85b4c2bc2f97c10ed94276d5fe166ec5dfa3e8d0d8c7ed237f64e141affb5732

Analysis

max time kernel
4007341s
max time network
37s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
30-08-2022 13:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

pithus_sample_85b4c2bc2f97c10ed94276d5fe166ec5dfa3e8d0d8c7ed237f64e141affb5732.apk
Size

2.0MB
MD5

8d98d00d78010be17f0af3d6fb9ad10a
SHA1

b2c93da9da1a481c0159352892c7f25cb7eafc54
SHA256

85b4c2bc2f97c10ed94276d5fe166ec5dfa3e8d0d8c7ed237f64e141affb5732
SHA512

db2c95602253b7963d074f34e8b73f5823f72ced298ffe39c19500819e291bfcd62612cdbf47ddc92c4bcccdbe53544bcb99d43947b83386d897eb0e75594d0e
SSDEEP

49152:2FltTjYxe6Ir50p8jndcdM+0HjmOCjDS62xk:KltTjY7D8jnF+0HjHGS62xk

Score

7^/10

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

Processes:

com.antifata.hello

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.antifata.hello
Reads information about phone network operator.

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.antifata.hello

com.antifata.hello
1⤵
- Acquires the wake lock.
PID:4675

ping -c 2 -W 10 -v google.com
2⤵
PID:4860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.antifata.hello/app_webview/.com.google.Chrome.lDU4bz
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.antifata.hello/app_webview/Default/Web Data
Filesize
120KB

MD5
a48cd9324b1f8754b07f00d863b840f3

SHA1
11c6614775b35a58f440971dfc87c8aaac6d6173

SHA256
8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

SHA512
35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

Download Submit
/data/user/0/com.antifata.hello/app_webview/Default/Web Data-journal
Filesize
2KB

MD5
ff43ac9f3b8e4fc64c247d1e7ac51a17

SHA1
0aff6f9288dc8d4cb82bc95919947ffe789620c8

SHA256
08fc96d5bea78afcd4196857917059947c9fd1999df59ac43a23f9d1656d7b1f

SHA512
286110b7c34ca63eed6dd96eb89fc145d080e40ce6229ab1c185265836e58af51012d7fcf1168fc2bba73c020ade1cd044ab18b8d940597221801f92fe0c687b

Download Submit
/data/user/0/com.antifata.hello/app_webview/variations_seed_new
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.antifata.hello/app_webview/variations_stamp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.antifata.hello/app_webview/webview_data.lock
Filesize
24B

MD5
946a00ff28eec9fff8128423d7a730fa

SHA1
ce394361a1e17d12eba6f160ca9af1b0f9efbeee

SHA256
c84307897a10cc25a735c169d792e9dcf1759b43c8d56f160696b8bd96049c24

SHA512
a04bb2c0bc92e353aec349b090af05ec44e128ce07c2ca6ca4a59cded68bc62a276a0a94f0c10bb0c488f0a81748f6d309479a9e07026bbf81119cbed76b4152

Download Submit
/data/user/0/com.antifata.hello/cache/WebView/Crashpad/settings.dat
Filesize
40B

MD5
1cb87f6327ee4fc33b322728d4f59d45

SHA1
aaa53c4c9e1dffed8af883e1f1d84a55efc32c07

SHA256
5e929e79bf15aaeb237d97573a58340915c3dc2ba5aa0a0e75f2389ffd7e2c0c

SHA512
8fc52258940cbb160191d6d49b0d3cd6a5964c05f7c2ebf165b9088e0b2f418a61ca8587946742b210576b24191f80318e9d1bcfcc097e9a990db6b2c0c4aef3

Download Submit
/data/user/0/com.antifata.hello/cache/WebView/Default/HTTP Cache/Code Cache/js/index
Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.antifata.hello/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index
Filesize
96B

MD5
2647fb2505a544efab7723971008c9fa

SHA1
27e63d311dc432c8aa9b940e05e67a0bda53bcd5

SHA256
79e3ce11f15aaf7c4b2cb7b51331acf90052ca6ab434d3f3771e49aad751c3b4

SHA512
160004119a32f1b8e193031aa441d1926eef60574fb5a42638bc3af316288d3092dbf287070440930f574a4feff11905a74f3cf0b707bd54693867cdcc9aa797

Download Submit
/data/user/0/com.antifata.hello/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index
Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.antifata.hello/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index
Filesize
96B

