Overview

overview

7

Static

static

7

EHTERAZ_12...al.apk

android-9-x86

5

EHTERAZ_12...al.apk

android-11-x64

5

Analysis

  • max time kernel
    2755617s
  • max time network
    138s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    23-11-2022 12:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    EHTERAZ_12.2.5_com.moi.covid19_universal.apk

  • Size

    63.2MB

  • MD5

    df8106822c7a62c8b62b8141cc9ecc66

  • SHA1

    d9896e7a9f4b4499d51c66685926c8409d9a53e3

  • SHA256

    c808ea0676ab10a6a118444bfa1fae79d101dfec3daabe62580ff592691940f1

  • SHA512

    504a49a868fa267006763939cbd35a6b0b115169b047baf5df9055629beab665367bd697ab20ee4de1a4823fd0b22a9ce194a31f5c48ea2f20131530aff58538

  • SSDEEP

    1572864:V0YfVbz1lPRkNM6fGBhBoBpBYB5BKBGr2ghTjDpTl5Hpz6fF0pHFuDWjzmPwCvct:VLd31l6NMSGBhBoBpBYB5BKBGr2OTfpD

Score
5/10
evasion

Malware Config

Signatures

  • Removes a system notification. 1 IoCs
    evasion
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • com.moi.covid19
    1⤵
    • Removes a system notification.
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:4050
    • /system/bin/getprop metro.host
      2⤵
        PID:4139

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.moi.covid19/databases/RKStorage
      Filesize

      4KB

      MD5

      f2b4b0190b9f384ca885f0c8c9b14700

      SHA1

      934ff2646757b5b6e7f20f6a0aa76c7f995d9361

      SHA256

      0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

      SHA512

      ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

      Download Submit
    • /data/user/0/com.moi.covid19/databases/RKStorage-journal
      Filesize

      524B

      MD5

      c745f1807902ca9a1d6bba331ea6e87f

      SHA1

      f4d6ad9c57c59811a6230b40c75cb135685bb3aa

      SHA256

      ad7ff35ded2b9fa937da663b267922b73753ab16178df5377628ef5f38bc7b0b

      SHA512

      847b9c7e74e6edcbf0ace10da2d13d5a520086b294d29f928174d0a4486b7622beb5d76ae14a6c7f4e53be98d8e27e93077ba6787399c0b3affa0f418bfd042b

      Download Submit
    • /data/user/0/com.moi.covid19/databases/RKStorage-shm
      Filesize

      8B

      MD5

      7dea362b3fac8e00956a4952a3d4f474

      SHA1

      05fe405753166f125559e7c9ac558654f107c7e9

      SHA256

      af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

      SHA512

      1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

      Download Submit
    • /data/user/0/com.moi.covid19/databases/RKStorage-wal
      Filesize

      40KB

      MD5

      938ccfd6da0e890960d3eb5527c75701

      SHA1

      259306bf3cae061d024471070a1b77559e12b3fd

      SHA256

      b5c8912839ead722a748ec60b77be105cf09166fa94765018fc1860b778a1242

      SHA512

      ff6dc3a5073264d0900111c63d06d7fab8872f74253cc09393636a061bbd72e9d0fa64428e7887b2967cafc155962080a696b0dc400fbaf25f7253a7b118b6f7

      Download Submit
    • /data/user/0/com.moi.covid19/files/biotrace.db
      Filesize

      64KB

      MD5

      e140a57829536c3ce7b11bf40a931646

      SHA1

      8eeb21ce1d6904a685d24b507708c02b2e8eaca3

      SHA256

      a64114203e06e6960e07315a0e5ef671dbe8b64b0a00974b6b9ad82b752b6617

      SHA512

      55578cc6c1dc656d6391ce27c943725e4bc70222e21aa483e5a533426d7f8339c9eac882ac1a3417aa98a7b82d05b5d2b70aa7b880f3f6fac2e00b8df91726ae

      Download Submit
    • /data/user/0/com.moi.covid19/files/biotrace.db-journal
      Filesize

      8KB

      MD5

      2ade827094d3f49928fecad281b4f77d

      SHA1

      59c3431ffa50f84028d22110d3df7d37912d22a9

      SHA256

      b140693830167fffda403bd8e611b56a35097a228e726bf2879e88e1aefaa44b

      SHA512

      74df8dc4365f6f7c88f513a6fc7fb246dc76d54d7c2ab9e0a2f435205d1af08fbf78245d30edd62764d7fb6c8b491e145c791c2e701fad66d59ece100c32146d

      Download Submit
    • /data/user/0/com.moi.covid19/files/biotrace.db-journal
      Filesize

      4KB

      MD5

      4291faa17be36795f670e27f71d4d0ee

      SHA1

      e495db8b141e277ed81b1d86bda644a8027a90ff

      SHA256

      9e6389066c95c08dc89b91b827e3762a0a9db37f4ea6676ab73f27385c78d314

      SHA512

      d8423c046534968423d74ff4778f41670bd6a82f33e50614c9a3453424ae15e2ac4c88dd70c1049090715a950eb7f0c5b2361dea57d4a473d4608a1e6cb8e2db

      Download Submit
    • /data/user/0/com.moi.covid19/lib-main/dso_deps
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit
    • /data/user/0/com.moi.covid19/lib-main/dso_lock
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit
    • /data/user/0/com.moi.covid19/lib-main/dso_manifest
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit
    • /data/user/0/com.moi.covid19/lib-main/dso_state
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit
    • /data/user/0/com.moi.covid19/no_backup/androidx.work.workdb
      Filesize

      4KB

      MD5

      f2b4b0190b9f384ca885f0c8c9b14700

      SHA1

      934ff2646757b5b6e7f20f6a0aa76c7f995d9361

      SHA256

      0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

      SHA512

      ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

      Download Submit
    • /data/user/0/com.moi.covid19/no_backup/androidx.work.workdb-journal
      Filesize

      524B

      MD5

      295255102addb56a719c4ad5f6102fa5

      SHA1

      2d8e9f92f7d5759460e678ba2b73f206166d899c

      SHA256

      1b18d234bc8dc84a80674d7571e91c1e38dfff0de2f7d9549bbbde416e98a846

      SHA512

      95d7832eab675a78b1d065e0cfd768b652106fcf5f24d87a4f01414d8f533a2df7c195fd5da280dcecc48e6680c9b677b26e14086a6df62848b425c5bd082d57

      Download Submit
    • /data/user/0/com.moi.covid19/no_backup/androidx.work.workdb-shm
      Filesize

      8B

      MD5

      7dea362b3fac8e00956a4952a3d4f474

      SHA1

      05fe405753166f125559e7c9ac558654f107c7e9

      SHA256

      af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

      SHA512

      1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

      Download Submit
    • /data/user/0/com.moi.covid19/no_backup/androidx.work.workdb-wal
      Filesize

      108KB

      MD5

      4c11b4f0285ce3ba3c2f89eaec7a6c42

      SHA1

      a88b11ba3b1d8bf04d27b25d4c91a19bc8fcbaa3

      SHA256

      851c5e872c179b4132e9d545480e98dd225aaf5545c5dc0a2646fb603425d9ea

      SHA512

      bd1e333c3282cbe875fb37df7845e46bad49f4ee1b7f3d203f548e0fd1abee396c682ae7d9c741dac9baaa788d49847b2ff2f92faab0a4eb1c7695b7c2b39afb

      Download Submit
    • /data/user/0/com.moi.covid19/shared_prefs/com.moi.covid19_preferences.xml
      Filesize

      105B

      MD5

      8a8348b3e364a3dae018495178b9acdf

      SHA1

      2b71be509eddcbc9410a85954ba095447ece1d1d

      SHA256

      be1de595666107040d5f66956ba2902fc052d197c3093af41bff964f70abcdd5

      SHA512

      51871c5f62d1aa87d989430b35afc78f8060b133645ae0be425a8a2a5834fa3cefc1486d16a000c409d2c230cbbc9d9af2b1535c01ac3c17efef64fb33c1c149

      Download Submit
    • /data/user/0/com.moi.covid19/shared_prefs/com.moi.covid19_preferences.xml
      Filesize

      158B

      MD5

      140765468c0cc5bc3590535096fb5d3a

      SHA1

      bc038422f54e456b0edbf4224f3479dbd99c8cc4

      SHA256

      7fa4422d8714a576d501a58378de5d1240635c817c3a7c04249b297638245212

      SHA512

      71f419bcb0d0a0a95c88f2ebb16e63706131eed39a57ae4e254891706f87d4b3135ecc75f16e8a2d61df91f1a7c3c90f818042db3a2fac85e0344b6764cb900a

      Download Submit