c808ea0676ab10a6a118444bfa1fae79d101dfec3daabe62580ff592691940f1

Analysis

max time kernel
2759187s
max time network
122s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
23-11-2022 12:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

EHTERAZ_12.2.5_com.moi.covid19_universal.apk
Size

63.2MB
MD5

df8106822c7a62c8b62b8141cc9ecc66
SHA1

d9896e7a9f4b4499d51c66685926c8409d9a53e3
SHA256

c808ea0676ab10a6a118444bfa1fae79d101dfec3daabe62580ff592691940f1
SHA512

504a49a868fa267006763939cbd35a6b0b115169b047baf5df9055629beab665367bd697ab20ee4de1a4823fd0b22a9ce194a31f5c48ea2f20131530aff58538
SSDEEP

1572864:V0YfVbz1lPRkNM6fGBhBoBpBYB5BKBGr2ghTjDpTl5Hpz6fF0pHFuDWjzmPwCvct:VLd31l6NMSGBhBoBpBYB5BKBGr2OTfpD

Score

5^/10

evasion

Malware Config

Signatures

Removes a system notification. 1 IoCs
evasion

Processes:

com.moi.covid19

description ioc process

Framework service call android.app.INotificationManager.cancelNotificationWithTag com.moi.covid19
Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
evasion

Processes:

com.moi.covid19

description ioc process

Framework API call android.hardware.SensorManager.registerListener com.moi.covid19

description	ioc	process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	com.moi.covid19

description	ioc	process
Framework API call	android.hardware.SensorManager.registerListener	com.moi.covid19

com.moi.covid19
1⤵
- Removes a system notification.
- Listens for changes in the sensor environment (might be used to detect emulation).
PID:4429

/system/bin/getprop metro.host
2⤵
PID:4471

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.moi.covid19/databases/RKStorage
Filesize
96KB

MD5
cde21a89f313e6b18bcdb1bf65a62c25

SHA1
88da7ba47df8b412993d01deee7f0485b050934a

SHA256
d72d96e5937ae2913f4ea3d2d29ea9456b0ae997acb83f462e831d2cc80e95b9

SHA512
eb1c507e858fcfec01d2a5a4e7a3ff8aa2824a8184342b53798aecaa1e7b617415b86e0bcf2602d748d8bc851febd57044e3df67257fe8b7dcd92eb2f962a5d7

Download Submit
/data/user/0/com.moi.covid19/databases/RKStorage-journal
Filesize
1KB

MD5
25681bb55b09692150577966a98db4b8

SHA1
1bb9e6f58a519f4bfce6a4df888bf019b685b706

SHA256
833a3f184bfc1b243bdaae10d32fa7dd90fb8984121ceb9c38552731321e4ba1

SHA512
d1676e79731eaa9df41dbf5a7ba9f44edac2d3de90d321b37d2efcdce898ea0e1d540183b1b738f9c8d08b1774dbb0e82764c9e45529cb8d05de2c3bf7519a4c

Download Submit
/data/user/0/com.moi.covid19/files/biotrace.db
Filesize
64KB

MD5
e140a57829536c3ce7b11bf40a931646

SHA1
8eeb21ce1d6904a685d24b507708c02b2e8eaca3

SHA256
a64114203e06e6960e07315a0e5ef671dbe8b64b0a00974b6b9ad82b752b6617

SHA512
55578cc6c1dc656d6391ce27c943725e4bc70222e21aa483e5a533426d7f8339c9eac882ac1a3417aa98a7b82d05b5d2b70aa7b880f3f6fac2e00b8df91726ae

Download Submit
/data/user/0/com.moi.covid19/files/biotrace.db-journal
Filesize
8KB

MD5
d0b100584847622c852199961bb295cd

SHA1
3c06be866c1a3e41bd67ab1364b61bd02f601677

SHA256
aa5f963930d1f2516330024b6fa73317bc3f6c2d1731336fe317115dbd71feeb

SHA512
9d01db2de85e3cf76a573da37a7b01ecef16eb23eecbc732974bdbc0ce9fc0386ebc717002af7dc1e57fbb998cad93f5f2cafc69c76eab8b64e4069058e1fc3f

Download Submit
/data/user/0/com.moi.covid19/files/biotrace.db-journal
Filesize
4KB

MD5
ab15ef31f2170c1ef77b426e3ed45aee

SHA1
cdda815c3629459b7f0dc3791e365ff46def9c00

SHA256
0ca6d4b473178db7954823b3294df24886e5acbc1ca4c077aec4238612b741be

SHA512
ec5247c11dd04f7dc5f9ecb30d30b1e00b9df0ccdc43e36792a00899e14ca15f0208b9ad2cb6e9b36100d7b33de0cea2ad9bdace62c69c3576144187b2f31d5c

Download Submit
/data/user/0/com.moi.covid19/lib-main/dso_deps
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.moi.covid19/lib-main/dso_lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.moi.covid19/lib-main/dso_manifest
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.moi.covid19/lib-main/dso_state
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.moi.covid19/no_backup/androidx.work.workdb
Filesize
8KB

MD5
e579a6b00eef1318f9166352228eba18

SHA1
76988896854f0139083e77862eea1a4846cf039f

SHA256
4b34cf505050facf47aa7936e4e7667e1969105665c632b3eefe7ecddf9a6935

SHA512
c47632e957d87727bf6504a82ca7a44d8da24d30cd997a0f449a96e4f97c656a1b4d9da3fcd827e2a48c59677688da0b872358ebd0f9369d898d1b8ec18d5699

Download Submit
/data/user/0/com.moi.covid19/no_backup/androidx.work.workdb-journal
Filesize
1KB

MD5
ec1e81f5fa402224692dab5ea72d25ea

SHA1
c27302c0b7d70f43785f849501225cba141cd1c7

SHA256
88e95db4e0ee234ac5b8ec08a267999b56e6f06927f292ed9a5ab516ba1e8bc5

SHA512
27b342a809a46e129c8d7dcb085f10128685748628f1629f799a7b9365488e610f81aea62b067b1a8c7528dc70b8f84e4377504fd45bce80cb79ad22863756bf

Download Submit
/data/user/0/com.moi.covid19/no_backup/androidx.work.workdb-shm
Filesize
16B

MD5
4ae71336e44bf9bf79d2752e234818a5

SHA1
e129f27c5103bc5cc44bcdf0a15e160d445066ff

SHA256
374708fff7719dd5979ec875d56cd2286f6d3cf7ec317a3b25632aab28ec37bb

SHA512
0b6cbac838dfe7f47ea1bd0df00ec282fdf45510c92161072ccfb84035390c4da743d9c3b954eaa1b0f86fc9861b23cc6c8667ab232c11c686432ebb5c8c3f27

Download Submit
/data/user/0/com.moi.covid19/no_backup/androidx.work.workdb-wal
Filesize
217KB

MD5
a9d82cf21fcfe4b45133e3f704181b76

SHA1
ead67422bd7a93c3824057f07af9793e8cbb3b36

SHA256
781f82fa168a3d544739e598906a71e426b1c2de50c79592ffb8094f642c379c

SHA512
d8a361528a53968184b91a2f9984a28e0da5e372559b75b76e4795c511f1302d5efd7f1ce7a3d462b1fda512792ebd51ad1b9bde743368dc32d8b38d9c1b3650

Download Submit
/data/user/0/com.moi.covid19/shared_prefs/com.moi.covid19_preferences.xml
Filesize
105B

MD5
8a8348b3e364a3dae018495178b9acdf

SHA1
2b71be509eddcbc9410a85954ba095447ece1d1d

SHA256
be1de595666107040d5f66956ba2902fc052d197c3093af41bff964f70abcdd5

SHA512
51871c5f62d1aa87d989430b35afc78f8060b133645ae0be425a8a2a5834fa3cefc1486d16a000c409d2c230cbbc9d9af2b1535c01ac3c17efef64fb33c1c149

Download Submit
/data/user/0/com.moi.covid19/shared_prefs/com.moi.covid19_preferences.xml
Filesize
158B

MD5
140765468c0cc5bc3590535096fb5d3a

SHA1
bc038422f54e456b0edbf4224f3479dbd99c8cc4

SHA256
7fa4422d8714a576d501a58378de5d1240635c817c3a7c04249b297638245212

SHA512
71f419bcb0d0a0a95c88f2ebb16e63706131eed39a57ae4e254891706f87d4b3135ecc75f16e8a2d61df91f1a7c3c90f818042db3a2fac85e0344b6764cb900a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads