Analysis
-
max time kernel
2836333s -
max time network
155s -
platform
android_x64 -
resource
android-x64-arm64-20220823-en -
resource tags
-
submitted
24-11-2022 09:53
General
-
Target
com.pagnotto28.sellsourcecode.alpha-5-apktada.com.apk
-
Size
13.6MB
-
MD5
425ca585e1689771f69c442036192d78
-
SHA1
3d7e48669307cc962f18de5639ae0697ed950d1e
-
SHA256
71c78101f7792fe879a082e323fed89c5e4a43132d01d3f79ed02afd8db45497
-
SHA512
4441be3ac3bf49229ddb771c4418719a60fdee11711265e41442a49f643e7a97c8b1731c786e80c811cd63124996c5787cb7588c06d81ae60a67cf46996925df
-
SSDEEP
393216:C9wxkH5macX7X52NWdXJq2TNhyWfwcVpMrfum77:C9wxkZqgY5Uvaq7
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps). 1 IoCs
-
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
Processes
-
com.pagnotto28.sellsourcecode.alpha1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).
- Uses Crypto APIs (Might try to encrypt user data).
-
com.pagnotto28.sellsourcecode.alpha:BackgroundService1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/com.pagnotto28.sellsourcecode.alpha/databases/dbytes.dbFilesize
96KB
MD56ec59a3ea4e98437763a28ddff1337cb
SHA143818a28b1142474de4b6ba8be2c47ae48b70a85
SHA2563de1fae8843f92b04339532a185223b712609480df0bc522a3b789917dd3960b
SHA51205c5d753170f9db8cb4b8ee01e53768051133be8d6cfa8d169cc854499c300869e2beb34de5d25e3b734f2efe2957084ada0ef0cc0cfff81fc24b3465ef625b8
-
/data/user/0/com.pagnotto28.sellsourcecode.alpha/databases/dbytes.db-journalFilesize
1KB
MD53d6e46c588f95aa4255825388195be8a
SHA1ab27af201f5840f357a40d0450519b2d702b9484
SHA25604b990bf51279f4630dedbd51e94005818dd07e5196396cc2ca55789e3c5ca15
SHA5120254f2904022aeee7d89c6b75b33fe26a6a6d194e4ef26a4a88b5f65567b2121bf9110edbcbf1ed4f1586061329f6fe5adaf5a7cde5c0417302b687746c0d8aa
-
/data/user/0/com.pagnotto28.sellsourcecode.alpha/no_backup/androidx.work.workdbFilesize
8KB
MD5e579a6b00eef1318f9166352228eba18
SHA176988896854f0139083e77862eea1a4846cf039f
SHA2564b34cf505050facf47aa7936e4e7667e1969105665c632b3eefe7ecddf9a6935
SHA512c47632e957d87727bf6504a82ca7a44d8da24d30cd997a0f449a96e4f97c656a1b4d9da3fcd827e2a48c59677688da0b872358ebd0f9369d898d1b8ec18d5699
-
/data/user/0/com.pagnotto28.sellsourcecode.alpha/no_backup/androidx.work.workdb-journalFilesize
1KB
MD5f3149d73e167f0de9ec3d83d2784ae2a
SHA140e1ac351e0328331e8887d3f90ca5f4572585a1
SHA256ecb5bae89dc826e63b23d4c8b48daa2b729309f089c52db39768fca71eac4799
SHA512161083cb33784176e707cac458a36ae09c8c85efb4f70514ec60aa7563b188cd9635035bcc6397f22abdb2b161c360712b9cf9e39294f74b9b4a333718cb7226
-
/data/user/0/com.pagnotto28.sellsourcecode.alpha/no_backup/androidx.work.workdb-shmFilesize
16B
MD54ae71336e44bf9bf79d2752e234818a5
SHA1e129f27c5103bc5cc44bcdf0a15e160d445066ff
SHA256374708fff7719dd5979ec875d56cd2286f6d3cf7ec317a3b25632aab28ec37bb
SHA5120b6cbac838dfe7f47ea1bd0df00ec282fdf45510c92161072ccfb84035390c4da743d9c3b954eaa1b0f86fc9861b23cc6c8667ab232c11c686432ebb5c8c3f27
-
/data/user/0/com.pagnotto28.sellsourcecode.alpha/no_backup/androidx.work.workdb-walFilesize
217KB
MD5a767af5e199633db45b44f7ff01d6ab4
SHA1e885cade23a2750291948571574e41d9fefb207c
SHA25683398440723c3bea753a794f9f5b5a2f488a19e5b2fc9c3c21e6c89829e12847
SHA51210f98429159c032c40ee654f78495995b627c5b48eb01705f65cea0a69458297af8968b96041cd8570a2766d1224e149c137f715b0db6c7b9ff4207accf1aee2
-
/data/user/0/com.pagnotto28.sellsourcecode.alpha/shared_prefs/com.pagnotto28.sellsourcecode.alpha_preferences.xmlFilesize
129B
MD5590e608d44b1aa8d441fe5fb0c0fee91
SHA1b212f011874e8d77359c8a36a3ac608b6a07f056
SHA25628871b0380307e9702486f9570d9e137c7989d5b752ea55fcc1caac3e0119510
SHA512c43dfbf2d91d3c5e7f650052ebbb5abf69881ff3c0423bb2996fe9161d48343126bea9c3e225c378b4d2a13a72eaa6305a303d038d364263111899a76f0d1310