MD5
3a7bdb0c0937a040211a368b6c59c871

SHA1
e11baefadd2cb1e4eab3afb19820a4195d347ca7

SHA256
eca53dd99af4bb54426428c1700b3f7fda16a4deca3fc45e5645aed3b7622dd2

SHA512
31582b022b0dc7b21fd0aab7a144cc0734060c224d0c6049366099da28e2e26c7d1f3a7f61198fc289c0930c4b3905edef2a27a695646c11702a166498d1eba3

Download Submit
/data/user/0/com.antifata.hello/cache/WebView/font_unique_name_table.pb
Filesize
57KB

MD5
f080fa2a56ab5479d58063e5ea871447

SHA1
4b3fd57a98916fa5784305b76ba30af26b5253d9

SHA256
0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

SHA512
8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

Download Submit
/data/user/0/com.antifata.hello/cache/~test.test
Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/user/0/com.antifata.hello/databases/google_app_measurement_local.db
Filesize
88KB

MD5
8dfcfdcef5a9793fb83bda404ec3f42b

SHA1
dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b

SHA256
a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2

SHA512
e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

Download Submit
/data/user/0/com.antifata.hello/databases/google_app_measurement_local.db-journal
Filesize
1KB

MD5
977797b8dad46f23eba8284fed8af986

SHA1
1e83a45a141a0eeadb525aa197950245faf51282

SHA256
f8978f2aa9381e3272a7a65f91adfd981035aaaa478b8787b7ff287d9e78ceb3

SHA512
d4c46f25564f14bb3cb2e467a99349c7320cbeef75fd6ab8011f7f40fd1eecd3fd599405f7097b0790db3d0359db2c17776a8de0daf7c1b842666f33f5458fdd

Download Submit
/data/user/0/com.antifata.hello/files/PersistedInstallation4534959997079260732tmp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.antifata.hello/files/PersistedInstallation8156024818171740357tmp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.antifata.hello/files/generatefid.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.antifata.hello/no_backup/com.google.android.gms.appid-no-backup
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/FirebaseAppHeartBeat.xml
Filesize
134B

MD5
0c6978579ba4b5a11c76774f7c44eebb

SHA1
11787d095fc34903807645b7bff7fd2b3103f799

SHA256
1f84b64d96daa493630f57ded0765fc0f970ff85eeeb4ac229b2da81ae2a5e96

SHA512
d96e4e374533c2dd9414f6146f7c6ebc041a8fa9ce3a2a8e80fd57f5d26223918ab5638d03c39495d13f68f9f99e7d4b567aa1705593592206e9986ec77b9554

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/FirebaseAppHeartBeat.xml
Filesize
188B

MD5
96045c4fc850137d9daa1b10bfceb479

SHA1
b9694ce81222f41347bf76acc08c3599e2d6ab6f

SHA256
c40fafb1f1deff067a27b92df5df6d5fd28c874e3782d236391ff60f2712fb5d

SHA512
9a837e5700156936f460ebbc9d0a580a164f7d37e08f47bcbf1f2343fd3b04bb625eb107f02a4ae7e64e172b2a95bf6d7c3ff9127adc70d405db0c37dd3068fa

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/FirebaseAppHeartBeat.xml
Filesize
239B

MD5
65fe21ce25db5c610c1cb4a6535c6c7b

SHA1
63af2b4ea94578dc7328f7c006fa3b83eb75be3d

SHA256
51a044f032a0663dfa6c58a4bd2e0108fe2584be073c0fdf39f2318724ff7525

SHA512
714041a93cb8cbb9a6e51fef3feacff8dc25c5b2cfd5e7da57b11f0f5e0339647c027fdd905e359726c426b2310b80a30fb02a9d4990a108425181954b5e98fa

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/WebViewChromiumPrefs.xml
Filesize
127B

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.appid.xml
Filesize
192B

MD5
7ba974d511e9500a7b842ae12c0e6fa5

SHA1
2cfb5e7ebab4367d67b39d415cff35e01bf0306a

SHA256
72dce52e15648e16506bdeec4e35c46136f5caeb0815a7877f0daded44d51295

SHA512
de27020d9efa75e2d229530ae117a02981c630cb2629a2dcf2aba7aa67b3ebb09af0d89b242146f8930cf6fbb446b571febc126f1bb54f6096b0a781c130f325

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.appid.xml
Filesize
507B

MD5
57c68fa37aabdb5ab808eb98996ac62e

SHA1
61606990917388b42843c57aee6baa6690285f2b

SHA256
edfecaaca9ff0293390a696e5700aab9c24cae448ddcf7e6bc6c667d1d739b77

SHA512
44f597fd094b5fde96ee7cca59adf1bc0965a61b81c34c84351e84bf2ca5e42158ce95058825dc23ec1ccb9d9123b613bcc1bce6c9240f91c4b903cb238dfc1d

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.appid.xml
Filesize
565B

MD5
7da3f5a853742b374afe08499d1b221f

SHA1
397f8909e652a9983ad6ea54f26f3b4c65432388

SHA256
2fb1d55b3c94d28e3101a22969f80dc5f12fe3d9195d6f97dceda428888a6d7a

SHA512
7038151c572a1b6a137e3d374e9eeacee0498ee0ee7bbbe1d22fe9dec97e1a8303c6b11c0bea38675d91ec8c15a24bcf97ab095525b17c6c80548968fdafc92c

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.appid.xml
Filesize
558B

MD5
5c587132ac774f3bb80bbdbf325af166

SHA1
dfc7cd34f77a8d7121fba8e92ec3bd70c4b9f74b

SHA256
5af63dc54b8d17894fc1fe8d5f78b2c36dbabf1cf429d8eef768a90fbe629e13

SHA512
4c0b92a9ca45503ee55c1bc5529c7ba22180f1561f634f7ebaea87293b04fcaa358e95870161d0f2978172f7cb81fc4efe55c627ee17a92f429af2bdb8010d36

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.measurement.prefs.xml
Filesize
395B

MD5
22e12ad3d1018a17b9074346d746cc35

SHA1
346eef4786f007a828f3389e7da05c604dd217fb

SHA256
cd2f00fc2bc5782bd9acbd696fef28619e8ccadb4875da0b515256d5eb38b0a5

SHA512
495e630c89392c0b6e67438eb44b0f7ab05d3f6144d7510e114734532e2756a5f7153a8ad59cf3acfff2243749fe6082172c39b8d6e68a12718fb6c129e0b259

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.measurement.prefs.xml
Filesize
606B

MD5
1518f57b908a1fd8f47717448178f7c7

SHA1
1dc2fd5ba75117f9f31346bd39054e6e1a8657a5

SHA256
967238b97e680ce09e5208c3fa46274846b9be4863151151a9016fca56fb951e

SHA512
242e1cfe7efa06bd6e82c21aa42add91a1a3a53909605d2515d5e548a545731d515c52ce629e3d3a8ffcd617eb2c6f01715f6ad6a74b35db651aa82729caa46c

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.measurement.prefs.xml
Filesize
607B

MD5
311c7f18c3a15d408193d1398aa28779

SHA1
07f9faf1ca43a6fcead7f19bec935d721441e359

SHA256
0749b8cfce502460ce3a6f68d117f03addc4b1cf49adb55391f1d938114035c5

SHA512
06de3ad8618c0aafa14cec05276b5f4cd26edcc2a093ffd534da0105d14ab6b84848909e0b81cb786f8cde63aeab442c800a49cbc5193547a7e36c9ec6992396

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.measurement.prefs.xml
Filesize
719B

MD5
df2f7c8e69085e9a6b104f55418dc95b

SHA1
a7b15081337b2d9c053e22d4dc4dbd38e7bc6e88

SHA256
63fe0f6e65652dd16bab1d750ac1ef3188e876d0f325daa28428d9bf348ddc91

SHA512
9209b57b99dcab4081fd48d7fae8aa5b3073588eafd6ba5050a81a388fc2c2c1e18096cd3795aabb4515c111c83534eac0ff9fa343e83d78ffcf603540f0019d

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.measurement.prefs.xml
Filesize
796B

MD5
f933c5ab1552ba896a6e953981e342e0

SHA1
1ac2ef7b7962644eba99d3a71e16f31225fd4b66

SHA256
76a5a1c12e195b3437e9d015eb25a449a8dc5104acd821e7770249cc7c81b6e2

SHA512
b87509ab7cc01c48a1857fef8951af28afa1e344d9dcf6699c68a414b8f26303aff2dea13eac7071eb9305afa93f650e39ccea5b9176b7a0011e97fe89581e41

Download Submit
/data/user/0/com.antifata.hello/shared_prefs/com.google.android.gms.measurement.prefs.xml
Filesize
122B

MD5
250b4caeba60ddf53228405750ba66ca

SHA1
422ab714feb34e9f3b4f1cbe669887bcd581ddb1

SHA256
2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

SHA512
373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads