Analysis

  • max time kernel
    2282912s
  • max time network
    145s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20-12-2023 00:19

General

  • Target

    73aa7241675739ae3b789413223280322cd8fd42333136de8451b5cbf429d00d.apk

  • Size

    3.3MB

  • MD5

    f08814963f369f226ca14b1e723c086d

  • SHA1

    d227bbd22a7cda76eac52b8efd82475b29d7483d

  • SHA256

    73aa7241675739ae3b789413223280322cd8fd42333136de8451b5cbf429d00d

  • SHA512

    72f929a59d16daf7a60b427af8e968dee4e4f1fadb40bfedc0c593f3a2e065839dafe499f7d4d159266ceb2a69a6d129beb3ba893a5f24c8f1a54026ae2ef573

  • SSDEEP

    98304:IEVF6aL7fDW3v0AMYfccAHxAPaMWB0dXQPs0aUGfxi9k:I46x3vKcAH6p30aVk9k

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:4255

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ir.shz.shzkisi/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7a82dcba0f313ac419258e72195101b9

    SHA1

    da25d6515471f150027ce99475bfa9445a01da5c

    SHA256

    50d1dc0cca9d2d4705ffe2bec5213ad3bf78f7d4df8360af5ca09de1aa7dcf89

    SHA512

    3da6c0ee65e433a801f238f9982b1398fbdabb60db85fe578e2043dfd9dfd10215fe7810c627b9c2723343fdb708fa937dfafe5467accd4ea79a02884cb9791b

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    14229be06fc2bfc0a7f118be54c19eff

    SHA1

    f8eadc95604f43bd229d5b3f7d9ba7aa995a5476

    SHA256

    04be1c040107039e7b10af4e3d875d31c56d47103b6eb8eaa0879400f5f0abcc

    SHA512

    d5e6f2a2ccd90273edf37628fce9a20507e19876259c064b16854b6c814c886ccb39d8d9197cd717552c00915bf2fbffdcb94e6092e1499679af3cd7d7ca0304

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    9c2203a6460a63a399cde961cd18b926

    SHA1

    ca296395b7aa6b2f998e5cf3323de48b8b2b2676

    SHA256

    0665e58613d7ba14f3ff602105092fba3ed236b9d50b16aac15a46a4dfa1d2b7

    SHA512

    e27900b988d7fddd72bafb844305352c03f71f778193a06df1006563cdf61fd997f4ec2ebe304c8b961f8ff62cf44f25272e64ac465e32c7ef1d1432d03d5f47

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    a520517f016d5a27ef4cb2828e79a8f6

    SHA1

    f4f89dd0b3bdfdfc08e0cb71378f5175b57774b6

    SHA256

    6581867ca17eb57c8309d21266868ac75b5caf7895d55985cfaf8bd5b5a0954b

    SHA512

    1d29062d0c1867558dd04ab947556c292de0584207b352cfb2f3dcc4841b5dc10ebf1844d0486e359a11a1bc98c119a3abef4956c575620988e0070cabe33273

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    d37abd72ee2f814a753538f896efd232

    SHA1

    d3e734bde42bb947db292bbff850c169510ca440

    SHA256

    81df5f399a6ed15c8c28459ebe4338a96d2252b10013ce788a3ade28a1924fdc

    SHA512

    2a8cd375338e63d0ef6288656c3dfa319a4336162ffcf63ef1afd6425202b45f47ab975849848af1b19a8dfd8a46eca3f589b781a18953d6c5677f340db50cf7

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    e2f974f92dea33be5cf0a9f9b46783b7

    SHA1

    669b2b72988d730fc2b7ceb49760fe6c6ccd3c7d

    SHA256

    bdb478ee0641d13a4d28197a44312670e130308cc42a4ad6a64e449a7ef9fd6b

    SHA512

    7ad19546149f49706f7b60644b9d4024ebba46ed09688ed1f73e379e09459bb9be25348b1269c36438353c57b47634b717fc5dce8db5b63197e2d5e225f9577d

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    f7c52b4cdec5d656f30d8c7c42aea1d4

    SHA1

    511d31bb7535813632a659ae36e3aad69222f47a

    SHA256

    2ef0cd2df0e196498dffd2d06e3b130a0f4f04dccc6a5f8599a81ffcd8c1e7e5

    SHA512

    8737d8a99824c99782580a03f4072c118a786a91378bdc4ec6587d3bb82f1e3fa51d918d570e66784e4b461cf3d7d8a0bb794cdc685930527d12eb85074984a6

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    133ad611bd4f1a2b59e2b61e3e3e5bb6

    SHA1

    d10e9e742246e189c7486bedee3e50f6ac829a5f

    SHA256

    ffd13e4df7aa792156e9f79fa2f833b520a1bb3faf4f267da2541113030396ec

    SHA512

    eab0d989a3ec02927e9a14d864345a163313b7a948851bd493ea44ec6e5429ef11d0700edab3d98e04ccc6ae1ec403921b8dc7ad806b0d21e8baf55a66fc3ae4

  • /data/data/ir.shz.shzkisi/files/PersistedInstallation4268674334780608887tmp

    Filesize

    90B

    MD5

    2c0ebdfc21f870bca7e7d205d4192cca

    SHA1

    65cd1bb18a41c5bc086491962b805fa25bab7ec4

    SHA256

    b600ab54557489989b3322493bc4c8a6e74be33eb727de5482edca687c225464

    SHA512

    8c18ee8f172fd0c6fa58f06e9381402bddba345129ae9e9458639a2ed989f6098e22b341b4eec6fa724fa4dfed7c2edf65effef01024b57bfa6a68e06bbf4591

  • /data/data/ir.shz.shzkisi/files/PersistedInstallation9211744475485277161tmp

    Filesize

    567B

    MD5

    8b0a514223e5247cb32630340ffc39e4

    SHA1

    32650dc4c9e48df2d271f322b56799f90a7bd6bb

    SHA256

    7f112a262fadf4c81d8c1b7fc7b7b654f15d285a9084ccfaab02700b202e82bc

    SHA512

    4dd4ed575c2f62f8aecd10e1f18fcd62329c886987ec91cfb888b10a3f020a39f1a80261d1f7fb6f709f93e2fbec714b91f74324ef869d5bb94da24ce827c31a