6abbca4bd2eaf4f4da7146008b49c53fde806e37a158697ea46c9c6e0eb44b61

Resubmissions

30-11-2023 10:47

231130-mvl6ssah91 10

18-07-2023 14:25

230718-rrc6yabb83 10

18-07-2023 13:41

230718-qy8qraag77 10

18-07-2023 13:38

230718-qxv39sag66 10

Analysis

max time kernel
534421s
max time network
163s
platform
android_x64
resource
android-x64-arm64-20231023-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231023-enlocale:en-usos:android-11-x64system
submitted
30-11-2023 10:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Imagine v2.8.6 [Premium] signed.apk
Size

25.1MB
MD5

89e9bfaf2d6498971882afb8497dceb1
SHA1

fe2bc88f9fb2195a033def29cbe27ce5157219be
SHA256

6abbca4bd2eaf4f4da7146008b49c53fde806e37a158697ea46c9c6e0eb44b61
SHA512

eb05587fa7c18637d3784175f6a29c35a62c650cf4c88927c07a002854c91c669aaa4e246a45abc44241ad8a72a002cab08e805bdf56a52c4ad945e2c1591a3c
SSDEEP

786432:LJiuZEyv4sWG9mtS14oytjFchKMfvW02+vYzmt:lzZEyvxWG9ms+VVMIuymt

Score

8^/10

evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service. 1 IoCs

Processes:

com.vyroai.aiart

description	ioc	process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	com.vyroai.aiart

Acquires the wake lock. 1 IoCs

Processes:

com.vyroai.aiart

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.vyroai.aiart
Requests enabling of the accessibility settings. 1 IoCs

Processes:

com.vyroai.aiart

description ioc process

Intent action android.settings.ACCESSIBILITY_SETTINGS com.vyroai.aiart
Reads information about phone network operator.
Checks the presence of a debugger.
evasion

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.vyroai.aiart

description	ioc	process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	com.vyroai.aiart

com.vyroai.aiart
1⤵
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Requests enabling of the accessibility settings.
PID:4393

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events
Filesize
56KB

MD5
30020a852e981a6c47ba1721cea9c7af

SHA1
55c1a7f932eef0c2d4b678bf14da4f2c8518763e

SHA256
b83fe97cf3a138136a63c6993943f4fc0d1c636087d738051822403756ba04e2

SHA512
f311e25515b17211476acd749ff603a80aaadea4612bfec0425c3b0055bb3701c1ebf1b80c348322a82125b782a478aee44a1cca6eef53f9c70cdd39793b74e7

Download Submit
/data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
Filesize
24KB

MD5
5f72bbddb762e9884f8d57761eeee217

SHA1
332314631b9b18ab1ee5c6d387b4891f5beb6da4

SHA256
fbde169d479fc26f95877aa7feae411bed753879fa53c3cca5b3a399bbd62154

SHA512
020c9fe9ada5961222d28e7fb642e1137a46dd522d7345a01aff9f9f9e781c241a542fa7d766acfab94fa229fb0c3dffbdc54f6d2a34b64d1d1bd11d388c6e4a

Download Submit
/data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
Filesize
512B

MD5
fc6bfaea0cbad3ff6486898f302a4389

SHA1
b12ff4d7c34858cbadd4419e51debf70476ba190

SHA256
c48e0588f20d106e22db6ebc47e294a43accd92eabe0ffa86a9eb24363e953ff

SHA512
3ca7ba5da6b420ae25c6df2ad6bd8b30d9069c8240ade12c04af909faf8841f91aabfdd6e22215b40d8df2770644e69a6bdd1484c28d949c1c0c7c178002e479

Download Submit
/data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
Filesize
16KB

MD5
08e852e24c8e31407fa1134a800242bd

SHA1
d79275f62cd4ccce52de11325e948f75b679265a

SHA256
f432f53b8030ec984acd3d39e27dcb65f9647e2ef0a4bfc3b604bf8188135dd5

SHA512
a69c9653717fcfeaad59ba6138c5fecf5ad53c53b00d000bf4c09dff03477cb65cc498f2d53ceee27f61a6b430afda9a58dcaec641b71b0f1cdf9d874e7f03b5

Download Submit
/data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
Filesize
20KB

MD5
e499fb94875395cdaf4cb2d7ed543fe2

SHA1
517934b3caa9e9a1d65988fc1d1a40eeb0f42f86

SHA256
b9e383c15af186a1e35c1ffbcb58eda3722e843354cc661273be5f51942c6ad7

SHA512
d76a21981b10033714dc86923e263faf74bd6ed944b0f8106a63f707b92ff86144d76acae4bddbf7bb0617c37df07f9878de9da19d12e2473057cd297f01e808

Download Submit
/data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
Filesize
8KB

MD5
e1662abeaa191f74b8890a9e945de026

SHA1
4647d176042b241af58c679c41e3a09c46b49f6e

SHA256
92a6ad3cb2ad3ea712a7ab527adaadf4e5f6d8d5c3631bac75c2bad0fc3e5dc4

SHA512
5cdb2d27c2ac00118a231256e8e358f65dddb984d1e8f9ff8f85f65b8e09fcc3b1d54efbfe9122ee0600e7e1dc506d06359a8e374b6f8601c5bf9864c54cf2cb

Download Submit
/data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
Filesize
8KB

MD5
eb2bce4ef04a56608d0aee707e543b7e

SHA1
d0a36b8ce9f8eeb0d61c0b94756070c346f3a4d7

SHA256
4cedada9a0ed98a6ff26835e00fbc08c38564cb8fd42c07151deb32d17c3059d

SHA512
9e234c7e3e0c85a55868231dfefa9ae86e824a8decc4437f50dce934f76116ec2ae7abb5ac82e7cb98f831f63007d68156545a8c690850e8f011e1cdc0c6355f

Download Submit
/data/user/0/com.vyroai.aiart/files/.com.google.firebase.crashlytics.files.v2:com.vyroai.aiart/open-sessions/6568688602F6000111299466D4DD1C47/report
Filesize
741B

MD5
93a53bc832b7dab702942f1654d20ef6

SHA1
f1679a077c14df829e33c2197acecc896cb62a19

SHA256
7fbc412bf4ecc32bd08cea1713a2a6e757a47ed5d1ab01d53243f6c642ee5cb0

SHA512
bb9c3d509abc9f0f61403661e85b655a02a8c6666f8fef82ab42910b550df646c95b8312dc3ad24ac6a50eac0928537037ecb2dc819d46ef869e87b5fd814727

Download Submit
/data/user/0/com.vyroai.aiart/files/AppEventsLogger.persistedevents
Filesize
297B

MD5
7284226df92dea0a91eea1ee7279ce98

SHA1
217371e00a5b4dfff7840bfea83e4148dd3737e9

SHA256
7874e0ea03df5f10cd6d6b162b158c9d9a0375488ef9847722f9e759e3bcb566

SHA512
a4cad10c5dd711942b1fc3ff10fd1418f0d65871c76e36cafb078075f6be72919acb2fbdb7abab79d5f46efc313b76851d369f2aecb5cbd16f5cce1c5cb45fc5

Download Submit
/data/user/0/com.vyroai.aiart/files/AppEventsLogger.persistedevents
Filesize
297B

MD5
4d6f36e0bb27cca459dc9f6d68c6a180

SHA1
4e050c3946647d1c3020855b12e675d41c46ec69

SHA256
e860e3d63b8b8cb3e77f356743101fe860241ff2ec61bac187d1ac571ddf47f9

SHA512
17ff3e4e404bd73d27ec3e4c5948cdcc01b9afdbe2a89a45fa3231735b5e750aa72477c32ec9ab8fd305b53c4cad2e9b2d99eca1a0fc86e199a6b017f17cd6f6

Download Submit
/data/user/0/com.vyroai.aiart/files/PersistedInstallation7455038193469580883tmp
Filesize
90B

MD5
7629b9e609e3199b2f78e66965a30996

SHA1
0a47a3e6d9ee069457b2b8a3d48bc3a42b477174

SHA256
1a3ef963da94568f8f959a1070d2482c4719f89fc3cce62d630612dcb09b3882

SHA512
9a721a86cb032e759bd564718e4db99b810eb9f5018ce74a2fc312ff4d3b63b58b7eb7d697cfa718b8b2430894c90d08e6678c796c5803ddacf9bc77819dc331

Download Submit
/data/user/0/com.vyroai.aiart/files/PersistedInstallation928726842920485395tmp
Filesize
566B

MD5
dd05a9da8f182c6ab8c70c3b77c8b056

SHA1
70ce46165b7695c6f4da74e7813b96962028c9c0

SHA256
2f58e087a785c9364b7e163146576fb32e5b055f52956b59ab173614241075a5

SHA512
46bf654ad1f7c6c9a0765087ad86b8df19fb2a60fbfcd636ce89b326573e6ada57cf65a3184545ad0d679269b396613f82590395fad457f5c4c87401e5fe251d

Download Submit
/data/user/0/com.vyroai.aiart/files/frc_1:47152938399:android:928f1ecf0490a9b76611aa_firebase_activate.json
Filesize
222KB

MD5
85ab045cf4d0bf06f6cdfc238f4efaa5

SHA1
aee6f96a4e6a76142f3df8a9d8e0148b189550e1

SHA256
6da8f70e1b00816c4d2f6c8d8af922701be399ff3a3d4923a67054bff9fc97de

SHA512
c848d43bb31959c272301b25a15db56739ece26aa1d61747ddbe7d8a388f62c4c76cb5a92f78c378a3674b67727e0a266e858bb2e3169745135bbc4b06286598

Download Submit
/data/user/0/com.vyroai.aiart/files/frc_1:47152938399:android:928f1ecf0490a9b76611aa_firebase_fetch.json
Filesize
222KB

MD5
85ab045cf4d0bf06f6cdfc238f4efaa5

SHA1
aee6f96a4e6a76142f3df8a9d8e0148b189550e1

SHA256
6da8f70e1b00816c4d2f6c8d8af922701be399ff3a3d4923a67054bff9fc97de

SHA512
c848d43bb31959c272301b25a15db56739ece26aa1d61747ddbe7d8a388f62c4c76cb5a92f78c378a3674b67727e0a266e858bb2e3169745135bbc4b06286598

Download Submit
/data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb
Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb-journal
Filesize
512B

MD5
f971192a79fb5f8b8f8a99754ab54281

SHA1
d17aab8095fcc1f1aa3154896ec3b565ea2f6b41

SHA256
5b084decdaa7f7f2bdbc6c38efc882417e271c7d4be5aff4eaa1bf92be4b2cd4

SHA512
219bebeb01ce898753c883c622c322333703c366da680539661ab938ab2c7e4d41a35a15a7303658c9ccd16fbc58682a89e79bda58f3211949b807a1c9495c6d

Download Submit
/data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb-wal
Filesize
112KB

MD5
48bf00c7897baee6155ec24b239a94d5

SHA1
f475347626e91338e8ee324c8fe0725ca6894e10

SHA256
74282ba8dfd8bc73e884069196b0b7c7711ca4104625f61c67125e860f297b71

SHA512
88321368561bac84bb7890e056fd9edc6db557a275aa2a7d9f577d3b807a140ce2848d2c810be81e0cec0ce46758aa86ace8183b598674e781fd21b92fc6aaea

Download Submit
/data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb-wal
Filesize
16KB

MD5
f943f3c73bf8c9d569165313f25d582f

SHA1
aaf3842424c6871950add0f7d669dbc6bd2cd177

SHA256
84f21b3fdc5f5a95f973630d78b5b4ca3c2f4354955cb53cce23e1e136ff6750

SHA512
215db2e2722067834a9563cae4530ebf3361232f533dbb39e103aaa408978018714e2903022207340df1c40efd5294256c6ed7dee54766a6d7d1fba18cb95a2b

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
Filesize
32B

MD5
37e0854a1f24e4781c00c7d2cc80f06f

SHA1
c2d9576389d57394bb7a02ea2f03ee14bf801f27

SHA256
35a487aa75907f2126f322709f59d75f16bf1e47aff875dd9b5c39ac7b8c90d0

SHA512
f36ce51c2111724d2c2ec278dcb14ad2160d2ec7c292d6e6340bd3d22ba245ee440373f49f41f9bceea0f07b685a34b53236347491ca0fdcaf9ec845a32d9a33

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
Filesize
20B

MD5
6fecba447b6f1b6f82d200315018cdfc

SHA1
5912986b2b48440d23c4c83b98734dc8aff964ee

SHA256
b446a573a52f8de6c1b916b7c575decb954e87473977e1e4de26c8a0312393c7

SHA512
de5e1de8ab4361991e58179502db12e0de190d4b6954bdfcdf4c715e18eeb240b2e77633306bd025462cb8245943dbae94fa5f46863ac0e08f1212586762d62c

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
Filesize
20B

MD5
00dc5110e916e11d70f7a368222fdf04

SHA1
043f19043e9b5825c61b1da45246e023a24ba7b2

SHA256
38322fdd239a89df68a88b3d1560832773ef61b86739c05b463e5b7e84f87160

SHA512
5daf98e4d92380cf62c0b494806057715049b4c5b7cdc87d31ecce79509d940e92a9d3e4b96d8309321af2509d7958459132e478befd9e6597d6a772463b405b

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
Filesize
20B

MD5
00dc5110e916e11d70f7a368222fdf04

SHA1
043f19043e9b5825c61b1da45246e023a24ba7b2

SHA256
38322fdd239a89df68a88b3d1560832773ef61b86739c05b463e5b7e84f87160

SHA512
5daf98e4d92380cf62c0b494806057715049b4c5b7cdc87d31ecce79509d940e92a9d3e4b96d8309321af2509d7958459132e478befd9e6597d6a772463b405b

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
Filesize
344B

MD5
52b6ede46b00bb5588ce687b0a6a1aff

SHA1
0df90e8d048c7319be400fc09055d9419f43d46b

SHA256
96e9302737b86b6c6a1aa318b3835fd027ad05f0c9641ca7b05193f839d53b7d

SHA512
bb84f1f978c8cb4cc4f5b8995d3d5cc6290dca6c5ffd617f42b6bcdc8774775ea1c0056ee018533bad6864e6e67771a7d1685fdd1178c6815835c15690199b95

Download Submit