Overview

overview

10

Static

static

7

21d50eb0f5...8a.apk

android-9-x86

10

21d50eb0f5...8a.apk

android-10-x64

10

21d50eb0f5...8a.apk

android-11-x64

7

Resubmissions

06-11-2023 10:57

231106-m2e13acc53 10

02-11-2023 09:23

231102-lcq7csaa6v 10

Analysis

  • max time kernel
    2756325s
  • max time network
    160s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231023-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231023-enlocale:en-usos:android-11-x64system
  • submitted
    06-11-2023 10:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    21d50eb0f59d497c65f46ac1ead62af331c957f0133daeca5f3662e4bae5238a.apk

  • Size

    4.4MB

  • MD5

    a4fb036a7460c9e15b3b779f9db3fe6a

  • SHA1

    a827e9a713b8f46d2d5adcb18e181b8572a7caca

  • SHA256

    21d50eb0f59d497c65f46ac1ead62af331c957f0133daeca5f3662e4bae5238a

  • SHA512

    bd32354a02a2089511c7b884754185b0ed5ecb894aa2a02a08b93424592bfb36e61c22ddd6d80a413ad5f51e7a17852eefe2cc3a8d4184ef859a8ebefefb2cea

  • SSDEEP

    98304:c6awMfNJzamCitccFqX6Zs+YxcVEYy72sDqa4i/JZw0LCrp/H06/:wfN91CiSwqX6s+nER/D2KJZx6/

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.

Processes

  • com.enber.gareapp.translator
    1⤵
    • Loads dropped Dex/Jar
    PID:4395

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.enber.gareapp.translator/databases/com.google.android.datatransport.events
    Filesize

    56KB

    MD5

    954090cb96a7f2655096bd6c20c4a249

    SHA1

    21a27153a58ffffd3a48df9db4261b69dae596a5

    SHA256

    714c3d4037836926a792df27461bb0667f1b3a431bae91a428d964561a4ca937

    SHA512

    b0da276cfb546c21eec4c1827868de6706ec5a3e632941c9cc89f979e3c4c707a38260aea4918d17f2de83163d4d74a1e27b58650e5dc1d1fb9b62d3f67fd0d8

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/com.google.android.datatransport.events-journal
    Filesize

    512B

    MD5

    c8ef8d1a6ee0e17fb9fc1859a402e2f0

    SHA1

    dae35e9c471ba47d7527de32f086af63c107e015

    SHA256

    51ab1a419c3bb3b75801a84f0359b21b548dbf7c684e0a71569836189fe32740

    SHA512

    dad7d60c5dd39a3193595ee2f9875838ba0faa707d3b298b333c3947996ece0e7285ea77033f83ecf906766ab0c04c1a56ae27e119108abcd98729c27ae1d802

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/com.google.android.datatransport.events-journal
    Filesize

    12KB

    MD5

    81543bb68ae959b375a6413f4e3ba0d6

    SHA1

    b6ee48c94bf57fe109246c22291f3481e210c337

    SHA256

    c326a1da6a1fab83c32011e207981d426610c95badd5c785b4b9748da0ad5af5

    SHA512

    f4e24e8567780a8e18115944f25af6d3ac35d02336b7899e25bc75693240ede6ae65bf9d51cdef6336fe510c565f471696cd6d97dc033049af18e9aead2020ab

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/com.google.android.datatransport.events-journal
    Filesize

    24KB

    MD5

    a440c568336bda5e0467e76c4fbcb64d

    SHA1

    dc508690aeb99d7dc17b530ecb185d17607d0b8d

    SHA256

    a652b664a0f018b217683bc4747b14b31699aa3d2cc0d30af52ecc2e0a5efb81

    SHA512

    8b5bba3878063d62dca7a8049475613b0686f76c81f7acc7d96c273b0ef0bc5ccddc626434cd18ecaeb5bd8e0129094bc7783bae64b78e0d4dea926b4e07e4cf

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    0258a5fc330d73665c7a4a4d3f57c9b8

    SHA1

    1b88df6656e2bb7ad9ea357fc358754b72b41f9a

    SHA256

    ed0158a9246c06e3e5d2fad33dcfa9d82017fe011d8e7d258ad596d8304daaf5

    SHA512

    2b086b147a49754c0fd3bda4aa31ee5af7acc0769b813688cc6a8f7eb6d437ae1fb4edc94a63ff5eee966d8527042b97cb444528504fb199cc8a03728057861c

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    3302059a20132dafaff440543371e730

    SHA1

    3b3e5ee33d1cec8a3574974303aa36c019c6f34e

    SHA256

    ab5951239e129693fe1a4caf3b2065439ea86b09107cf4ee81b1b4f5289b0f0e

    SHA512

    ad7c201d4eb7c0e3d7b2a902a7264fd6c027dc6cfe4075088bc9bf2e19042b4cb042ec892d9b4623e9bd309332f4f763b80927a0d417a03ed8b19d02d9ab2a3d

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/com.google.android.datatransport.events-journal
    Filesize

    24KB

    MD5

    4bbe57e2732a0a0325af810d53c335d9

    SHA1

    0a9fba6cd476eb4cfa6ac2ee7a5fb0cf5c1b618e

    SHA256

    f24346720e24f440b39609f53c3062a39a3c65a52b3d4873e0d01c756aa71acf

    SHA512

    d56ef5e41244d28d7bad133f3920712c5c8eb8a9af6d55e96fe91408e46f85612954ee3549b38278262b740717ce190fd10f7e58015d34b8e889c67197be9243

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    84304e9ac7afc26d999509a676f6f5a7

    SHA1

    7f6da1e70f68ec1c9ad0e5d7e91e6c240276d300

    SHA256

    0bc9c0c7f3dda28fef3b5bf4cf50a7ae1bf08ae02473faf729724c6bc73f863a

    SHA512

    e55af5b5cc32a41fcb02e92ddc827c381751769621e07d166cbb4203c115d68b141e54a284931583e70725b8bb59a17295152e23aabf289f879f1dddf9d71056

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    e325aa1e000d6ecacef71296c20c2076

    SHA1

    fe053e5118a60629dd69fef045af7dec148838cd

    SHA256

    7232d00f225507e19b2e16e142478bf83e33f45cbe77da19ad5b71bd061d3ae1

    SHA512

    ed94856fa2a5f0e3b21306bc857b4a4477198b30e56b488e4075c5cb57f77dd7cca5e29ed1bba2bc124fae52f52ac569da24c0428f703cad499dace3d196cb9e

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    72fac046e86a3c0e4b7593743188ca20

    SHA1

    7237439fc578ac9c6f0fef17debfc4481b4fca8a

    SHA256

    f2f53361aad903e370194145c5f2f06c6d09902096b38a5feda80cce108c02a6

    SHA512

    c597c52958366041134c5e1cddb3b228f147bc814abe6a33c5fc6cd154e60f41aeb46b292c0927ee00e9c64c8a4fa417a16121f0a6d4edfbc1ae1eca49f5d692

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    1e7cf904e7883a37777613a6b649787b

    SHA1

    322fbd4f527645fcac8a094b13f18f7117fbedad

    SHA256

    b399616652417d3ff0d5782442a585b5dfdf2e027a1a0608c12090e0f21da172

    SHA512

    542c8ea2531dbdf6bad373cfb2bf3a83b22f81284ff080847058c5f7694451c003cadd034a7ba4dfb1e731cca315bd3c591a009fe145991623ba038166880fe4

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    818548be1885386cc995f564f36a8e8e

    SHA1

    008b0c602ed55b1122dadfb3a20db517d55c10b3

    SHA256

    b4765a86f69c122307448d0c6e81cebd52ffbc59b0d19da42971e2857f773e6d

    SHA512

    47840561a1eded73600b656576a7a9195bd1beddb79b08090b9e6bd9ab610de6cfb0a334310bfefe0b33ef157d420aaa17c6315fa2e689398da3328c4460a02f

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db-journal
    Filesize

    512B

    MD5

    cad0c806188e618219622277d6116ba9

    SHA1

    b153078c4561345a75f1b1f4db6a8bbc4003eb72

    SHA256

    3168a1cce8a7fe335fbd25e14ac36031d82c6cdd09360da6b722f6e7fdcdbc73

    SHA512

    66557e5d7f6b788a19bf1363d01f557cd95c3f8db0f9bfd81a6eb0bb00224b7807d41e43ace51c0ca61cb287a2bc848bd0cd80a005e91f20d3743a12b552e196

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    495f7fc4a33d1b663c7b2c9519111522

    SHA1

    22b546282bfc93c9626da9502d90d333ca1036f8

    SHA256

    4790acb77f97ac05d890be0f78df4d267ca0a4c2db81815aa15dddf1714ba621

    SHA512

    073df1db61167d8fe55f429a485220d1fce43c622632f5081f0dfe6bfced7e904d2f6f5052d92f7b6316c5f3b15a34c7c62c76e87c77d87b56edb8337e90063b

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db-journal
    Filesize

    4KB

    MD5

    f91f0abafe86fb973ea1c3fa5fb2793e

    SHA1

    f51db09599da4d4f159944ccd8d72fccf7e4e152

    SHA256

    9f29eee24d09d7495a0a36648388c9a5523e69c0af76ece347c40e322c83e8f7

    SHA512

    54a87caaf38c1ed7fe8960d3c30075790b38ecf7fd3b2eea23559efae75f656d0270d895b7da7f6f180ae4cfac2ee6910879f941fbce85e1ed32bb40e595eff8

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    edf3bec7dbe4ebcd2f777fe488b1a20f

