39974f439f33c5079928687beff3c7219e35ffe126fafbb43abc19ca2e38b2da

Analysis

max time kernel
2744251s
max time network
16s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
10-06-2023 04:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

PL Pro 3 3.1.0.apk
Size

5.9MB
MD5

c07f5f4f8802f5f947d873ca9edd89e4
SHA1

084547bacda56e28f93feda63b96b3bee36291f3
SHA256

39974f439f33c5079928687beff3c7219e35ffe126fafbb43abc19ca2e38b2da
SHA512

7da870eb477791c33866e26af286384d1b8ca41126bba3cf460fd999723880be8da5e486b8689c69091658b70ffe8f48f662d3ff31bdfc87657dd1239d854903
SSDEEP

98304:cO/i6KXp3i0oBeOczoUutlBMm2vz9Fhv0d6INRyHjpJ2Lm1yy2t2gfrPEac6:cO/ifpSnBQoUs3S9FujyHlJSmXaR

Score

7^/10

Malware Config

Signatures

Checks known Qemu pipes. 2 IoCs
Checks for known pipes used by the Android emulator to communicate with the host.

Processes:

live.plpro

ioc process

/dev/socket/qemud live.plpro
/dev/qemu_pipe live.plpro

ioc	process
/dev/socket/qemud	live.plpro
/dev/qemu_pipe	live.plpro

live.plpro
1⤵
- Checks known Qemu pipes.
PID:4128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/live.plpro/databases/StartApp-d6864f2502af7851
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/live.plpro/databases/StartApp-d6864f2502af7851-journal
Filesize
524B

MD5
403ef68afdcb49a1ea5621d0f6fa967f

SHA1
c8dbd17fe6458e4e6d53deb592d36c46510a7ab8

SHA256
9a3fe2db3c36f6ea2a19fc067305f29c36509914301c7cfa850b5fa3c43d4f30

SHA512
2b004adc82be373d48d98ad5750b42a8c010c504795d997a7e7b44a53026712684fe052172ac9ac50df3479fa4f957127782453b2b16555cf29e3b0c1a700167

Download Submit
/data/user/0/live.plpro/databases/StartApp-d6864f2502af7851-shm
Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/live.plpro/databases/StartApp-d6864f2502af7851-wal
Filesize
32KB

MD5
4dc3a1c29cd27ec15e00e5d3f4866350

SHA1
a59fc5e8233eb776bffd72d0a7a73fc4510280dd

SHA256
962451a7ff7af53d77dacb3dfba2540ca2080a7308a816a5c92acf9cdeed3b2a

SHA512
157009d882fadac6e3ef09811269a65caac58545377f044d887b2cf9e1e8f4701ae90c3502165843f9f98d831323c68bf8ef58ddafc737ec155150515ba260ab

Download Submit
/data/user/0/live.plpro/databases/com.google.android.datatransport.events
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/live.plpro/databases/com.google.android.datatransport.events-journal
Filesize
524B

MD5
eb7a2e0d9652ff986b1580ebf2310496

SHA1
90a2b55ceaef2396e2a425b2e0462f4f290dd6b6

SHA256
6f7e688ecf60f6646290abbcedc55b357fbec6e4f870d67e202554eff521e9ce

SHA512
e739980165214c25fad9b0810952f637df9e5862e9cbe0785a3cbe70c703123f5967ce0b6b7fe6d3c3e8566ad49a9d444294e274cbbda8b1a9250466243dbf64

Download Submit
/data/user/0/live.plpro/databases/com.google.android.datatransport.events-shm
Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/live.plpro/databases/com.google.android.datatransport.events-wal
Filesize
52KB

MD5
9745c154898c6728bfaeb9cd583739f2

SHA1
610df192424a494e9a6dab46939c4f8061e8729b

SHA256
9245ab74feb1f51db86a3733f10bb7a0fce732a7d0eb02ff501d45226d9b29e5

SHA512
c47cbeb4bf07bcd7fe1244ecb3ec4d9fbc348d52a5e3dfaf8b76559f4535031609152ec88edfad900fe50d141632f7cfd7b18e97dc530f15b6b27853d6b04ba6

Download Submit
/data/user/0/live.plpro/databases/google_app_measurement_local.db
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/live.plpro/databases/google_app_measurement_local.db-journal
Filesize
524B

MD5
c1713cf6cb4b9bfa1a7ef380396447c9

SHA1
5f63ee3e942c13a696c9e331aaaf352e5df9208c

SHA256
1c76d74ce005ae5909f51db0f7ca752506ed5f0a1b6ccd69e848177003445732

SHA512
53ef6921a12191a6cf1e7c400c99aa7d0c01384b7669e87bc6bfe270bc3b26c25211dbd954e4b1826d20dfdcead600c31c82185a34f7a280816a50a6fa90bc70

Download Submit
/data/user/0/live.plpro/databases/google_app_measurement_local.db-shm
Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/live.plpro/databases/google_app_measurement_local.db-wal
Filesize
32KB

MD5
248d191cfd842b23de5007fb4eac59cd

SHA1
87862546eb7313d97c4887dccb8d7999bd7e86fd

SHA256
b07f3dc0961dc155928e0c8e45035dfb604d16838914a2cc3ed5e6da76dfffbd

SHA512
3ab6f77ea62c8de74fac0f30fee686a1e663a9b931259d6cf8179c4662664592cec6f1e5339b00e039ea9025b7366df70a6039dcdf47268cc911253dda50a1a9

