20521f1c6d83e55f018ea8bed6855fd51fe2eb52b1772d10dee0bd90ff6dfca0

Analysis

max time kernel
2821042s
max time network
125s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
24-11-2022 02:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

20521f1c6d83e55f018ea8bed6855fd51fe2eb52b1772d10dee0bd90ff6dfca0.apk
Size

392KB
MD5

6b2e9ccf89cbab06f4348dfabf03c015
SHA1

7b0a34c68fc9b24f4ecbc901660c2e75ed02b685
SHA256

20521f1c6d83e55f018ea8bed6855fd51fe2eb52b1772d10dee0bd90ff6dfca0
SHA512

911e78c65c177baf86a1bf1b20cfee175bd3ffc3e84747c6b368e4aa3443f88711623d542b281498bca56bd0b414a8a8652afcc97530fbf658c7774e4fe4d995
SSDEEP

6144:dG5jmxn4Hv+3gPEk9j3DgZ5gdZbwUcv351Gr6atA+Rl4frhq8W7cNSiLCDaN:dGxmF96EhZaZbwUMGrPtXRl4VhW7D4

Score

8^/10

evasion infostealer

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	arhivkontenta.html.app

Reads the content of SMS inbox messages. 1 IoCs

infostealer

description	ioc	Process
URI accessed for read	content://sms/inbox	arhivkontenta.html.app

Reads information about phone network operator.

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	arhivkontenta.html.app

arhivkontenta.html.app
1⤵
- Requests cell location
- Reads the content of SMS inbox messages.
- Removes a system notification.
PID:4022

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/arhivkontenta.html.app/app_webview/Cookies

Filesize
64KB

MD5
cb7543c4df600f2af58097cce0e334ba

SHA1
83cc92f38c27fdb4fa519b1ce2f37912f24af1f0

SHA256
64c022ae708f94ffde986e105d88f708884de325720bfb9925c4160a6d417233

SHA512
ad51cad0472327bd68aa2d791341cfafed58971752352537bb603ed18b15a3f9185e9150983a28ecd09606e8dcaef6d1c9d93213dd246ef7720f39842eb3d980

Download Submit
/data/user/0/arhivkontenta.html.app/app_webview/Cookies-journal

Filesize
1KB

MD5
b0b58c77cde9c5d540b0a656bd365a5f

SHA1
56359d5b7f745223ceeabe06aac7bfad9a9a50b1

SHA256
2db69e9dae3e1b5ffcc675dae8dc36e06bc0a5e9108fe741416ad236a57a7268

SHA512
6fcf1b7343601aa5e71a08aeeb0adc3d89214e738af47b57c2a6deb670fbf6c436967ed43a99bbe709395f3b8d4db87c7feec9fac50d0072cba2a2935d242716

Download Submit
/data/user/0/arhivkontenta.html.app/app_webview/GPUCache/index

Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/arhivkontenta.html.app/app_webview/GPUCache/index-dir/temp-index

Filesize
48B

MD5
2e61435a175969d5ced7c2a832d09e6a

SHA1
ae2b46f72a9ff8943f73f89678014a819809927d

SHA256
1f9924d6253096e69b92e8f3f5e9cd4dba4911220f9a66c931b6a08a31cf0bb6

SHA512
eb53b506ef9a55af65ae4702fc16275d8fce25df279822ba9b37a04f4155365f5b8eb8168cf07904f81c2aba26b9885d4b7b6f7b24124de7d4eb26afa67133b4

Download Submit
/data/user/0/arhivkontenta.html.app/app_webview/Web Data

Filesize
104KB

MD5
dc79f9ce5f3ab5270b33e61119dfc959

SHA1
1844bf222a5144b513dcf2fb50a18c011701c647

SHA256
47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

SHA512
18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

Download Submit
/data/user/0/arhivkontenta.html.app/app_webview/Web Data-journal

Filesize
1KB

MD5
277ead5e54ef7ef2d64a75a7ae762387

SHA1
7e773fcdb92f9c0977d3b13f7dc1373e5279cdc7

SHA256
832149193417a218667d7bda81968cc49e3f63da66fc714f2938d0c4c3537991

SHA512
68789e5d0ee61cfc4844c8f30f962cbd1105621d9cb2bc459071ee3cdf17b317266ab07c7effcf1b4e690be73e9c63595f8c99b71af2856c06aa2893302b5a6f

Download Submit
/data/user/0/arhivkontenta.html.app/app_webview/metrics_guid

Filesize
36B

MD5
bbaa13a596d402ec1e0f2d455355096f

SHA1
440095b492d3756a7de76da5fabd057a520e1f8a

SHA256
247307372495236b5e2193317c4c1f6ac392e171b0636e5f0f8d8fd4c63e381f

SHA512
1fee01aa8ee7f477ff78aecd1546d12eb0426cff996059760b865cfd3b46a5956f17694322481b88305c0cb46692befefaa51370ca2135d2aa5beeb24762beff

Download Submit
/data/user/0/arhivkontenta.html.app/cache/org.chromium.android_webview/af01f0573c01f32a_0

Filesize
336B

MD5
87a51b665dc09a0ffec2f750dc5b42a9

SHA1
3817f073799a8685ebcbb9e9d1be169073c052ac

SHA256
6ff842910cb0d5783a5d51dc6edf53a2956bbe7125444eb990794aad9c85672c

SHA512
3661b1ffc301a0afe0f40f21cd0f3663903f315f895d4626f38099d1b4f38b2716e0e4cdb1cc045dd9e7e138ea250510cfebb906df47bc01fc34117c2b3f3341

Download Submit
/data/user/0/arhivkontenta.html.app/cache/org.chromium.android_webview/index

Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/arhivkontenta.html.app/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
48B

MD5
6adcb5227f66b2f877163b21e1cdede4

SHA1
05c1a7c0e1e6cbc3ca94fb87cee5cfadbcf230dc

SHA256
cdeace1da76c1462a34a6f85938e29cf3f8cd2348dc319d0657fcf07e3231a50

SHA512
feaa53c12ec4d3c44c97f44815218ef6f2b923d5a5b541d6cc636e213accee5c9c9ed590003ca02b99b4f547065d442042fb3e52ea40bb77e82ba300560efc71

Download Submit
/data/user/0/arhivkontenta.html.app/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
48B

MD5
fb2bb92868078e9107674f5974617c8e

SHA1
3ec03ab73dbdf3d93c9208564ebc89a998035adb

SHA256
063fade5b6eb5e397c256932561c9a666ca8e4b94ad8d5d00412f417a4125e23

SHA512
a3be26628da8e6deee2ff5fe13bf500590106cb8d411da4f1cd0cd24e841cf4aab57596433076e674998dd60dcc5f94693103053615ca13945dc28a2c64c5649

Download Submit
/data/user/0/arhivkontenta.html.app/files/settings

Filesize
372B

MD5
286eea88b7993d0b36945283a895f959

SHA1
8799a0245c5fc955aba096727a8f13bbb4111d78

SHA256
4f43e186fe84b6880c81d7115fab0729ddfcf201caed3901a84d6019846f15f7

SHA512
7cf84ebe1d0c96e0093654dd3b1abd09707ee19da762b720d00155a8eea33cde96a23c038a4cd0c0c01ad5d833f71036bf1a1f9a0b73b97051b5b0a280f7bfc9

Download Submit
/data/user/0/arhivkontenta.html.app/shared_prefs/WebSettings.xml

Filesize
116B

MD5
66c310e03c95f5f285b60d1c0f4671e9

SHA1
b6bb4468e132c6544e7545c99b2dac484ae3d50e

SHA256
0a441b25a6b6a97bdb31622da548ba036aa2e5c645c883585dad335bac97481c

SHA512
e1882a75ae4fee61fcda8d1b877801e36f88f21024c290183e62901a926d3b9079caf444a179d07034da4ef44b4faad9fb1affa2841685f644619eaa757c6d90

Download Submit
/data/user/0/arhivkontenta.html.app/shared_prefs/WebSettings.xml

Filesize
176B

MD5
51641c280e6b9a6723d4722b0f2f7975

SHA1
fb095de6711b1e8d88cc7edfcbe0aed81f7fee92

SHA256
f1358456f2d6d1889901f6c4e1b71b6849376753ef228163e37902ea6cbd63f3

SHA512
3611d19694a78bb51414033b7e3389af100cdc8a0eb84c4adc91f7c666db6f2f40eccd62f717fae07a547e868861425a03d8e126647a199fc557533cb07c5a3b

Download Submit
/data/user/0/arhivkontenta.html.app/shared_prefs/WebSettings.xml

Filesize
224B

MD5
1f9e4364828619d43cb24fd54df8c353

SHA1
19a081584c3e97d1529a6a33341fe4809ad4e8f3

SHA256
36699f04bd23d04205173cf1fd4da03ad8c6586655716def4bfaec6c121bf8e6

SHA512
efeeada98cd06d2862d8f851a66a87cfb9977c2b03939314510dd6eca089c49b424dd844d32788d477781c73ddc047a1be91198fe0780a8de46b1c990b50d0bf

Download Submit
/data/user/0/arhivkontenta.html.app/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads