Overview

overview

7

Static

static

10

eblagh.apk

android-9-x86

7

eblagh.apk

android-10-x64

6

eblagh.apk

android-11-x64

7

Analysis

  • max time kernel
    3616709s
  • max time network
    158s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • submitted
    26-08-2022 00:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eblagh.apk

  • Size

    2.1MB

  • MD5

    4118d3586b4a257476085f7d61fbaf0f

  • SHA1

    99e17190f50350433d45e1b1dde5e44800521e2c

  • SHA256

    cb1604c4c5be8b074c3738abf22c979033e76ed736822617865500a99e5d3dd4

  • SHA512

    3089f1b60c40c3cdd4ab3fe6278cbbd1ee98be4018e1ed90d1f0c9a1b55e2e78183bfc0471e30363cf5f9f54d172e8181aa5bb54e5d39e35aa09df29590e229f

  • SSDEEP

    49152:x/vp2ugmzU9BhzZzFnsPBomkcuZCirAMsdU03KZwHY:ZBu6UVzZzxsPBo5cuA0ACWKZw4

Score
7/10

Malware Config

Signatures

  • Acquires the wake lock. 1 IoCs

Processes

  • www.devil.ir
    1⤵
    • Acquires the wake lock.
    PID:4263

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/www.devil.ir/databases/google_app_measurement_local.db
    Filesize

    88KB

    MD5

    8dfcfdcef5a9793fb83bda404ec3f42b

    SHA1

    dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b

    SHA256

    a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2

    SHA512

    e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

    Download Submit

  • /data/user/0/www.devil.ir/databases/google_app_measurement_local.db-journal
    Filesize

    1KB

    MD5

    d83be27695171f6fb8024fcc0d558d82

    SHA1

    91d5d5dab15bd9648cd1be9e88b8e2afb95a690e

    SHA256

    3081b1a90ffd7008fdc2728c93cf20e94af8d230c1983120e0830660f1b2f04c

    SHA512

    bf4cde957aacff83d047da3a502e516ef2bef4d4882e01e5be8926891124266a2eadd502b7d086ac92d4733d4f594d47e99216a3e356b3a22d958914cbd58a2e

    Download Submit

  • /data/user/0/www.devil.ir/files/PersistedInstallation131172241269717364tmp
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/www.devil.ir/files/PersistedInstallation6485877913580404358tmp
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/www.devil.ir/files/generatefid.lock
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/www.devil.ir/no_backup/com.google.android.gms.appid-no-backup
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/FirebaseAppHeartBeat.xml
    Filesize

    239B

    MD5

    2d52be0e758f18c01ee9a49535f6567b

    SHA1

    ef657129244175e3451458f9ea94c8b49b1873e5

    SHA256

    6147ac74ab2094993317f51a1addc4b4029e5a77e777b17a07a5f48e274b46d6

    SHA512

    06d8c17bb94fa8d777e887249c51b8f256bb9282c74c4efdb6e21f95386a27404dd79771c667b4a86859e3f4feff3fd55017c9a3f3ab563cb36e751644f50bd1

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/FirebaseAppHeartBeat.xml
    Filesize

    134B

    MD5

    d9a4634625c15621d92d96ff10f6a1d4

    SHA1

    52659fb475886b77344fcfa070fdd93585ecf67b

    SHA256

    0124574a5b2442d6212c2703edbfb34ea03f0a4e82ed7998dd7e04d8158ab0fa

    SHA512

    280beda3aedbe1e350c50fa0287f2b45e2174dd763e667f64836eb37561cdf0436937da8445f8264b28825363614d3bb13b8e27e97c617b1a66be9745a2c5f74

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/FirebaseAppHeartBeat.xml
    Filesize

    188B

    MD5

    6e954b65e51517a84a6c99c6a52015ad

    SHA1

    2aaf675c329b158ee3957f2c36b68ff1e059eaed

    SHA256

    baba707ed20e6f7cd1bf86dc6a06767117c8a73235b442ba25677a4e201e8dea

    SHA512

    33ca7546d1b150021dbc7004e1edd08495d6d2686cc7e75287653e953214e2c5fb03eb0c8597555d9b3bdea6ef2e94b13dac6f8f8e2f8c919e18b0136a01247f

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/com.google.android.gms.appid.xml
    Filesize

    192B

    MD5

    a7b0cc7c94bdda222f15160e264157bf

    SHA1

    93dd381e10ba00445538f4492117f4f2945cd5b6

    SHA256

    a9c576629698b8c7d0c8b34f1c778cc2db477d3402d27ebaca4166b450d260c3

    SHA512

    0a86146a2936a3412e13b89f2e5f159395edf2b7805a67ab3914044a753c5f9f4b0f9380d516b079cc6c0ab38f52e3a00a9d309d44acdae6d2912b01f23327bb

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml
    Filesize

    607B

    MD5

    481adbf43e30f178b750819d965465e2

    SHA1

    cdaa3efd5a8c72f085ba8c4a36ab4607facf90a5

    SHA256

    a7f06d0de44a2054284b295dffc4bcd0f4dd75c11eded2b1c77aa63502082681

    SHA512

    befa4edf27c57d6361b198a6269b4d61d12f01c1eaa06db80248129772563968eb6f8e9205bf1a28b30c00613965499af0e494fd2477ff577508ec25f1e296fc

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml
    Filesize

    665B

    MD5

    536b4a73313e141d0ef00b2af1e26387

    SHA1

    f894511276baa9b27b7db0b6b8b933f91ee1a2a7

    SHA256

    251495fd6fb52037de63a02e648910a4bbee6f901b8291a378c76141ffd5dfd8

    SHA512

    a8cccf80445a1fa7ec7d7fa05432962604a285e177d7da41c323e705b5fb65154614d8e83687824077430d6fbbbd8d0e7171d1a836c5383103d575f543107fd1

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml
    Filesize

    719B

    MD5

    b21deeab08e657335fbe66048cc24b08

    SHA1

    d00059a3e0572dab831d93d62530b9ae75b97f66

    SHA256

    9a267a770e9241c7c56d998ebb2ba58620092c69bca4038cac2bfeed412e2286

    SHA512

    dc2b7cf123e737ad604cdfb90a6ead0e468cea76f8fc24bd6d32268f473fc55d344913593da016987316c641886aa89ecee097b46e517f402c41b083a23849f2

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml
    Filesize

    122B

    MD5

    250b4caeba60ddf53228405750ba66ca

    SHA1

    422ab714feb34e9f3b4f1cbe669887bcd581ddb1

    SHA256

    2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

    SHA512

    373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

    Download Submit

  • /data/user/0/www.devil.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml
    Filesize

    395B

    MD5

    9e3a05442a60bb84725f4569944b9e4b

    SHA1

    26e40a97d91959490f8610d139f0b2b1dff54259

    SHA256

    554a3657cb46de2a8abf0864c742c77973ee7dff2c28b0f906511fd15364d6bf

    SHA512

    b8fc471a6339e9a20c2fd8cef1669a5f2681c185e56458161e128cf126ed82f567b6d06412464f5dda2aa156942a7f75260919b3dd18802a7cc41c01f718d8f0

    Download Submit