Download Submit
/data/user/0/live.plpro/files/.com.google.firebase.crashlytics/initialization_marker
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/live.plpro/files/.com.google.firebase.crashlytics/report-persistence/sessions/6483FC6503AA000110202F43A4D739E9/report
Filesize
731B

MD5
ed5b2e0cd8da897ed202e8b5fe994c2c

SHA1
15090b61222bff0d607b26bf510425491a2f3ea8

SHA256
0d3120882f618b31e3c2db8d9089194bf8f2234426cacb449c22308e06be0490

SHA512
74fdeba5beacae3f77c1e4cb3bb1c40a18c91eb0f0b10495840b2fa0884c17195d58a5902b170ee47e36418dc1c64ec571063b1aca43aa27d60e9974bbef88db

Download Submit
/data/user/0/live.plpro/files/.com.google.firebase.crashlytics/report-persistence/sessions/6483FC6503AA000110202F43A4D739E9/start-time
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/live.plpro/files/PersistedInstallation3753562934433606540tmp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/live.plpro/files/generatefid.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/live.plpro/files/shared_prefs_sdk_ad_prefs
Filesize
5B

MD5
9dcf2a6f12095ecff342e9fa0c5ca72f

SHA1
c815f34691be353caa9de93bbdb00a31f62a9ed3

SHA256
4e68143408826326220a32d6bff59e1cca3dd85f74b018aebd6723c5686c54e5

SHA512
7ba3449f5ec3363bbee33d47abe471286cf78034dd70379fa4d0de5fd59215e8c58287eddffed1b9c3c74e157f6a9ad69b0c551001a62d04790bba49df48231c

Download Submit
/data/user/0/live.plpro/no_backup/com.google.android.gms.appid-no-backup
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/live.plpro/shared_prefs/FirebaseAppHeartBeat.xml
Filesize
188B

MD5
7443de6e1b9836ad1e1d45913f537c21

SHA1
102824702c8d18b10ea824dd3c777f392570a028

SHA256
783ac031d7182a71009aa38f88b781da7b6ae529138bef1ac2abcac8a733879d

SHA512
3e7c85c3aef56cac874ffece3c16ab1b2d0b88a23568817e2315a405f0831ee9136aac9fa9bd8a855166c3d5a8dec000ea2f3b2651ab8cc08c82ec55bfc50958

Download Submit
/data/user/0/live.plpro/shared_prefs/FirebaseAppHeartBeat.xml
Filesize
134B

MD5
d81e876a105018c73754d6d3766819c4

SHA1
1396aa395cabd5270b0d94953a4c0b64a36a1ba7

SHA256
c2e2f6b3fab127bb499e7145be3fc0402e05c4bdb9d1e2f66f1d3af47fc64124

SHA512
a9085d29ce7b437a464df7c3ca47a0e3be864fd568362df26de77f10105b0e07dfd5680f3a601f674b4d8f208c98b40c96293aa29fabab0d4cd7336d2497d290

Download Submit
/data/user/0/live.plpro/shared_prefs/StartApp-790ba54ab8e69f2f.xml
Filesize
125B

MD5
3d98482bc60668df09b2e0c49883e417

SHA1
71242b3d8d17f9289d93c83f35760113608d25af

SHA256
2bd4962462e21ce391b0b232c3d3f6d5945e26cd193492faec135569e5137d7c

SHA512
8a79014dafa2cc40e28502a1055e161f17526a4333e067ef67986c4033efe5599020b781090000fb5481e133ec9ed4b7493f945c91c38a36df864160237f2d61

Download Submit
/data/user/0/live.plpro/shared_prefs/com.google.android.gms.measurement.prefs.xml
Filesize
122B

MD5
250b4caeba60ddf53228405750ba66ca

SHA1
422ab714feb34e9f3b4f1cbe669887bcd581ddb1

SHA256
2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

SHA512
373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

Download Submit
/data/user/0/live.plpro/shared_prefs/com.google.android.gms.measurement.prefs.xml
Filesize
332B

MD5
8f42248a8201a64887b1ef1a53f5efff

SHA1
5c3eadef82a63f573583dc6a722e9148874d41c8

SHA256
4b2053a60f2bd7c2a677958c4abc621030eeab7a4d4c210ca284bc91b836b2ae

SHA512
eeaabeda9cbbad9ccaf5c121f94a1e293b7b6493ba5ce0f04093beb2f7445913ba04bfbd6f76ace2a7833357b92f9916ff38fbaf0610bba89adf4b22c1bbc0a8

Download Submit
/data/user/0/live.plpro/shared_prefs/com.google.firebase.crashlytics.xml
Filesize
235B

MD5
8ad9cfaa483d630028ed34d2d6c20d40

SHA1
5b76c70ed51a979b93cde06867c93ccfbfbcef72

SHA256
7aed61f67f9ef8c1aef6af9e1ea4fab39a26534ec252d5487e2e8933742a1e19

SHA512
6ffc028a54195997ac735b5a49dfae8cf815480ef810055e1a8b1f2d7a24d41adcc04719f1d97dd5af3571b9692b4353ed2c3370a9735e1b1ecc12939b1678a6

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads