81ccf768306083c01093f976cf0582c30bb4e6007fde84c3cfff11c4724537c6

Analysis

max time kernel
3760641s
max time network
157s
platform
android_x64
resource
android-x64-arm64-20220823-en
submitted
27-08-2022 16:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

eblgh.apk
Size

2.1MB
MD5

7fdb3b28ca96d3dc85fa6a5938621364
SHA1

bb02b382f6ed2f9972125aca33a371f718e81b56
SHA256

81ccf768306083c01093f976cf0582c30bb4e6007fde84c3cfff11c4724537c6
SHA512

e5832a79fe1c226b62533d128168e3385861fad342b71467fc27612373f2b2aead10f0bc429274e7df80162e1edeb844cc821041b7cc35a03c09b4ba40fce442
SSDEEP

49152:w/3JZuaGc3uotdsRyWqupG+7kzcbWnIuht2HAUI/Npd:e50+3jdsRyW9V4zcbIIJSpd

Score

7^/10

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

Processes:

ir.joorj.tel

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock ir.joorj.tel
Reads information about phone network operator.

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	ir.joorj.tel

ir.joorj.tel
1⤵
- Acquires the wake lock.
PID:4397
- ping -c 2 -W 10 -v google.com
  2⤵
  PID:4456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/ir.joorj.tel/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/user/0/ir.joorj.tel/databases/google_app_measurement_local.db

Filesize
88KB

MD5
8dfcfdcef5a9793fb83bda404ec3f42b

SHA1
dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b

SHA256
a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2

SHA512
e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

Download Submit
/data/user/0/ir.joorj.tel/databases/google_app_measurement_local.db-journal

Filesize
1KB

MD5
ffb5d8e757915134b1049f62e6d56dc9

SHA1
9fe77002a422fbbd9f1c281e8b3bfc1d7b57d06e

SHA256
946099b1bd492f7075c2e8f8596b4c30c6b5df2c9d65f365213acf07924433b9

SHA512
2f7ca32eb0aeb63b8115c975f19a7cbe2937606ad67ca9dac4ac705fab4eb90a33a5108b90780b8727f1f4b80046d6c6e47355cf2502ab6b04533f583f0e8e4c

Download Submit
/data/user/0/ir.joorj.tel/files/PersistedInstallation7377422548823660920tmp

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/ir.joorj.tel/files/generatefid.lock

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/ir.joorj.tel/no_backup/com.google.android.gms.appid-no-backup

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/FirebaseAppHeartBeat.xml

Filesize
239B

MD5
0ac3c5eb43c0e0728ba88ab7f10d7976

SHA1
978ab189d0ffd2788749fe59596d8081ab84390e

SHA256
6e571d86c67f266ecb87b908d6035ec9dbd34a9878e441604dcca04c60c07fb8

SHA512
01a850389a92c7a9ac2702c9a9a340203815d17f2e8489d6d83153e7e8aeaac4eb3c27ed409e1c08ca99462aa6fd90e40a7b7fd16ef6ffd9d78f1a7b210bcd85

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/FirebaseAppHeartBeat.xml

Filesize
134B

MD5
68b72c698c72e19dbaf6b35d0e172e80

SHA1
d34c35a3182eb9a6f98f70fda4b013d6994ec731

SHA256
5ca098526e530a52d3617bcffe2d83810398d48814f6df9213d2c5e5350fd85e

SHA512
07492db33d7a9df113596ea796cf177a2309a1d7a4f39c7f087aa9e91080922d8873e0949810915117603234b6b65728234a4cbb3a5740d5960adf57461d6f62

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/FirebaseAppHeartBeat.xml

Filesize
188B

MD5
839a125c49b648b23a8969d137716dad

SHA1
e9cc246230d450d23f40362c9e31c341a750eca6

SHA256
0292213356d28ae87efbeadef96a438b4846d4dd8a910ae606d5c618df9c721e

SHA512
7fcd942760e14d8b91b1bed52d9d18a9cffa92d058bd9a2c6b09d79364c4f0bbe24d901af3135cf722f1be92580f2423b4cecbb4f81c6f46cf785689d2e123e9

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/com.google.android.gms.appid.xml

