Resubmissions

27-08-2024 09:34

240827-lj6kmawbml 10

09-06-2023 09:41

230609-lnrl9sbg83 10

Analysis

  • max time kernel
    2676643s
  • max time network
    144s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    09-06-2023 09:41

General

  • Target

    eblagh.apk

  • Size

    2.1MB

  • MD5

    6cfeee3ec52dc569ca7f5ccaba4110c9

  • SHA1

    96f2cbfaf41c79665fde6daa02ffb3d08a067643

  • SHA256

    4ca30f92aadf9409173eef9491281e7e389a9d9f913edf018d554339b7c12594

  • SHA512

    4592027af2e5dfc6be1810cf8ddaf02c6625b21b5d413e140fe3f32cf869299f8cef04c83e6e68a05d096a91fd6ebe9c90402b86e9786ef5215fd9be8abb1fd6

  • SSDEEP

    49152:r/0MokTjvWLBos1T7/1W4yYRHd8vt/OVxfMgSSp+t:z0xGTW1vRyYR98cfOSgt

Score
7/10

Malware Config

Signatures

  • Acquires the wake lock. 1 IoCs
  • Reads information about phone network operator.

Processes

  • com.rez.ir
    1⤵
    • Acquires the wake lock.
    PID:4503
    • ping -c 2 -W 10 -v google.com
      2⤵
        PID:4560

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.rez.ir/cache/~test.test

      Filesize

      4B

      MD5

      098f6bcd4621d373cade4e832627b4f6

      SHA1

      a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

      SHA256

      9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

      SHA512

      ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

    • /data/user/0/com.rez.ir/databases/google_app_measurement_local.db

      Filesize

      88KB

      MD5

      8dfcfdcef5a9793fb83bda404ec3f42b

      SHA1

      dd02caf5757e9fdaf184ab299c45e4c92ab3ae4b

      SHA256

      a59674cc863d7e977b030c7047072dc4c6d5ada1257917574fe184d886042cd2

      SHA512

      e04d1892c052fc3766881d3f21e26961714e575766cb316bcada34cce49cf6e17eb26c3fbdee0038ed2c75da0a9cab99e0e3e78374be20ce2790cc0d0d9cd807

    • /data/user/0/com.rez.ir/databases/google_app_measurement_local.db-journal

      Filesize

      1KB

      MD5

      fc58b31d64db10d56e73ee352e88217b

      SHA1

      01b867880839b09c576d2f34ef44bf08ae04d865

      SHA256

      0e16c7e910245fbc4a846169b78c37aa5b6ff27f23b955b177e849f4029f2da7

      SHA512

      d753c2051eaa39ff5e86e67cb55525b385964bc3bd58aed6324834cc30ff1e7927cf09c1ffd0ce364d5d615df60b71f0abee46a8dce856ad7b4a999e2cf23ca1

    • /data/user/0/com.rez.ir/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      239B

      MD5

      594e00ebf808dd584a44438383b3e87f

      SHA1

      cf953a1dd3951d3f521e127e3c7122c51e279a11

      SHA256

      fcd1c44d3b538c867d4e995d9cb1cc02a7d1fe19277c84170d3016ed242d9c7d

      SHA512

      594c10679d230e8257de40afd7e224073c70c8f142766841ba80dd54d4905323601ae24c93183b87ee8c26eeb6f163800e8c10ae93412f9420a7837aa5dc77d4

    • /data/user/0/com.rez.ir/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      134B

      MD5

      e7258b4d72d67992043aed2be07af8c9

      SHA1

      9d0837d52b8b7a309eb56128888f5d5dd9ffcafc

      SHA256

      dffc737ae24cf231a603cb72c4af9f5fa2d1985b73cb43c7735360b226fd50b0

      SHA512

      18ce9917b572bd27093b0fa14f3e00527d0a981bff322b6c050cc700ebcaca8080289db83bae72e06dae01f761f266f325fd854ee31e1af317d27a8f846aa6f5

    • /data/user/0/com.rez.ir/shared_prefs/FirebaseAppHeartBeat.xml

      Filesize

      188B

      MD5

      4ea2f8a9ff7e3f972ed8b9dc594992ae

      SHA1

      5357b0f0fca49b3fc5241537db68644c1128df18

      SHA256

      d05cf9090d34db88e178df8f819d76e750e7d51fb8b07532e6d2a12e9ed92663

      SHA512

      c67caf8f3b1bd0709d5847f8a230c5a7fa06c7b393d7196166b9db0fc68109bf641493c0aa407ca186a3c3a584dacb5945a0d8d3ddf3528c3602d5ca54f6c6da

