396e7916dbfbe89206cd0f98167a15489e73ac56b7d6b29375adb5002928757a

Analysis

max time kernel
3892388s
max time network
70s
platform
android_x64
resource
android-x64-20231023.1-en
resource tags

androidarch:x64arch:x86image:android-x64-20231023.1-enlocale:en-usos:android-10-x64system
submitted
19/11/2023, 14:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Thermal Cam scanner 6.apk
Size

5.4MB
MD5

b78f64daf602c2dbe0bc890f2e2a47cf
SHA1

43c3fb4997ca6facf0e2f4a677c63b8e6b072b15
SHA256

396e7916dbfbe89206cd0f98167a15489e73ac56b7d6b29375adb5002928757a
SHA512

a67d78c0d9a1db012f2824b46c168a7589ec676c6c159e3db138d47d894203ed27e9e3d7337705a52d00ac5773290ea42d9cf79c34aac46ea005af1a99dc45c0
SSDEEP

98304:mfI8zpOQzfr9O43VrFhKGUjEyjN7p8HbSPmnzfz1KYE+NnmpXvYGIaD25W1xgtyG:mfI8Ar4lrTKDgyfSnz71K1OdaDwaViZH

Score

7^/10

evasion

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	org.jackajks.thermish

Reads information about phone network operator.

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	org.jackajks.thermish

org.jackajks.thermish
1⤵
- Acquires the wake lock.
- Removes a system notification.
PID:4999

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/org.jackajks.thermish/databases/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/org.jackajks.thermish/databases/androidx.work.workdb-journal

Filesize
512B

MD5
500d52f98cf508d5df19ace3889b268c

SHA1
5f9a778dbe6ce8bdfa1bdd858f2b79b03643f23c

SHA256
272c3035ce09a38139d59f7b4a548f52bbf72ba949f58c51ea23c6214d420844

SHA512
fe06d07ce895fb93d53fc7dd3c3d23db2675e2454d0df9c793ae3cbb36a950c59f768b29e148af8b0697649b98452b22e434039ceb2b37bd9c6c625585326f06

Download Submit
/data/data/org.jackajks.thermish/databases/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/org.jackajks.thermish/databases/androidx.work.workdb-wal

Filesize
88KB

MD5
d23abd0999cd499f686b36dd2bb4cb63

SHA1
14db5ee8be07c8783a6b930326848060f05406c2

SHA256
954c418ca3ba72c5ba6b7521259c4aa1c4a58a871a4f3b5266872e0fb87455a9

SHA512
25c3842b7e3a3f11959dd48d17e03a194c828dfcbc61646bf066206837bd6ac53ea061072ff0438d01f88e2599972d06ad3a0b2ea267912940945b4ad16844be

Download Submit
/data/data/org.jackajks.thermish/databases/androidx.work.workdb-wal

Filesize
16KB

MD5
8d802687b041f4efad75f56f6eb24ab7

SHA1
02949abf159d9af01b36aae1826f2745668543ad

SHA256
faf4ec713f8dede4f11cdb17db4f1bc1ce88b03025424f14d4e1fb646a9fbe08

SHA512
b8ac823103c17b6a0ddeaee41c39647aea532d60895554e574c7343c6ed799dbe7a7c5f15564a979001233ca51b86e7ac83251e84416ba16054ac560f256d257

Download Submit
/data/data/org.jackajks.thermish/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
bcf55af977d0139ee4fc80e0b4fd164b

SHA1
1d255e802b465f27c60db7c7b1cc0e9890ca8796

SHA256
0a1ce6b928d35f70365eb96e3ecc67cb5086a1c7f3fa8ca45c90f70a9579a0ca

SHA512
beddfa6917fe4b78c3df4d1c7acf6512f327071215c4a09febce466b29b4f4a5ab62795f054557168472107e643ff48a0e70e8a7c83bc50bda943cf16c76b013

Download Submit
/data/data/org.jackajks.thermish/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
6628e3846ae923e94c7ddfa7e0b6a49e

SHA1
b573752952ea7fb7555673e92eb1ce0115fe5d9e

SHA256
717ecf4930b4f78c4b3ea1d43853035223cb775ab7de1ca127203703238838b6

SHA512
3d3c291bbaca9edbabd4945cd714ef9662f50a63620e5b076773c3599500edd24972fa7f6b867bb4a9e2839bd5f95861a80418171982e56f69173a058d01a1b9

Download Submit
/data/data/org.jackajks.thermish/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
945acbebbbcf0995ffa90c700365c454

SHA1
224e63d2511d5091648b9dd053cf8b03eced4527

SHA256
1c8d1ac0d67ff529ff1ab43e8bd9e136030fdeda8f7414e260039e43c5ee70f2

SHA512
62fd911a35afa4e30a55c98c3932fd0b650dbd7dcf7b1c7d8cb51713d71c288474052c45e77e788cff2bb72ddf6fa893e547afd443391853589446216ac20856

Download Submit
/data/data/org.jackajks.thermish/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
1ed1641de655386f0772235f79d2e620

SHA1
89573e6a506b3d5b26ba2a03a94c7f52328e63a8

SHA256
edfcf868eafef4d1fc12107815ef29cb9cca9543ee8d022f1776c5ac6c7a8835

SHA512
d73d10d00d3c07fac5c96b07b1f8968b4e663778f6bcecef7a4e8627aa596ea97d9f9970a449e6b6ca5b2629cfa40b3eabd82a718f7badd2d94208cc5cfbc2af

Download Submit
/data/data/org.jackajks.thermish/files/PersistedInstallation4224848780207022668tmp

Filesize
572B

MD5
2652afe1d6d2d85bead77a3228ff8a71

SHA1
362b81970c76937c9958c70021bd8a3babc1a8a9

SHA256
4e2bb23ccc6ec968bc8e9bcf27a6d8803004ae0b45064959cc1e7bd1b87b70f8

SHA512
abd36cd92e329dbfe9cac2ac354a40bb1c928faebc222162e91f72f049ef13aa84c3b28ce48c3e4c398d29f984b8cd1dd2f54235307983cc221f61ee86c37478

Download Submit
/data/data/org.jackajks.thermish/files/PersistedInstallation4694251550398550185tmp

Filesize
90B

MD5
524d5d336665d4f0a23f5c6547775404

SHA1
c99d00c1a93a31bb1d2ef745483e5a7c589e631c

SHA256
aa5a8e3ba221dfeb2fed6d38364205b2f74ed076053a38ec8cb2b8953a3bdd3f

SHA512
866f5fe82d58f5208003426d9b763f2de5884dc69407ab3a57ff3afdde1659c70c802f3499aca6486e236d5a730e8da1350aa567c7bb74d39adfcea3b3692395

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads