1bbcecec69fa7db93a1762728d89d2604ff33b5befb

/data/user/0/ir.shz.shzkisi/cache/2

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/a4b683e26c70caaf_0

MD5 971378dfc8575bb751785d2861e6350b
SHA1 78a0dc8a19da34d3acef6bfae9df676ee4b444e8
SHA256 85eeb7180d47df746dff825e00e222d333e4e42d996829bc6f79e7333bc72493
SHA512 dfc705daaaa63bb5b276a0b764f8c51ad48444be8a7ccf13ee3cde347e75ab694c4ea15b930bba2d7f6d1c7238a9ee2f67e2fb5586bf92f5728f06f3cd4408a2

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/ce6a788514c9c22a_0

MD5 95ebe84158c0d553a45bd4402e928d09
SHA1 d5587988dda39f6ea8befdb0396aea6c29e5e960
SHA256 68a72d3d90e12a871d1bc137cb431f59e1d41793be1f4fa2bdd2a1c7db1a084a
SHA512 016fc76b41ca30c46a8d97f543d57043e4f75c89cb66d5433fab0e2a646adc46f104a6e0b21a50799c96bab65051657a60e7eb44fdb0c18b3248eb02bf324fce

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b9f87809ac126f25_0

MD5 2609ea838ab42e0cfe0ccecd0a23dcfc
SHA1 fccd1fefaa045482e8eb03f9fbd99edcd8b0df9c
SHA256 0fa253b31a9cf519404d290770b63589c75597e55b8e3fc0eca6d78b015e1201
SHA512 affae62ca40335c3b1ac1fe0e225387f60bcb7cc63b1781c7802b6959536b30876d9329b81026d04a111d38428e5f7e8b3410305918ef6f20e6ead28c106134c

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/2ac4c0fab5dfeda0_0

MD5 a8e1e54e49d103b2508eddc6d07eeead
SHA1 b10e7571dbfa821098fdcf290100ff25da0e9d4e
SHA256 9e9978f51df75e77e4566bc7d6c4db7b8bd77b7a5dfd06ef02119c5736cb866f
SHA512 cc7cb75ba6053c315cdb851e2317e15bfafcbc6dd644c4f719c1bc95dba3ab3428f9368490285678befd94f97a7b01982b43c5967260e972745a930a2effbc1a

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/7890f0d326c5901c_0

MD5 de55d1055108ef80d473d7c29a965352
SHA1 231edc24603c91d5d73c4eda1668b391d7d16aee
SHA256 070a1b2d40d54ac95f93b25298c5c472d3b55898a7ca93172634bbaa49e37d3b
SHA512 386eb5bd264298142ae7b8fcb283d956d7516f46c64723281ba6773e97e70eeedb952ff7976e254c11456e34bf4e6a2e7afda136d4ff8c12981c26b02d73dccc

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/da20c82018f3d0b2_0

MD5 feef6bead882cd9351df9cf3c93a6f1c
SHA1 bd4efa0436d4560543261dcaef834dcc852b42ba
SHA256 3f2ffd57760e8dd610eb8716ba32adbb2571464a10cfc90a85c90a028359628a
SHA512 9e926ad8fa034dad641eec2a14239d5e2ba2797808bade76922df25023d9b87770b67c02ee153bbc048a1a3fb540e7c1efa8d3970f49bc79c9b6cc21032019a4

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/1d4d1d1e855fb989_0

MD5 b8acefc865bbab15505f9dd0fd0c17b9
SHA1 bf5ea3c471d652e798bfe473e1af09b7806e48fc
SHA256 871fd464540b448c96160625fe0cb34d394f2b0ec31ccb55f97d1768c13ec7f0
SHA512 6cbe8f8941c6aafe4ee83653d5594ff7787c313dc5e240be279006ddd6c1eab1c13f8ef7e3bc3545e47977c0c9a0b807f200ab4a47f750e84fb1f4114a56fa04

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/28a2d605359a0b25_0

MD5 6f3755f7f7f0268e99470063546f1f3a
SHA1 e5d80df3adb9f6d0c830e09aadc10f05b7e5958f
SHA256 fc6406bde4d9101abb8ffb1362cb96c6f137fdd1fa2e04577b81b151db0e19f6
SHA512 c8883b33b9a49e791a7a292e554f28530564a9ee0f3bfe0e8e4fb8a1e39530ef91945f7227ea1618f55731347fa2672e3ee7779fb73b65f49a0e1af24adcf5ca

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/f2d2dd59fb41c471_0

MD5 660d19d7592776bc94d5f60b4d48604c
SHA1 6576a15385170b943549f6714fff223c6d0ba44d
SHA256 81cb9f8bab5ca6d471ebf6bfb340ea725a259109666ce0eedb39e3ccf17be6f7
SHA512 7bc3c3a2b6c8c6c8b134bb07b8d57f24bccdf52fd2c6e9fcdb8fe4006c29884778019a6c5cdcc2a310dc39824cd8c8a977815a86aa95a7c159f13c889c179973

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/fc5ace311c52e9c2_0

MD5 b3dfc99974e689aff20970d65c838e4b
SHA1 edfbee27238096542601b637aba6bd8de942447e
SHA256 e4bcb72d5fafafe21c49b38f95936a23f61f6bb824f3f5b3bacd402123f70c5f
SHA512 330479296c018569411cfbf081df205125cbd14b68acd07885c8806bcc256d505382880415cfea8b4955eb2dece8dde38e28ca97490fd5cc29d73ae0552201f8

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/bb67f4381cb3e8eb_0

MD5 74b9d7c28043b084f3969531b436f2c5
SHA1 14b6daa3dec093d8c0f86a20d2898bd4176dd19e
SHA256 f0a6c64b5f1b525570c6d0a4f898227d314191ba465905c069fba6c8c1e9e337
SHA512 a8787d0dc39883b1ac679bd1af2708e62b1cfbad58364728cf217450470dcc52c637a33eac49bcafe0bb874319caa498361f5bbeae1829024ee1fc06145f7e05

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/41cd3dac808879f7_0

MD5 da54548a98a622c3f45f844f73270df3
SHA1 f84494ce53d7c6b93cd1fc6554ef3b423a8dca4d
SHA256 41c41f45db1f1663e02adec5c4d503dfb1da9465a9ae0a8d908663293d3e616b
SHA512 b944e475f372e1a3009fcc85ef57b5b279954cd20a28aaea70647611798dba13206ed2c63eb578a4a23836959407619ad4b57f7f886c9e0c73d4332681bc71d0

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/c051da3695f66999_0

MD5 4b754583bab4d7444c15b9d216d45018
SHA1 f999d74f340ffa771dfa6250d88c33165fba0fef
SHA256 827f3afbeba805bfca1fbd97b22e38d1cab1aefb55e280ecabcd1f1a81d329d3
SHA512 ee56ccdc8eacce1030b40042be06970a73d2e727b4667a502a510e8f47d5dd08860fdc3d067673c212870344ff0f032f7a81528a1c9c7f0f3b9527249cd063e5

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/11f8516142abce9b_0

MD5 0b9a5a618062b09fe403fb4235e9e769
SHA1 1308466faca89588eb55c6a23d5695f059f8526a
SHA256 f65990adaa17d46d557a9ebd4ac5d8d2ba78fa26039fef228e817a63032ad6eb
SHA512 efaa47448a8e533aa67ae45e22a545fd9bedeff8c488ef4e2c867d546c79475a6356b4def9ebfc5d0cd8b4fc18c6fdeb04a81b1f62371ea7c13af001ed737076

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b8b716d3cebcdf6b_0

MD5 2bd7fe81ed2abe96885a895cf4ad6f0f
SHA1 7599ce59f597120bc87c43b5b186069d6c3329aa
SHA256 375fa7f90d501570d621b087005b1affc60bde697d5fe5992bf5e9b3788cbd37
SHA512 74984bbde59d44a45a8a40260b9f7cb310f711a20ece545c92c153b79e384f0e0c3df4a9880e6be8c28a7c6c5e07a0c464423bd07d544ef3744182c7651e2689

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/e3f773678d8d1a47_0

MD5 fb8eb0adbad4affeccd5f9b7013e2bcc
SHA1 4a32266350eb09d2147f1b7f5aebb5885d0dabb6
SHA256 fe8a07a680a15b520883119cc1cc79a96f689690835b3982ddb2e691fb9b7b57
SHA512 68becc90d8dd71f921a63c0d9939ea898a52c000f712bc2aacc89875554bd241178045106dce860078ebf030fd18fab3d3a32c8ce2dc2ded8aa4a94cb6ebdbdd

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/db377608b3ba1f7b_0

MD5 44ac68b05d5d7a6ad7572adf76f436f3
SHA1 2ea3226166218a2db23edf8ae01b8aa32dc762de
SHA256 b5e3050e73fd6e938a051725f5bcca70db6dc372219cd9e8547b796f7022ab08
SHA512 910746a1666613ce036a24bfc2becedce59c7322a69e6df659ef0a839374a6a53fee0ccd8d3d8fb2c25300f18d82d347ea78db549e9b9b5befab4ad1f5c2ab69

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 ba9bd8390a34b0e961df0705a78889af
SHA1 c298fc14e22f07c769107bf4f6dccb18566dbe08
SHA256 9a7453f869d6a2c9863165b6067154aecf41a69f25cff2d2d2a19f3cc35c3d18
SHA512 0c8c9cff98b52d0def42e332031ee2ff732a7a266953f0798b8169c30f902ead2792d1b7dd73fdfe6592ac98b25720a2d2b68474c834ea6a904c9d96b8e235ef

Analysis: behavioral2

Detonation Overview

Submitted

2022-08-25 17:25

Reported

2022-08-25 17:27

Platform

android-x64-20220823-en

Max time kernel

3591087s

Max time network

160s

Command Line

ir.shz.shzkisi

Signatures

Reads information about phone network operator.

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
DE 142.250.185.130:443 tcp
DE 142.250.184.234:443 udp
DE 142.250.184.234:443 tcp
DE 142.250.184.234:443 udp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 google.com udp
DE 142.250.184.234:443 udp
US 1.1.1.1:53 android.apis.google.com udp
NL 216.58.214.14:443 android.apis.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 206.168.217.172.in-addr.arpa udp
US 1.1.1.1:53 pubumlive.gq udp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
IE 20.238.64.240:443 pubumlive.gq tcp
US 1.1.1.1:53 ssl.google-analytics.com udp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 ea46e49c9a16370f77d59f08039cce28
SHA1 3c605192a6959151cd575f842d5eaeafe482d55a
SHA256 d8f30eab5b3d6f9654e64ff71f7a09aedc1ba8e3385f1f2d0869718c2ba23022
SHA512 51081cddb9cf9ffe25da45445243cab8f53c98bf22c20678401b031162a079dea20308d6b33b6dfabc2ce185e7b831c58e95b6f8c101c71a0eeffce106b5dca2

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation5412368799684764682tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 a6e10fe810838e1b699bc3c1c9cd5d0e
SHA1 918a077cdbd740182a9aa833d65056a097d64871
SHA256 17d020afa87dc09786405579197a582c2e811f1b075f9d9198a19794579ff875
SHA512 7c768735e19f72080442a4767b4f03f11b9bf9687fd0b6c657eafb2b562901068da97fd1c80c428f5589b31df254fce3ddac8736bcd0e345ebe49178b0247b01

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 80325e3ee46cf59fd5d25290b89a8d09
SHA1 dec0d2f0640ea8b72907cdd7cd3d6bbdc56c01a6
SHA256 b3a6e7820eed7b8e4b6f36747854b4aa45cf2e5b43d7a1666de1453f1e5fb018
SHA512 c530b15b4e9b87bcd0e0bb2a14b9b75852ac4193f6a835954a7a386b6345a6683f8b3b21550658e448eee39d94055f933225bb127726bb641eeb7c40d3867dbe

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 c3d2f6a4729462dfb5fd5d43d68835aa
SHA1 2d531f563c3c9c8b1150937d5eba7fb0dd1d44a3
SHA256 ed6f0d914bc426e6baf96f600ffa1d2ceb18c14a4f7de64dc1cbeb522cde05df
SHA512 6528c586e8583dc634542edf535dbf145ad7de3d7c835bc295700a6a052a0efa8580fa4f98e6924210a69e36539d47549924951f3c63307058827752b947ea83

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 7bd7e08b7c157fb7a04f9701b6965b65
SHA1 19ed78cffffd879509071b091ba60776c18e8d97
SHA256 c3aa0e8a52b6dcae0f988502bb3887f94c13148a8f36c3fcf5036c7c99afbdbc
SHA512 a668c141cd4d48396e9d67e79ec1036a8ad4498293e0f16d108e8c4d842f76714f561bbe440a3a5dbcfb6b7ade257ffed7fa07c56566c8ea938589c61943d4cb

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 1bd1c4b262e5d1b6caaeaeeac05a0c02
SHA1 7928281eeaa57f7e0f39dc80334edb4f31ef9d95
SHA256 0098eb47d0b78d3a36e83557501cdf130c9ad535654a297ad8cc40a8e866db38
SHA512 8e7e05c1ab082d7b4462c22eeb86953db3a1781e0248823d18d3281c6a1a9a906ea9cf41dd1c76e92efa64e73aff99e286375b5a33f71335bcfd6bebd223a2f2

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation429066166358903948tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 aa90acba811988c488407348f74a9f65
SHA1 02773b48c986502283b194bf75c83f4b62ff1218
SHA256 91f6e9eb5163b297f798faeb2ec62f4a2d0b29ee9cf920b97d3c0fa7c8013c21
SHA512 f7e16715e2845adcf78d2b2ee9e1bcd4dc77b9eadfe22f0ebe58df463b8e764ed0c158f9c3431231bb70dfcb61f66c1ece5937f7e47d6f42a4695bbcf9313f8b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 6d71f73d21973d7d9dddeff9768db7ba
SHA1 7313ac2a21a9820c8c24a062e3b20f1da804165b
SHA256 6f9f8b8b828f2196a61b4da4183e2dade32e9962bd4c663e8523c5371e70408d
SHA512 5d2e9ed94cbe34a357592136b4bbc82c5f13e80318142a60a377df23c72df9cc18bbb859e491932254a1a84c1b164387b234f6979388c31b5d41fe34a700b5aa

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 dc062253af92edc8eb43b0caff94d786
SHA1 ae135260b0a78569320d68126b4dd9c3295a2bf2
SHA256 f5cc2e0d38237a385a90e88fb5f1d6009b7e68b114b57b884f9f774214dc1311
SHA512 e6acc4daba6eebc57190eb884b45a2a44337db6a7ad9a003f191a24bc3170d3b98dba92594fa09048174bb5a4eba8a9c8028f2b11d719e575cfd2feee412f8b7

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 ee169fc15e890577858dc2144d7261f2
SHA1 9a5b0ddbe882b502690164cd772d73e17e27da5a
SHA256 3de1c720f72365ac67cf55145261cdedf4dbb94e141cabe1ecc7bae6fc206c98
SHA512 51127f7212466ad7b9c96c1f9f4f014678d000dcc3e67990d02a078ffbcc8489d34963bc2bf196096cb4e5b599b1509bf5335617525a5449db6c7c134b8a44d7

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 82ef3877b7ec8963f87606d4af0a3ac6
SHA1 2b79fb4632fcddebfcb2f3f062ae09714dd890a7
SHA256 f9f940521c87b2a6f9bf89af79c45a44f28ec38d9d8225822e5efc45c16785d1
SHA512 2389ec5539f1fb0f9a71d17629e963fdcbca009dc4d40a3a95b7763e6ce3fba6847b1bf933b06d049122476459d0e2504eb4a3c55bb4a4b9cf618c315d55077b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 5baba09a6b24c180b6285a4f76e75fae
SHA1 774b4f568e35dbf828fe2b95f0b7cab303ca3c23
SHA256 310d029356217d353d57e1a01a1b38b98721731a06cb265934bb864929013676
SHA512 5f6df24454c553d3cb5874de52a119b17faf77da0bd0fd268e369cf2149f3bc739d20d7976d52aa740c4b58e6a524bf8b03498f7463674ed4240d1088f1a5845

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 cec4a98f49ba35824e3d6324a9f07a4c
SHA1 d84e6b7c3d77eb164135e80c38b40a0a080debd6
SHA256 be31a583a2704dd42aa04cb232897ae207e4c525aa75013d1ca0a850b865945d
SHA512 e718b6edf46038881b9ee749e6d011975172d226031bf6c84fd1a794378d39d8bd04593e184dc5c5a5c09315c79e0a6f7a8c4b1692c3e375ae8bfa2af8166944

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 596788775ea3d8f0a1ad5369d3a5a64b
SHA1 2accf680b0e124bbb08999303aa96c2365edb3de
SHA256 e2b80c59c9e334d581ecd8bd20b0c8124be70359709aa513dbb501168b8b13ae
SHA512 ebe45f48cf3cc60693d0684d8e06bf5024f02c7891215dbacb9f06bc5e2ca2b2b1d9fd4191df608bf8e2ee3ece14a97e71199ba16a5f7bdaf90003dab476f50f

/data/user/0/ir.shz.shzkisi/cache/1

MD5 b059910cc65e7029f9adf684b6cbeece
SHA1 d6856b8e9a7b6a1ed4ea0e8b88469f81c5864f7e
SHA256 ab304ba7efeefd95d54f8aefdae1a8f4bf687abc331841f327980693f4226d29
SHA512 00f09f710f1d1d023d2cbaa397633f1e0dd894b567cf61fb52df72f7209661d8b8c041b01935bcc8622ee1f50641ea97bc5ea3e8c21bd2d54cd77eb5b4709a9e

/data/user/0/ir.shz.shzkisi/app_webview/variations_seed_new

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/variations_stamp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/webview_data.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/WebViewChromiumPrefs.xml

MD5 6ef709b8536878951e87c29a1518fc2b
SHA1 24376c70b00152501b3d98df61fa7db435339172
SHA256 10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6
SHA512 96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/app_webview/metrics_guid

MD5 0b5e0731950e84d5461c47e1ff9972e9
SHA1 522a0548ca218022d7075954d21757ad98bbdb3d
SHA256 c17feb7d9bddb52325c3fb143c09db9ea61cd6009eee5d5133d57021939fc2c5
SHA512 177e3b31d126f1bbb02b683961755177a70744726be40afad79744e8e92d168a620932436a7db88aea778b06a54e8c8813ae82c46ee2f3c49031e84c486e9289

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/Code Cache/js/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/app_webview/Web Data

MD5 b663831f8cc130493476d94f2d7a5330
SHA1 043a1956ab8e40821d67043f8a9110a8eb36fb93
SHA256 c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7
SHA512 e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index

MD5 6e138cf9dde1c4ca3b81156b81ee89e8
SHA1 01714949018b56c77a7de52aada9066c073932f4
SHA256 113ba49da70cf198f1e12035bb4c6380236156ef365e92b530f0eceb9373d5cd
SHA512 a34cd7e2d77366b22d22bc9a30c5877b288b2f671f1b280577d8c89b0411e2b59a1a07f8a463e30cccbe263800e8fe508365582c679a8c61e1fe1705286fc40a

/data/user/0/ir.shz.shzkisi/app_webview/Web Data-journal

MD5 60549f8df613f237558741c6a11e1833
SHA1 eb77bb3040645c94838aff93793f049f0a3b79e4
SHA256 76d722ce72501ab959b5d1c01f064cbdc1201759295214eb823f894c3c2b06f3
SHA512 a84b4949610bd7e8183ed7382f2dc780a6a78ddd21599906ebdfad61f269a618d7dbea16bfa913d0cd69ace2efe4b6bcd4fe27cf3efd2ef59a40c0354b1b2a2c

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/app_webview/Cookies

MD5 9b23e6a88d5a95f155f205cb04b93cd0
SHA1 b62dccbbef087a0731f226b96d15d35d8aa5e5fc
SHA256 f2f3c3c0c7f085399a6f9a464c1ac30a59ceeb5a4b7026286fa5609e6e8ef857
SHA512 bce5f25d98e2e8296c4101b62082dcb6a43902f3431ff6f725e41be6b9aece76e887ef94c4818baf4da845708fd76fd51c37fb6915710c870647593868f27482

/data/user/0/ir.shz.shzkisi/app_webview/GPUCache/index-dir/temp-index

MD5 e721cc26acaea2668b323e08024d21d1
SHA1 f2cc1d1e241c2268a411662825fe6f0ac1691f15
SHA256 881555d577375cf27bcf5201e5d05ce89038cc31c3cf022e191b20ab83353cde
SHA512 e93a022bcb4ae5396431f0e2c5ebb01bf37907d3e8bf77fb9066f431b63794a3dd57fe37e26af5f19c73270ab899a39c36bed41f7764d9bb27533ff4a6506565

/data/user/0/ir.shz.shzkisi/app_webview/Cookies-journal

MD5 a6251bb91ef1cd08df82573efc8cf240
SHA1 04d03288f7d1ea49266fe9586dcb398dc476d733
SHA256 99ae7db55059cd75f3c5d2303b64e6f16aca591dd6478a96d76ab416e85b3ef3
SHA512 e057b8ea854f9e95156137e3dbaee3e9dd8789f1c73cc0a039b9cbfd6103b187959f446e41deb5bf91d515d740dd2a2a3758a98ce6b24abf56ff46bc3d11317d

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index

MD5 6d7d499960179766cd4261d12dacc411
SHA1 e6f8553b0015e12b23cc551afe98763f3b1c9bed
SHA256 c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182
SHA512 6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/1e6a7b9a8e6b85d6_0

MD5 6da7a0efbb5cf4be8ce0c8e04bbb3b6e
SHA1 aa696b6be1fbddc7d2077a1830f81e055d4b212b
SHA256 f75de5dacbd8ed0aa218f26afa8e272e224e32b925a24ca9eabb58a302b69140
SHA512 8a2eb167b5e45d8b9333b1342f958cdfbdba7bbbc410b76b1eead6ac7f0b48ccda9046c195d8ac62bc885e50aac5664b422433d68c5cb8ef432aadcfe2d55b97

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 290b5724f890cf628d504b42c9c5fb14
SHA1 bef0fad18fdbe163eee99deda5ff31b55b6ea7da
SHA256 ddeff473dfc8e761a99965a9373958f9baae1406678e0fe70faef73cb013c40b
SHA512 22efb8cc808f434836d8c130a8dd13d53a032747e98ed479812cb7efec22c4380f961c4a561e790c110908f0b0e75a64a88da9f30f8463ff594c8ad93f5c4049

/data/user/0/ir.shz.shzkisi/cache/2

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/cache/WebView/Crashpad/settings.dat

MD5 553f129f95be83744ac30d0e87bae29e
SHA1 03c695b0aed22a9fa47f1b2d5615557ef430f028
SHA256 3222b22be2934787dd7e23260986ab636134516914ff243ba2febd472f9375f7
SHA512 6e5e5cc47835ac87244f643ba659fbce36b30481041dab1d04e2ed6137c4403831962012568699afc74dbf6f22a36823d381e83f99a5c27cb9905cdb1512023a

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/a4b683e26c70caaf_0

MD5 505dee73f6195e7840a6b7c8f59b6cc4
SHA1 d214206a528afafc6dfeeef616fd82763f65364b
SHA256 6ae5230f938d285a6d1d72ad30d8223c3abdf483aa9a7bd7889e9b385b5957a4
SHA512 383bd3453ecab6d85db52005fd0e1953320b4c5ddd7ee876c8de9a131a4b53677d4f7aaf74efe19b4ded6f8596964533c15efc0473da3206a9425a3fcddb2eed

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/ce6a788514c9c22a_0

MD5 8d5513522d7ebcab102a004ac3a1b437
SHA1 d8a9234758bf6e13b2b879de8217059c5245d6d0
SHA256 b0ba094a3166dce2f501ff579b5a5a1f1b6c410c7f6237edd60dbea6e3b9250e
SHA512 2ca68be4f9c82020a0b8a99f15d9f212c85a503d2575ecc81ab2afc0561742e26814ea18d7ae37ee67ab437cbe37efd2e4e08973b0c2b9f929b7bf0c6633718b

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/1d4d1d1e855fb989_0

MD5 f98061e8222aaf37e1a58ef8cdc40845
SHA1 06794c7a4bf56cdefc732660320056f28eaa6056
SHA256 a99c065d48d6110783d66612cdc88e47bf8514891e076638bc454594fccde8c9
SHA512 248cb266f6c303d083d576036c781bf6682ce0ab4b4fe6c2114e7f2a92d9f9c5b1cee4447c3a4e35623739e55c3f05a9aff6bc7c22928bf14d3a96d0b49eafad

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/da20c82018f3d0b2_0

MD5 17203e67b409d691096ed17c56e2d997
SHA1 b2160bd852985711a8e7295efa627204bf80e8b7
SHA256 09f2f5c48db4e0d7931d677e47e2b10657659885e11104f6409f877ac8317c27
SHA512 9d532ad18ebbdc6d1689a059f4cc60236b786445581a61efbe12fa05ac523bbc2cb46a34480f48413c8a58b6ab8334475b1c8d6ab522d43a4d44fbc5838fd1e1

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b9f87809ac126f25_0

MD5 183f2c29fcc93a1b04f0aef3a363a22f
SHA1 c76c0f2e20194f8acb0d15a1c5e5e91e8cfed755
SHA256 4f48d5fbd3eb07ece5912d6bf1ea26a8802f33fa3f5e45330b797d5059671020
SHA512 3d60c3127f9209c0a233d6c13a67be833ff6c27068056c3f1e66a67826ab84ce83c3abc996845dbd0145725eecbcf070c602dbf050572b5404880a92940bba44

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/28a2d605359a0b25_0

MD5 d7082170913cebefc77fa0ef3b12b6c9
SHA1 31a34e9b2ed8ed21e9378a5e93e15ca103ff7bb4
SHA256 4c90fab19e7ed057cba3698f9baacc61052e4130d0d425ef37a4a3e0e713b228
SHA512 e48a5ca35fcbf87cd57b9c6f576be3aa8168d32371328d91c39dd265d1669250fbd9b6de533fb56b55ae89c7e571052d4fa87d6788217966181ce65ddbfbf0fc

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/f2d2dd59fb41c471_0

MD5 f89babf5a66e894c0574a6664295cda7
SHA1 755b0c0fc979b9d6308e95bef128d4dbb3c05037
SHA256 ccf2833d1a8d8ef2ab1c4a653ab521f8b7edcf3d88c42a86ef52e8d6e03d2bfa
SHA512 5fe30698f994eb935cb556b24cff82d7b0a6afc01733e3b4dcadfa1934317e4d707f7e1867a136f34004fb9e5e4bb0e3ac79004a11a83878bf1242b8d7d932d3

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/7890f0d326c5901c_0

MD5 b970b3d5a3f965b20947b6e9b55d8016
SHA1 414bbc89399e1d2c5a051d6ee7078c8ee4999f7b
SHA256 e4bf7dbf25dbc25604625abad1c63eb6970bdfbe22a692b7beb2dbb93b53def8
SHA512 c77bf07e45e01599e8497eb640756a71fe24dbd8e27a9ea5da445acf081ee4ff0e27a3d2ed294c1f183026c967057046b0e3aadee6e72f066a4e1b27dd98911f

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/2ac4c0fab5dfeda0_0

MD5 0593316e95421aca10ccb9c92561e3a1
SHA1 a6f095d743a69560be78e70045c5b7b51f2828be
SHA256 2f5ecb52e34a8e14a9244e71a471e1799556d0d91bd0be38ca6d5c9ad50e3569
SHA512 6ca503df8ae75592fd21b8c12a18caee0d55592d18a08eef580c90f9bbd334d0dddc54fb183c0e76d6f0b8414c36c7c9d7c1a58e26bca9de508ea52d0fdc9f2f

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/41cd3dac808879f7_0

MD5 d5e7601fd4b90a553be706c2b33180a4
SHA1 f6c61c3e2e9d1dd91555e2af291b031eebb36146
SHA256 bc5bce4dbd97b3c744f6cdb06fe21e8e1ed3022e32a154b5a76f1bdd6b92e2bd
SHA512 5fb4c9b454625296df808249e643eafcd4280db6c2815c482f5c0fd7fab797e499131d4825283c44d2c79871501ddc3e9e8b5a49ff48ba527c453e065a2093b4

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/fc5ace311c52e9c2_0

MD5 f79025fb5f4f6b938a5bb2e158fb5137
SHA1 d4286cfde25557e143f556f4d5dffe139413b8b3
SHA256 f800447d8cac77d1ad125583c9d4b284e7fbd85a25bb48052cf12f40905a0fa2
SHA512 ed53c8e405b9b3970e47c4d86867c91e6465ee88948309074e48a6c158d078fb98f851936a55cf110fa905d7c0e8c96938fe6fcb61b484e7e03080ca6c7f425f

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/bb67f4381cb3e8eb_0

MD5 b1adf0b5ba23b14e89d1817f2d5d960c
SHA1 575cb1f77b351a32656d76fca2a6f089c93f19f8
SHA256 2bb6678b31ea2d4ffa81c5bda7266dbd49bbbc928a2e855c22bc79a6098ad76c
SHA512 6a8b9b3b6abbc07a81f24d3805c3410345e2f10c14636090dc586a608da38c5f08b1f90938a6db772bc71acf08ff74b35192f87e87011a2c90f4f4242233b017

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/c051da3695f66999_0

MD5 8a5db9288b93cfd941f6d33aad17976e
SHA1 166bf0a75c398867f41a509b0a317c1d2b9fee63
SHA256 9e7d6273c17ee8448f0a686af49e76f0e8c8d5ba0281cf650b68815745872fcc
SHA512 c3e40493748af076b988d585240c772a28431863cb1f5c5be4ebd259b80fccbc9f6e32ad44e20a3f8dfb4864d445f9edb343046686d06624a46b17a2a09ed651

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/11f8516142abce9b_0

MD5 bd40ce7113ea5a24eafaad13f01c2e42
SHA1 3a9fe6d56e6df2f33151dd9cbcfbb6fabd2bfd23
SHA256 2809d6da7f55097366f043c93e1101bd8332792dee4a5027716bfcf453265697
SHA512 2033c87488c70f3e80bd5f06cdfc84ea0b24abbfad4935f602842b0451cf01ae1089f5045a2e8f143fc9449f0bf5bbaa351697a9427d5bd2f60a4a57700bfc19

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/b8b716d3cebcdf6b_0

MD5 89dc7b2b9455f2e61eca7e04918d6cfa
SHA1 06dbc85489731f756daee086c496d20ceaa43baf
SHA256 713467c7e105aa504c899a853261027798383d6a42c7d4ca5551e550045307d5
SHA512 023ac6d412b67ffd8541e5679d4d3f5fc5a9b4c629dffdf4e105e64c91f690ab6fb4f89ada527d11d7b24c625b06287506593367ad30b18000790cce8d00b0c1

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/e3f773678d8d1a47_0

MD5 368bbb817ef5e119535e883ff709129c
SHA1 ab4d9431b2ede1f8e944747fb1c9379eb0bb5d13
SHA256 39e4dfd3ff7cde50a9043885b1ceb97902c142ead0d52f5b2f1014abf10c4b79
SHA512 f2544e781efeeeceac87f060b2cfb05195b73c4057c99a1a2280e40af620a58f93ad010aa69342b520e10f9a8c2da49d088ba782ed7c32f68cce37c699dc1170

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/db377608b3ba1f7b_0

MD5 b7362d416db520ea131d7d3c318b183c
SHA1 4c1f36174ceea6c6d000bc529f6fa5690a978095
SHA256 776a64b8a44b50f7bdfe66a2c75cdac9344cd78d21d8d5bfdd1006e85af11638
SHA512 05a028eaefbcc70c68e79eaeda23cfaee13f7779fad6f7ed2d67a0942e799b79560f7f2450e62c28b3151e7a40b87cd5462f5daa6eafe30dfec3143bf70b4086

/data/user/0/ir.shz.shzkisi/app_webview/.com.google.Chrome.QH0Ewj

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/cache/org.chromium.android_webview/index-dir/temp-index

MD5 617942e0e9b9c3234058513b0fe39e6a
SHA1 e8cdd03212a3683cdb67e4a48450f99b4a3a6c9b
SHA256 3f619a4adeec4432d3b3fdedd2968d92b276db053ba07a837f6c25fd27f2f932
SHA512 b6175ac11820e31876f2bfe5ab739c040f6d52140b543ac3a29fcd72e084449651d83241ea837696ba743f002ad60f305d9618fe5618d2da14ea94d4c0ed9550

Analysis: behavioral3

Detonation Overview

Submitted

2022-08-25 17:25

Reported

2022-08-25 17:25

Platform

android-x64-arm64-20220823-en

Max time kernel

3590956s

Max time network

27s

Command Line

ir.shz.shzkisi

Signatures

Acquires the wake lock.

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Processes

ir.shz.shzkisi

ping -c 2 -W 10 -v google.com

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
DE 142.250.186.174:443 tcp
DE 142.250.186.174:443 tcp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 206.168.217.172.in-addr.arpa udp
US 1.1.1.1:53 pubumlive.gq udp
US 1.1.1.1:53 infinitedata-pa.googleapis.com udp
US 1.1.1.1:53 pubumlive.gq udp

Files

/data/user/0/ir.shz.shzkisi/no_backup/com.google.android.gms.appid-no-backup

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 f674454aee75ee0a2286b7ed156861d8
SHA1 a845898683c23d3d75198b77b5bf9848d4980f38
SHA256 65446a999d1c0e33442ed4d0229432267f995593d758981b05c741880a3c26cf
SHA512 e9fd13aff83a9e45a4aaa39bdcdd0b54d6f0962bda86e243b363067cedb6ec432468ae1499a3a7cd4cdb59e852e583fa2c5301132cde9212bd2201702de15301

/data/user/0/ir.shz.shzkisi/files/generatefid.lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation419247040383966181tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 35999a2fc01821caa235bc3be5ca55fb
SHA1 0d4e6285f54fbc0e84e21d5ecce9021d5269be57
SHA256 9274f564539eeec8be3331f004b936797d11392b0429c393407e81f4fee0f2e3
SHA512 24f158519f3059c7030acf49ff2ca23770a947a35e87fb210aa1b01c40ed88cdd413c4334be68c03fd8b8e2b0f8b7cce6258fa5e702350b411131ab41d3445ff

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 0b26a24962266aed2854f7642511978c
SHA1 072caa384ae9d2cb2cecb431c9b65e9c39499b58
SHA256 ae0ab88bc9298e96cd5efcfa4ccd0807821d85299185669b0af55fe47f01b32b
SHA512 ff377dcf4addf3d9f5cd4872382be93c453e30ef3ecb1b803dd53a07ec61969e1215f11aab33e991f91f9e34533565c5bc239434ad22089ca61ace693508d98e

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

MD5 8dfcfdcef5a9793fb83bda404ec3f42b
SHA1 dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b
SHA256 a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2
SHA512 e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

/data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

MD5 b1efb60bd432bc3fc56044fab228e7dd
SHA1 a528ffcf4051af90e51bca80be9a5263425553c2
SHA256 6f11c84c5d9e74017347e758513db004c9909b978897ac2a1c6a38fed5c0c41e
SHA512 53363d165de2fe21013fcee67ccaaf5ddb72a2fab7bc337ecc77425860782d5d0fa7e109942caaf3ef51d1dfea2f300046ed6f655176770bfe0ac296011ca188