Filesize
192B

MD5
5b0d5ac81fc07c88a8e09afc5a3c5412

SHA1
6df2fc81b29182af40bbb9889c43dbf27d54def2

SHA256
336fba0b0904f846f6e99264f73d823867c72b0767684bc039555dfa04fae49b

SHA512
06fbab69029b253e4df00617ca9bdcae1bb22c5f93cc61240721070fe2471b7249df9ef804d776119ed72c0c1fa476128c54979db91893f2fb0ce16aed3da199

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/com.google.android.gms.appid.xml

Filesize
251B

MD5
109033790e9c59db7a367b41fee78a25

SHA1
d65e3f3635c85a150d0d90f2aa6697e556908c5d

SHA256
e47f5ce4b8c5f08fc111fa52dac7e705a2232c7bf7887ea0eecee4c5e503016f

SHA512
7103c4e4b426f56b5c53f0e10821acd61a72ee72647bd50e904590c662e97d1270851dee1a970dffa402afaff4c20f2fd98bdf3dad267f1476f1f0f792b6ec3d

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/com.google.android.gms.measurement.prefs.xml

Filesize
607B

MD5
5b9f3b6ce15b22023f7164cd24e23cb6

SHA1
3e74737589e9c95b2e8a337dcb82a592f06627fd

SHA256
509af9f95e89e739c99142c1d01b162f0a1d4babd09e84808c6c0770a8b5853b

SHA512
fa1beaf141423c0f25e3e48821affbdb54f8c636520456e7317528e9bd18dbba2b12923e2674fcf47a912dc3732033c33e0b184e27403c19fcb9048a62b7e9b2

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/com.google.android.gms.measurement.prefs.xml

Filesize
665B

MD5
5d9ccb36cb7e93284b2fe385d1985c7c

SHA1
bb99a9d2816be01395f6a16706b09f19bb6f9774

SHA256
592a7e549b4c0d6b6ef7cf8bcea283576f1856b23338bb311369d7f48684128c

SHA512
0e62b1c3d1968f8cf2914c204b93c8acf9246914aa195059d01ecc3219d9b98e57ae086b766312ee9eb7b63c92c67f32c52dad5ea18aea1e163e6cb39653e422

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/com.google.android.gms.measurement.prefs.xml

Filesize
719B

MD5
9ece716e34b0b522b66208554ed6446f

SHA1
e8d6f8f18cc5cc81185fc8bb92acdf39e6e8c6b2

SHA256
7ef4b344c95da075f30f4c8f1dbcbc122f23176a1786b1f24682cff8bbc28346

SHA512
5b098295874963b26aef58fe42f37365bc7f5be9bf4aef88d105eeaed5c0c39bf0bc8747d9dc637c194e513e81aeb80d4bed98a01d45b79e9397989e3311a1a3

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/com.google.android.gms.measurement.prefs.xml

Filesize
796B

MD5
f21858208f3dd1201a516d24e019c7bc

SHA1
85d730f4efa9982927258fb8a08079a5b47f95e7

SHA256
5e919b4862774066fd6055631e2a16075a264416ff64e327b2f91e91f7c71307

SHA512
eaf0f4497528a481aa14fbf34b4a82422b16c6352ff848ebb0f84554774d1c7ca2f41ba88796d2d0c9874294615a664f1879b05438e18dfe476aa35b5d252998

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/com.google.android.gms.measurement.prefs.xml

Filesize
122B

MD5
250b4caeba60ddf53228405750ba66ca

SHA1
422ab714feb34e9f3b4f1cbe669887bcd581ddb1

SHA256
2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

SHA512
373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

Download Submit
/data/user/0/ir.joorj.tel/shared_prefs/com.google.android.gms.measurement.prefs.xml

Filesize
395B

MD5
8eea5a61c62d43d8ceb20ac9a27a1f54

SHA1
c49fa9dba0637d71144e692b3b50edbc64ce51cd

SHA256
2052834106c1b9a98e48d4cd38d1b6198234d9c830bd7c9f26a8e910ef2f4d5a

SHA512
bd4945d6fab544514e01c17f3aa4466e68a972300a430da5db7b49893139a241b9108bf63a4971971393c7491164587084fa65267b1312092555f49f8e8b1053

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads