Analysis

  • max time kernel
    2300410s
  • max time network
    164s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    19-12-2023 23:43

General

  • Target

    6e3804cb0f2e6dfbbd98e95bb210a5f5e42c87df69427af466fcab370eeffed3.apk

  • Size

    4.1MB

  • MD5

    3a8017efce299948b1c2622ec6fcc441

  • SHA1

    e968c3f37a1808b7a5a99ec9ab8cf223d4a0535a

  • SHA256

    6e3804cb0f2e6dfbbd98e95bb210a5f5e42c87df69427af466fcab370eeffed3

  • SHA512

    661cb30c3f9e317a5e7eff7f38da54f741feb4ea9e13b9e7b46967fe63e48f771972125796d0c58dc932b734c094b1d9840b2d895ea48c9ee428c90cd823c9ff

  • SSDEEP

    98304:vss2F4rZ/WWmkdsEeA7Ngs+dVk9L5FDyhlMri:m4BWW1eyIVk9NY3Me

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • ir.robic.daryaei
    1⤵
    • Acquires the wake lock
    PID:4998

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ir.robic.daryaei/databases/__pushe_base_lib_db

    Filesize

    12KB

    MD5

    ea628e04765adaf4238a5dcdff4bbd51

    SHA1

    a801947619ea8c368efe9c006a324dc6339ac60b

    SHA256

    885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

    SHA512

    c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

  • /data/data/ir.robic.daryaei/databases/__pushe_base_lib_db-journal

    Filesize

    512B

    MD5

    a49a6bb559cc9a2d8a3f24d5a78196bb

    SHA1

    7f18df679116c43618f200ef57a6ee6e4bf191aa

    SHA256

    e943e26ffa2cbbf23f9c6e1e1e8574683f8bee281b0e225fdd251fcca6edce28

    SHA512

    214d308ddd3775766d43234aa9f6144d739f7f7c456ea6d042578519101eff156ca73548c56c1c54845e7ab8262810444c5608ad1a643bed43b611cc662fa185

  • /data/data/ir.robic.daryaei/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    19bd918a3128341ab042a205b70d7322

    SHA1

    b63c70b6e9fb35eb60463aef192ef58cf2f74319

    SHA256

    81ff0c8403c0427048436a2880e7abb46dfc827a039fc7eab9dd1920ee48b49b

    SHA512

    732f7cd08e152a9b8ebaadde95dccfac170f0f95e7573a3bfbdfeded43b0a3508d086015e88f989f882e4c8c0eb9d65b130ebc3ef707dfb1caf14278be25dc55

  • /data/data/ir.robic.daryaei/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    0571b6d4541937f4fec7cf368c768bbf

    SHA1

    dba67a599d9aeecbcc0c3d49d8a82cd2fdbda8f4

    SHA256

    51d099a9ccd830fa38fc352ffb4d0d6fe4c241fa4b1d44db52a8debc92538a66

    SHA512

    e83053a6c7919f5fd28759bb18563027808e74fadf730be81b0d89cb022e8cea9e55920be9f504f7dc19d9db270263556fd4609a88afedd35ebb3bab8001bbbb

  • /data/data/ir.robic.daryaei/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    12627a2ec645c4a4bc50dba5903afd59

    SHA1

    504005c938517e61bcf68b65a055c2faba635c2e

    SHA256

    f177ffae9650eb4f407c2d9a510bb5a5abe1ece2fdfe24effc62478a1bfa5903

    SHA512

    7ff69589296e02383a217373399e75d8a82fa17146e4273f4c0eb630f096dd9f394a3324d60858b02f7e5cf177c82c6d966f5cbedb68ae6a98df7cc851b79cfd

  • /data/data/ir.robic.daryaei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    c26c01ebd8248542c4b21b1e85f32393

    SHA1

    0995b2a0707545718a3054499b38e7ae230685be

    SHA256

    914e12024ecdff371f9c3de12be816e5e6dab05bdb11b6b7da06b46f1dd31684

    SHA512

    b91e976af751a09295cf489f98b9567395ed4dcdd60c65088c76b56a0a929e0c6d6df1837ccb8d197284f5f6c4b9183b5ec19d60f457168446436be97b6c6157

  • /data/data/ir.robic.daryaei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    b46ab8b580a136d546210744cb7bb886

    SHA1

    cfdb98c8064c856bbb65ebfd079df1165e3103aa

    SHA256

    4e01205ed8c01191cd8335180f482fd89ec9fc38e4d1dd971f4bab4577b115b8

    SHA512

    463efb5f0ba8aa0febcc4e50c94ce0ad6571aab565f27263db01e07b093c8caa038b213768efda15771e627d1b8889d7a1dd01e0e1abd26a3979579dbd1d23ac

  • /data/data/ir.robic.daryaei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    e9ee48e1f7ea6c6b834537f09c3a1fa0

    SHA1

    0929b9527bc8e6c3fa8dfd87f5d269c84f9df12f

    SHA256

    74b0a4f40cee3dac5c9060dac8ed100e4ca24088373217c51df366f03261a587

    SHA512

    fd76afd4e450c511029d1db2ee913b0997dd3a975a8848ff406bc9e923d77ab1beea7980ffa2167cad1e8a90783b68cd9b5fe9b69bab1820765d91bfa02f10ed

  • /data/data/ir.robic.daryaei/databases/evernote_jobs.db-journal

    Filesize

    512B

    MD5

    613a026f942cb4831338547a1a0ae8c2

    SHA1

    8cbc46b46fb97b203441d9fe66ba7de6634a6d3b

    SHA256

    ac43598e81d3b2df43498cd808811e37b75bc832be1c4ebec6bd444a1c7fd574

    SHA512

    916ad7ada59b83dd6b132e30cba5d957229d8269cb4a03a6adfa41d16c57c175750a75dff168efaad1639f2e2d767e02423d20e68318267b6d6a7395995dc26c

  • /data/data/ir.robic.daryaei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    5c4844ad8cbebae84cb380682e6d1e8f

    SHA1

    3556884f55e21afba1faa5b7494edd08d4129fdb

    SHA256

    4f91d033d4db7960ab1f5ff6cc66011ec7d741fbb25107b033ff6fca9db34fd4

    SHA512

    689450430298438c14b0db75efa62fdffce2a06cb806ebc558774056d71dc07cca362c3f932d6006bc6ec253169d7a5d7b8f832fc268267d22c5eac8e188dc5b

  • /data/data/ir.robic.daryaei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    4ea8b18f7a30c079cd03be28409e5e13

    SHA1

    fe0a379f1768abc8c335c854503366929c274240

    SHA256

    a55d2605126d9e8fb480731df73cbd9503f4a0db1bec01772a3b500563705d3f

    SHA512

    d4089fa056864657473b8f8a0607734b267738d2d7ebddd6e8c078afc4517a60e97835b3e00a94759a6d7df14d0c1c59e48680cbda14ac6ba19ce32fbaf35384

  • /data/data/ir.robic.daryaei/files/daryai.db

    Filesize

    119KB

    MD5

    06fe7dc230e9deb9a5ccd10511d8bf60

    SHA1

    4088be49b5310b656115c48a5bcfec759a3f97bd

    SHA256

    4164f2bdd2ff5b8509b04b24d78ed8e072c06f63dbb8183290ff1a1ee87bb781

    SHA512

    5d11c5e79dedeb89b2c24d7da697d83dd171de387f158ef293d908c3ec7063ba59137998cc6394c52fc553d289b02906aa9cfa9bc13057b426dabda1fde90f72