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 250b4caeba60ddf53228405750ba66ca
SHA1 422ab714feb34e9f3b4f1cbe669887bcd581ddb1
SHA256 2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e
SHA512 373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 63f33ddd301f710d0d1cb4d97ff5a05c
SHA1 45cf5c08a9ea6e7cf537a15611ab9e18e381a187
SHA256 d2dc19811f9c1f0927fda53af7adafb909b6d9a02d9f37f480179e14896c0993
SHA512 a4f574db9b2116bf1fa24502395897839b2a57f3c82fde905966a269cc60f8f32234468f157e167348f9784750c17cf54ba867681c29f1997d81e3f383aa9243

/data/user/0/ir.shz.shzkisi/files/PersistedInstallation6372136036147411426tmp

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 4acbbfbc61cd7a88d4fe0f4eda5b139a
SHA1 1f9b8d0b4619d75da7786579d43ab4106da4cfb0
SHA256 9108dad751f5dda75d698b5995ccb388f2ad770723a766707b7bc2d279a1967b
SHA512 95cff069554f438fe913e0d3fb6d1a8b797eed510c502be30d3e132b2cdc128d6013bb98cf54389166310eaecc882ffcd4307087ab23eab5c36942f220419aa2

/data/user/0/ir.shz.shzkisi/shared_prefs/FirebaseAppHeartBeat.xml

MD5 c924774d9e7b35461708db439b7c1d63
SHA1 768cfa6d98de416daaea5162abbcedb422a02630
SHA256 a6254388d361e160f20202d73ccef9f3806baab2b2d6a2008ef16502876ca3e0
SHA512 ef313526d77b743ea513309c5e90c77a8dc70ec6b8060fc84962423ae7f2203955aabd5c2edf72187e94095fc2758c55a6db5854a3029280334f41fa74359d50

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 c3b38133ab156961d9ca7b6bac7f6b13
SHA1 91250db70e36a1898780a3e7aa14c5387b12c45f
SHA256 ea58d0cb1078adf173e1c1a9fcc180b0590c1c9c1e01221e267006deccc769ba
SHA512 a7bb37d4f088ac11a4d49799bb954e0b5131250056da37a808aea1337ce1f6845cbf8becb0be158507eb88a2440c9e9d199d8776c30f280fcdccda7368465bdd

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 f14d58f283827b15e73faa44ad0b01e2
SHA1 3152d35281ec08053194e4767ae6c73e29e665c7
SHA256 737967deb55026e2c96eed93a73f3b73ed9010b85afc1326352d0ea628f36473
SHA512 db6e5a834229ba0ad02267fe9c1ee0b5ba46e53b6362d6b0989f10127b4b29501b3d2294b92776fb1ec7d071437e0171bfeffa947ac19b5344508887f488db81

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 62aefd6316b62cb1973ef043f35a0d88
SHA1 cf616a10f3e30c79da7e3c9e891ff1283262693d
SHA256 c57fe29cb59400b530720891fc9f845d5f51140f221a55a19a38a68465467208
SHA512 24ebee1d19271883a976556074bffb217a5bbc9042e5bf6fca8b8f3c7dd9976436f764f6f8f5f6b6b48fefcb060c5216165e67f3d91f439e3a3249b6f4abe05b

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 8836ac7a06925e9747c55960a8f80ae9
SHA1 e84dc097137bcc045fd3ebb6d373c508008162d2
SHA256 d13b43633347b9f223ca6baf89f98d5ecafd84f0421e9365bbb31688677e647e
SHA512 a779bec9627350766337099db6cd14c802a3b1ab684cf2973c75b6849774590cc3a5dfc1b94a0ec752d9fbb00053f3f197ec8ea15e321d6c0ed1e80c706a0cd3

/data/user/0/ir.shz.shzkisi/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 5d36927bf4aa845ac75d7412ae8a83d8
SHA1 174a75fe3f887201675beefaadbb8f75714f62df
SHA256 fdfccafc60e874a7a875f6ff2253ba70227b05e65f9238e318c34ea2b79652cd
SHA512 6a3db997ad8142715029deff998d2428ab2a1c3e80797bd9b9c39216e313baa21d90ecf089bbc0aebd2b2c3d2e37ad75a1cd24ac532dfb89ae90632257297f6d

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.measurement.prefs.xml

MD5 cc091f298ea5660084428593afcec892
SHA1 6696fa84491e13b1dc7ea9ffc3536fa94a0b86c0
SHA256 230ee8e790d3f381753a98975fb5d95f489f7683504f5067a1d64c9c612c0327
SHA512 acabce099ca1ad91152d062248f871dc09cfbfffdd067f722be5d4c254da39052cd06f87184e1203c8480a421276f04af50729c3814d655b97312ca29bd2d6da

/data/user/0/ir.shz.shzkisi/shared_prefs/com.google.android.gms.appid.xml

MD5 fbaa214f841da4da76dbdd7addf968a8
SHA1 17dae5726201f68a8de4aff3074c90b081b9ddca
SHA256 e65c30533e33a3312aaaa58d1763aa424e1c1e35cd79ca97c544d6d29805a09c
SHA512 3dd895020d35f9983113100d46eea2fcf34be5913f56863e34672c5f8e59536ede9d2b4b3e4707199a3717c5dc0312530bc6f63f3c8ae89754cac7064b81ca0e