    SHA1

    90edda9cd8626a4eb1793136d132a693e762337b

    SHA256

    68f389682ff7d3b230ca9d5384c06d68aebe9295b6b808a1f675fbd7be0cf15c

    SHA512

    5a667a73e5d07ed00f04c5f4b5e4b07a8837f2a14f32d2340f00ff63ddba1d75b5a82b7ab61be4c753ab05aa484c4240095675a4ef4f45196ddcba615abb202c

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    59beccd6f372342144368b10381fe7bd

    SHA1

    bc23894a580c6449245e54b8e321d10d63e15f70

    SHA256

    609469b48d075d3f5547386d74a72f5fc7f208ee48377fa3cca208f4361f4479

    SHA512

    d68c31b230ac8c534c5e2b0c23c09212b4818e914fddfe3826492d574ab61b458b9f1ce5a64383740d38425d77380050585a548ddd08d8ed874aea0480ec96ae

    Download Submit

  • /data/data/com.enber.gareapp.translator/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    c7ffc52a538d60e85bc8ac07c8299632

    SHA1

    d8256e3a612b28311dae3b3844d265687c14bf3e

    SHA256

    d6d6d606c153ba91fc11c51bb2bd21822f73745c9f7227de1c8d69525d75cc59

    SHA512

    b98be3edacb676a30cf590f8a8953b54b0e0cff3e9425fc9c8b4754e6a3837979b15e537f7370422e34362856a88576a674bcaddff7ce8722d1ab97ecc847a69

    Download Submit

  • /data/data/com.enber.gareapp.translator/files/PersistedInstallation2506584227961090818tmp
    Filesize

    571B

    MD5

    202181e6cfe346b5f01c08d83f2f5cb4

    SHA1

    2271886527cb6439de96dc0fae37945d393b3f0b

    SHA256

    0939b7a3b536d6d2ce51e3ab143d2ab2ce3219acfd04cc390d58d072749d2d7e

    SHA512

    3efd4d01485d53053c3ffda3d5bfe8a5855aa543676e6c8fff976ebc3e9c2be314840d8b5f49fa5d9bd55c70aa85f6c7de8af581049f4b3831373f0ef68d93b2

    Download Submit

  • /data/data/com.enber.gareapp.translator/files/PersistedInstallation2782985556691019200tmp
    Filesize

    90B

    MD5

    e26ba2977e61a5eff0fbe416add7f6f0

    SHA1

    f20b2d1864dd02c0f547f466a013c808f9cfc4fd

    SHA256

    47eb7c94f4def5055e4c51866d3d47d033acc5ef360c6565e34332f5d73e2b3f

    SHA512

    860493a7308d7bf2a621027ee3d9574447e2d83633bfdf6d037e1b2a60dfa636e09e885b01437802a1c32ec3a610ad1f80283ddbd14412f3b08c3335587b675e

    Download Submit

  • /data/data/com.enber.gareapp.translator/files/frc_1:1096647638011:android:3acbb0aa78b8f71520a95e_firebase_activate.json
    Filesize

    196B

    MD5

    cdbf8f3c18049fd7c380fa89c806e74d

    SHA1

    c10ee255d555ef161a2557eb44bd8d8bab6faba6

    SHA256

    2f093702529581f603168ebd15102f7ec60e9d956faa9f5061b8f725b1bd8856

    SHA512

    de35ffce34b0bf305a9a0702f0782a58177d5bbd3e7ec41a761f2e8a445cfa7680cc1b090c4498e2ef51beadbc943dca44ea6fb8bab218b4e0012cf281160c36

    Download Submit

  • /data/data/com.enber.gareapp.translator/files/frc_1:1096647638011:android:3acbb0aa78b8f71520a95e_firebase_fetch.json
    Filesize

    196B

    MD5

    cdbf8f3c18049fd7c380fa89c806e74d

    SHA1

    c10ee255d555ef161a2557eb44bd8d8bab6faba6

    SHA256

    2f093702529581f603168ebd15102f7ec60e9d956faa9f5061b8f725b1bd8856

    SHA512

    de35ffce34b0bf305a9a0702f0782a58177d5bbd3e7ec41a761f2e8a445cfa7680cc1b090c4498e2ef51beadbc943dca44ea6fb8bab218b4e0012cf281160c36

    Download Submit

  • /system_ext/framework/androidx.window.sidecar.jar
    Filesize

    12KB

    MD5

    bdf3529e80318eb14e53a5bf3720c10d

    SHA1

    25c9ace4b1af6e80ebb2572345972c56505969ba

    SHA256

    bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

    SHA512

    48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

    Download Submit

  • /system_ext/framework/androidx.window.sidecar.jar
    Filesize

    12KB

    MD5

    bdf3529e80318eb14e53a5bf3720c10d

    SHA1

    25c9ace4b1af6e80ebb2572345972c56505969ba

    SHA256

    bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

    SHA512

    48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

    Download Submit