    • /data/user/0/com.rez.ir/shared_prefs/com.google.android.gms.appid.xml

      Filesize

      192B

      MD5

      52dfc2c4214ef2bcf986a3fcfe6a2f96

      SHA1

      1da4a5402a7c8a4d24b70306bea859d12c7dbcc6

      SHA256

      0d64a734c10e3c392c155ab3030b716a7d73ec47025df2d6845864d10f546413

      SHA512

      f614ae0869db3c3ef73b6ff2d24997a526a6490f03b5d3fc7a6ed8a65b3ccad188fe4957aad36383b7f32e245ece4cd7967774a82a71dd287741e6cccfb4e889

    • /data/user/0/com.rez.ir/shared_prefs/com.google.android.gms.appid.xml

      Filesize

      250B

      MD5

      bdbdb90e1b70954060e1535e5ef1dae2

      SHA1

      371a77ac6ce6ffdcb774bef2e8db6cc05c63b2b2

      SHA256

      6cf372aab8c6cd5c2a5080b1f6d91892292b7e448c69ca256fbae392213267a7

      SHA512

      e1257f37cd974ab47ce26f98106032e7eaae44417d46f5e7c3737c0832c42bd262cfb0185886e6798763b2750625732c7686809cd1b735a7796418de855bccad

    • /data/user/0/com.rez.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      606B

      MD5

      e87735f5fe6a54d0b4fc766a47b9e558

      SHA1

      10925f3704d3ce124c8f8ab3f55eafde77a47031

      SHA256

      1c1026199c88d4a9e064b18b7b10722e309c55808c170c23611b337ce61a320d

      SHA512

      b1347ccebe270b9987d4b790e827f338849f93da569f4b7e4073d4e19354540e1bbf2fae5f6335b432e6313310480fcad38026278df7744893e8097cf9f352ec

    • /data/user/0/com.rez.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      607B

      MD5

      248aa4ff50f5e580f1761aef510ae327

      SHA1

      5c029429042eeddc164ff9cda63d88e5eec4b0e3

      SHA256

      f79c6431f5f84d232def889806a30c97341033fb5aa091455b4d9cea96fde2cb

      SHA512

      5f28538ed4f8bc6b35cdf7fb4be4388a744e45a734187bbd0477aed16373dcb06c86a44f49a9757261ccb7b196704c547598939d07d809c9b19ca48f96ccf1a8

    • /data/user/0/com.rez.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      719B

      MD5

      258ee0858f1be51e1e08eb524e378ed5

      SHA1

      5e1c169e8d5f9ddbfaf4287aa8c9fecd227ef60f

      SHA256

      3a669a38f752de10ae54924fd2c76f46849720340c18024e08abf19717a9a5e3

      SHA512

      288d563dd01a56300b350dd360dfa1bc75a6640b403b62331066a128487d7ea941459e99ff1954f4fa5d82b81c8fe5d7e0d42c7d5428ee9d921db93963218004

    • /data/user/0/com.rez.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      796B

      MD5

      093a90554d0c4aaab9899818aaa5bac8

      SHA1

      2c4d0288e5dece73798ac4f102370493002849f1

      SHA256

      9f0bf2a9b8ffb4c1d5d3014e543daa59395610b34ece557ed106b2ee462004a2

      SHA512

      07f23ea4f3da33e4094e7407f3558a3f7904f59ebeab8fbb72ff0ec51b01eb9e2dd733962f2bdae5b8af40257957edd3110652cd99d5331fdc7750d6126a37fc

    • /data/user/0/com.rez.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      122B

      MD5

      250b4caeba60ddf53228405750ba66ca

      SHA1

      422ab714feb34e9f3b4f1cbe669887bcd581ddb1

      SHA256

      2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

      SHA512

      373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

    • /data/user/0/com.rez.ir/shared_prefs/com.google.android.gms.measurement.prefs.xml

      Filesize

      395B

      MD5

      bf3514d34f04650679538b221fb513b1

      SHA1

      85b833be611ede52e20dd616bc0f40117b40f738

      SHA256

      d48794684e9bd63b9999d879e299b97c1ee2faad72b0dd502f1e722e912c8525

      SHA512

      89dac43111a08eea8998286e92cc2a3798081f5c1a0f881c9ea0f3bb9643f1104769d61626f98ff3754ff3be2dda802fcde8d8ba39bde3b2447711c51b3ab30e